Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2024-32020 (GCVE-0-2024-32020)
Vulnerability from cvelistv5 – Published: 2024-05-14 18:54 – Updated: 2025-02-13 17:52
VLAI?
EPSS
Summary
Git is a revision control system. Prior to versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4, local clones may end up hardlinking files into the target repository's object database when source and target repository reside on the same disk. If the source repository is owned by a different user, then those hardlinked files may be rewritten at any point in time by the untrusted user. Cloning local repositories will cause Git to either copy or hardlink files of the source repository into the target repository. This significantly speeds up such local clones compared to doing a "proper" clone and saves both disk space and compute time. When cloning a repository located on the same disk that is owned by a different user than the current user we also end up creating such hardlinks. These files will continue to be owned and controlled by the potentially-untrusted user and can be rewritten by them at will in the future. The problem has been patched in versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4.
Severity ?
CWE
- CWE-281 - Improper Preservation of Permissions
Assigner
References
| URL | Tags | |
|---|---|---|
|
|
||
Impacted products
{
"containers": {
"adp": [
{
"affected": [
{
"cpes": [
"cpe:2.3:a:git:git:*:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "git",
"vendor": "git",
"versions": [
{
"lessThan": "2.39.4",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:a:git:git:2.45.0:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "git",
"vendor": "git",
"versions": [
{
"status": "affected",
"version": "2.45.0"
}
]
},
{
"cpes": [
"cpe:2.3:a:git:git:2.44.0:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "git",
"vendor": "git",
"versions": [
{
"status": "affected",
"version": "2.44.0"
}
]
},
{
"cpes": [
"cpe:2.3:a:git:git:2.43:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "git",
"vendor": "git",
"versions": [
{
"lessThan": "2.43.4",
"status": "affected",
"version": "2.43",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:a:git:git:2.42.0:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "git",
"vendor": "git",
"versions": [
{
"lessThan": "2.42.2",
"status": "affected",
"version": "2.42.0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:a:git:git:2.41.0:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "git",
"vendor": "git",
"versions": [
{
"status": "affected",
"version": "2.41.0"
}
]
},
{
"cpes": [
"cpe:2.3:a:git:git:2.40.0:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "git",
"vendor": "git",
"versions": [
{
"lessThan": "2.40.2",
"status": "affected",
"version": "2.40.0",
"versionType": "custom"
}
]
}
],
"metrics": [
{
"other": {
"content": {
"id": "CVE-2024-32020",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-05-15T14:32:40.280977Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2024-06-06T17:15:59.133Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
},
{
"providerMetadata": {
"dateUpdated": "2024-08-02T01:59:50.905Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "https://github.com/git/git/security/advisories/GHSA-5rfh-556j-fhgj",
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://github.com/git/git/security/advisories/GHSA-5rfh-556j-fhgj"
},
{
"name": "https://github.com/git/git/commit/1204e1a824c34071019fe106348eaa6d88f9528d",
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://github.com/git/git/commit/1204e1a824c34071019fe106348eaa6d88f9528d"
},
{
"name": "https://github.com/git/git/commit/9e65df5eab274bf74c7b570107aacd1303a1e703",
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://github.com/git/git/commit/9e65df5eab274bf74c7b570107aacd1303a1e703"
},
{
"tags": [
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/S4CK4IYTXEOBZTEM5K3T6LWOIZ3S44AR/"
},
{
"tags": [
"x_transferred"
],
"url": "http://www.openwall.com/lists/oss-security/2024/05/14/2"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "git",
"vendor": "git",
"versions": [
{
"status": "affected",
"version": "= 2.45.0"
},
{
"status": "affected",
"version": "= 2.44.0"
},
{
"status": "affected",
"version": "\u003e= 2.43.0, \u003c 2.43.4"
},
{
"status": "affected",
"version": "\u003e= 2.42.0, \u003c 2.42.2"
},
{
"status": "affected",
"version": "= 2.41.0"
},
{
"status": "affected",
"version": "\u003e= 2.40.0, \u003c 2.40.2"
},
{
"status": "affected",
"version": "\u003c 2.39.4"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Git is a revision control system. Prior to versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4, local clones may end up hardlinking files into the target repository\u0027s object database when source and target repository reside on the same disk. If the source repository is owned by a different user, then those hardlinked files may be rewritten at any point in time by the untrusted user. Cloning local repositories will cause Git to either copy or hardlink files of the source repository into the target repository. This significantly speeds up such local clones compared to doing a \"proper\" clone and saves both disk space and compute time. When cloning a repository located on the same disk that is owned by a different user than the current user we also end up creating such hardlinks. These files will continue to be owned and controlled by the potentially-untrusted user and can be rewritten by them at will in the future. The problem has been patched in versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4."
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "LOW",
"baseScore": 3.9,
"baseSeverity": "LOW",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:N/I:L/A:L",
"version": "3.1"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-281",
"description": "CWE-281: Improper Preservation of Permissions",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2024-06-10T17:10:03.915Z",
"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
"shortName": "GitHub_M"
},
"references": [
{
"name": "https://github.com/git/git/security/advisories/GHSA-5rfh-556j-fhgj",
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://github.com/git/git/security/advisories/GHSA-5rfh-556j-fhgj"
},
{
"name": "https://github.com/git/git/commit/1204e1a824c34071019fe106348eaa6d88f9528d",
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/git/git/commit/1204e1a824c34071019fe106348eaa6d88f9528d"
},
{
"name": "https://github.com/git/git/commit/9e65df5eab274bf74c7b570107aacd1303a1e703",
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/git/git/commit/9e65df5eab274bf74c7b570107aacd1303a1e703"
},
{
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/S4CK4IYTXEOBZTEM5K3T6LWOIZ3S44AR/"
},
{
"url": "http://www.openwall.com/lists/oss-security/2024/05/14/2"
}
],
"source": {
"advisory": "GHSA-5rfh-556j-fhgj",
"discovery": "UNKNOWN"
},
"title": "Cloning local Git repository by untrusted user allows the untrusted user to modify objects in the cloned repository at will"
}
},
"cveMetadata": {
"assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
"assignerShortName": "GitHub_M",
"cveId": "CVE-2024-32020",
"datePublished": "2024-05-14T18:54:08.184Z",
"dateReserved": "2024-04-09T15:29:35.937Z",
"dateUpdated": "2025-02-13T17:52:05.240Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"fkie_nvd": {
"descriptions": "[{\"lang\": \"en\", \"value\": \"Git is a revision control system. Prior to versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4, local clones may end up hardlinking files into the target repository\u0027s object database when source and target repository reside on the same disk. If the source repository is owned by a different user, then those hardlinked files may be rewritten at any point in time by the untrusted user. Cloning local repositories will cause Git to either copy or hardlink files of the source repository into the target repository. This significantly speeds up such local clones compared to doing a \\\"proper\\\" clone and saves both disk space and compute time. When cloning a repository located on the same disk that is owned by a different user than the current user we also end up creating such hardlinks. These files will continue to be owned and controlled by the potentially-untrusted user and can be rewritten by them at will in the future. The problem has been patched in versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4.\"}, {\"lang\": \"es\", \"value\": \"Git es un sistema de control de revisiones. Antes de las versiones 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2 y 2.39.4, los clones locales pueden terminar vinculando archivos a la base de datos de objetos del repositorio de destino cuando el repositorio de origen y el de destino residen en el mismo disco. Si el repositorio de origen es propiedad de un usuario diferente, el usuario que no es de confianza puede reescribir esos archivos vinculados en cualquier momento. La clonaci\\u00f3n de repositorios locales har\\u00e1 que Git copie o vincule archivos del repositorio de origen al repositorio de destino. Esto acelera significativamente dichos clones locales en comparaci\\u00f3n con realizar un clon \\\"adecuado\\\" y ahorra espacio en disco y tiempo de c\\u00e1lculo. Al clonar un repositorio ubicado en el mismo disco que es propiedad de un usuario diferente al usuario actual, tambi\\u00e9n terminamos creando dichos enlaces f\\u00edsicos. Estos archivos seguir\\u00e1n siendo propiedad y controlados por el usuario potencialmente no confiable y podr\\u00e1n ser reescritos por \\u00e9l a voluntad en el futuro. El problema se solucion\\u00f3 en las versiones 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2 y 2.39.4.\"}]",
"id": "CVE-2024-32020",
"lastModified": "2024-11-21T09:14:20.570",
"metrics": "{\"cvssMetricV31\": [{\"source\": \"security-advisories@github.com\", \"type\": \"Secondary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:N/I:L/A:L\", \"baseScore\": 3.9, \"baseSeverity\": \"LOW\", \"attackVector\": \"LOCAL\", \"attackComplexity\": \"HIGH\", \"privilegesRequired\": \"LOW\", \"userInteraction\": \"REQUIRED\", \"scope\": \"CHANGED\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"LOW\", \"availabilityImpact\": \"LOW\"}, \"exploitabilityScore\": 0.8, \"impactScore\": 2.7}]}",
"published": "2024-05-14T19:15:12.240",
"references": "[{\"url\": \"http://www.openwall.com/lists/oss-security/2024/05/14/2\", \"source\": \"security-advisories@github.com\"}, {\"url\": \"https://github.com/git/git/commit/1204e1a824c34071019fe106348eaa6d88f9528d\", \"source\": \"security-advisories@github.com\"}, {\"url\": \"https://github.com/git/git/commit/9e65df5eab274bf74c7b570107aacd1303a1e703\", \"source\": \"security-advisories@github.com\"}, {\"url\": \"https://github.com/git/git/security/advisories/GHSA-5rfh-556j-fhgj\", \"source\": \"security-advisories@github.com\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/S4CK4IYTXEOBZTEM5K3T6LWOIZ3S44AR/\", \"source\": \"security-advisories@github.com\"}, {\"url\": \"http://www.openwall.com/lists/oss-security/2024/05/14/2\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://github.com/git/git/commit/1204e1a824c34071019fe106348eaa6d88f9528d\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://github.com/git/git/commit/9e65df5eab274bf74c7b570107aacd1303a1e703\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://github.com/git/git/security/advisories/GHSA-5rfh-556j-fhgj\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/S4CK4IYTXEOBZTEM5K3T6LWOIZ3S44AR/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}]",
"sourceIdentifier": "security-advisories@github.com",
"vulnStatus": "Awaiting Analysis",
"weaknesses": "[{\"source\": \"security-advisories@github.com\", \"type\": \"Secondary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-281\"}]}]"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2024-32020\",\"sourceIdentifier\":\"security-advisories@github.com\",\"published\":\"2024-05-14T19:15:12.240\",\"lastModified\":\"2024-11-21T09:14:20.570\",\"vulnStatus\":\"Awaiting Analysis\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Git is a revision control system. Prior to versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4, local clones may end up hardlinking files into the target repository\u0027s object database when source and target repository reside on the same disk. If the source repository is owned by a different user, then those hardlinked files may be rewritten at any point in time by the untrusted user. Cloning local repositories will cause Git to either copy or hardlink files of the source repository into the target repository. This significantly speeds up such local clones compared to doing a \\\"proper\\\" clone and saves both disk space and compute time. When cloning a repository located on the same disk that is owned by a different user than the current user we also end up creating such hardlinks. These files will continue to be owned and controlled by the potentially-untrusted user and can be rewritten by them at will in the future. The problem has been patched in versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4.\"},{\"lang\":\"es\",\"value\":\"Git es un sistema de control de revisiones. Antes de las versiones 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2 y 2.39.4, los clones locales pueden terminar vinculando archivos a la base de datos de objetos del repositorio de destino cuando el repositorio de origen y el de destino residen en el mismo disco. Si el repositorio de origen es propiedad de un usuario diferente, el usuario que no es de confianza puede reescribir esos archivos vinculados en cualquier momento. La clonaci\u00f3n de repositorios locales har\u00e1 que Git copie o vincule archivos del repositorio de origen al repositorio de destino. Esto acelera significativamente dichos clones locales en comparaci\u00f3n con realizar un clon \\\"adecuado\\\" y ahorra espacio en disco y tiempo de c\u00e1lculo. Al clonar un repositorio ubicado en el mismo disco que es propiedad de un usuario diferente al usuario actual, tambi\u00e9n terminamos creando dichos enlaces f\u00edsicos. Estos archivos seguir\u00e1n siendo propiedad y controlados por el usuario potencialmente no confiable y podr\u00e1n ser reescritos por \u00e9l a voluntad en el futuro. El problema se solucion\u00f3 en las versiones 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2 y 2.39.4.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"security-advisories@github.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:N/I:L/A:L\",\"baseScore\":3.9,\"baseSeverity\":\"LOW\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"HIGH\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"REQUIRED\",\"scope\":\"CHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"LOW\",\"availabilityImpact\":\"LOW\"},\"exploitabilityScore\":0.8,\"impactScore\":2.7}]},\"weaknesses\":[{\"source\":\"security-advisories@github.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-281\"}]}],\"references\":[{\"url\":\"http://www.openwall.com/lists/oss-security/2024/05/14/2\",\"source\":\"security-advisories@github.com\"},{\"url\":\"https://github.com/git/git/commit/1204e1a824c34071019fe106348eaa6d88f9528d\",\"source\":\"security-advisories@github.com\"},{\"url\":\"https://github.com/git/git/commit/9e65df5eab274bf74c7b570107aacd1303a1e703\",\"source\":\"security-advisories@github.com\"},{\"url\":\"https://github.com/git/git/security/advisories/GHSA-5rfh-556j-fhgj\",\"source\":\"security-advisories@github.com\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/S4CK4IYTXEOBZTEM5K3T6LWOIZ3S44AR/\",\"source\":\"security-advisories@github.com\"},{\"url\":\"http://www.openwall.com/lists/oss-security/2024/05/14/2\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://github.com/git/git/commit/1204e1a824c34071019fe106348eaa6d88f9528d\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://github.com/git/git/commit/9e65df5eab274bf74c7b570107aacd1303a1e703\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://github.com/git/git/security/advisories/GHSA-5rfh-556j-fhgj\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/S4CK4IYTXEOBZTEM5K3T6LWOIZ3S44AR/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}",
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"https://github.com/git/git/security/advisories/GHSA-5rfh-556j-fhgj\", \"name\": \"https://github.com/git/git/security/advisories/GHSA-5rfh-556j-fhgj\", \"tags\": [\"x_refsource_CONFIRM\", \"x_transferred\"]}, {\"url\": \"https://github.com/git/git/commit/1204e1a824c34071019fe106348eaa6d88f9528d\", \"name\": \"https://github.com/git/git/commit/1204e1a824c34071019fe106348eaa6d88f9528d\", \"tags\": [\"x_refsource_MISC\", \"x_transferred\"]}, {\"url\": \"https://github.com/git/git/commit/9e65df5eab274bf74c7b570107aacd1303a1e703\", \"name\": \"https://github.com/git/git/commit/9e65df5eab274bf74c7b570107aacd1303a1e703\", \"tags\": [\"x_refsource_MISC\", \"x_transferred\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/S4CK4IYTXEOBZTEM5K3T6LWOIZ3S44AR/\", \"tags\": [\"x_transferred\"]}, {\"url\": \"http://www.openwall.com/lists/oss-security/2024/05/14/2\", \"tags\": [\"x_transferred\"]}], \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2024-08-02T01:59:50.905Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2024-32020\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2024-05-15T14:32:40.280977Z\"}}}], \"affected\": [{\"cpes\": [\"cpe:2.3:a:git:git:*:*:*:*:*:*:*:*\"], \"vendor\": \"git\", \"product\": \"git\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"2.39.4\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:2.3:a:git:git:2.45.0:*:*:*:*:*:*:*\"], \"vendor\": \"git\", \"product\": \"git\", \"versions\": [{\"status\": \"affected\", \"version\": \"2.45.0\"}], \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:2.3:a:git:git:2.44.0:*:*:*:*:*:*:*\"], \"vendor\": \"git\", \"product\": \"git\", \"versions\": [{\"status\": \"affected\", \"version\": \"2.44.0\"}], \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:2.3:a:git:git:2.43:*:*:*:*:*:*:*\"], \"vendor\": \"git\", \"product\": \"git\", \"versions\": [{\"status\": \"affected\", \"version\": \"2.43\", \"lessThan\": \"2.43.4\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:2.3:a:git:git:2.42.0:*:*:*:*:*:*:*\"], \"vendor\": \"git\", \"product\": \"git\", \"versions\": [{\"status\": \"affected\", \"version\": \"2.42.0\", \"lessThan\": \"2.42.2\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:2.3:a:git:git:2.41.0:*:*:*:*:*:*:*\"], \"vendor\": \"git\", \"product\": \"git\", \"versions\": [{\"status\": \"affected\", \"version\": \"2.41.0\"}], \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:2.3:a:git:git:2.40.0:*:*:*:*:*:*:*\"], \"vendor\": \"git\", \"product\": \"git\", \"versions\": [{\"status\": \"affected\", \"version\": \"2.40.0\", \"lessThan\": \"2.40.2\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2024-05-15T14:42:28.284Z\"}}], \"cna\": {\"title\": \"Cloning local Git repository by untrusted user allows the untrusted user to modify objects in the cloned repository at will\", \"source\": {\"advisory\": \"GHSA-5rfh-556j-fhgj\", \"discovery\": \"UNKNOWN\"}, \"metrics\": [{\"cvssV3_1\": {\"scope\": \"CHANGED\", \"version\": \"3.1\", \"baseScore\": 3.9, \"attackVector\": \"LOCAL\", \"baseSeverity\": \"LOW\", \"vectorString\": \"CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:N/I:L/A:L\", \"integrityImpact\": \"LOW\", \"userInteraction\": \"REQUIRED\", \"attackComplexity\": \"HIGH\", \"availabilityImpact\": \"LOW\", \"privilegesRequired\": \"LOW\", \"confidentialityImpact\": \"NONE\"}}], \"affected\": [{\"vendor\": \"git\", \"product\": \"git\", \"versions\": [{\"status\": \"affected\", \"version\": \"= 2.45.0\"}, {\"status\": \"affected\", \"version\": \"= 2.44.0\"}, {\"status\": \"affected\", \"version\": \"\u003e= 2.43.0, \u003c 2.43.4\"}, {\"status\": \"affected\", \"version\": \"\u003e= 2.42.0, \u003c 2.42.2\"}, {\"status\": \"affected\", \"version\": \"= 2.41.0\"}, {\"status\": \"affected\", \"version\": \"\u003e= 2.40.0, \u003c 2.40.2\"}, {\"status\": \"affected\", \"version\": \"\u003c 2.39.4\"}]}], \"references\": [{\"url\": \"https://github.com/git/git/security/advisories/GHSA-5rfh-556j-fhgj\", \"name\": \"https://github.com/git/git/security/advisories/GHSA-5rfh-556j-fhgj\", \"tags\": [\"x_refsource_CONFIRM\"]}, {\"url\": \"https://github.com/git/git/commit/1204e1a824c34071019fe106348eaa6d88f9528d\", \"name\": \"https://github.com/git/git/commit/1204e1a824c34071019fe106348eaa6d88f9528d\", \"tags\": [\"x_refsource_MISC\"]}, {\"url\": \"https://github.com/git/git/commit/9e65df5eab274bf74c7b570107aacd1303a1e703\", \"name\": \"https://github.com/git/git/commit/9e65df5eab274bf74c7b570107aacd1303a1e703\", \"tags\": [\"x_refsource_MISC\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/S4CK4IYTXEOBZTEM5K3T6LWOIZ3S44AR/\"}, {\"url\": \"http://www.openwall.com/lists/oss-security/2024/05/14/2\"}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"Git is a revision control system. Prior to versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4, local clones may end up hardlinking files into the target repository\u0027s object database when source and target repository reside on the same disk. If the source repository is owned by a different user, then those hardlinked files may be rewritten at any point in time by the untrusted user. Cloning local repositories will cause Git to either copy or hardlink files of the source repository into the target repository. This significantly speeds up such local clones compared to doing a \\\"proper\\\" clone and saves both disk space and compute time. When cloning a repository located on the same disk that is owned by a different user than the current user we also end up creating such hardlinks. These files will continue to be owned and controlled by the potentially-untrusted user and can be rewritten by them at will in the future. The problem has been patched in versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-281\", \"description\": \"CWE-281: Improper Preservation of Permissions\"}]}], \"providerMetadata\": {\"orgId\": \"a0819718-46f1-4df5-94e2-005712e83aaa\", \"shortName\": \"GitHub_M\", \"dateUpdated\": \"2024-06-10T17:10:03.915Z\"}}}",
"cveMetadata": "{\"cveId\": \"CVE-2024-32020\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2025-02-13T17:52:05.240Z\", \"dateReserved\": \"2024-04-09T15:29:35.937Z\", \"assignerOrgId\": \"a0819718-46f1-4df5-94e2-005712e83aaa\", \"datePublished\": \"2024-05-14T18:54:08.184Z\", \"assignerShortName\": \"GitHub_M\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
}
}
CERTFR-2024-AVI-0646
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été découvertes dans les produits IBM. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, une élévation de privilèges et un déni de service à distance.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| IBM | Storage Protect | Storage Protect Plus Server versions 10.1.x antérieures à 10.1.16.2 | ||
| IBM | WebSphere | WebSphere Application Server Liberty versions antérieures à 24.0.0.5 | ||
| IBM | VIOS | VIOS version 4.1 avec un fichier openssl.base versions antérieures à 3.0.13.1000 | ||
| IBM | WebSphere | WebSphere Application Server versions 8.5.x antérieures à 8.5.5.25 | ||
| IBM | AIX | AIX versions 7.2 et 7.3 avec un fichier openssl.base versions antérieures à 1.1.1.2400 ou 3.0.13.1000 | ||
| IBM | WebSphere | WebSphere Application Server versions 9.0.x antérieures à 9.0.5.20 | ||
| IBM | N/A | Sterling Control Center versions 6.3.0 antérieures à 6.3.0.0 iFix06 | ||
| IBM | N/A | Sterling Control Center versions 6.2.1 antérieures à 6.2.1.0 iFix13 | ||
| IBM | VIOS | VIOS versions 3.1 et 4.1 avec un fichier openssl.base versions antérieures à 1.1.1.2400 ou 3.0.13.1000 | ||
| IBM | QRadar SIEM | QRadar SIEM versions 7.5.0.x antérieures à 7.5.0 UP9 IF01 |
References
| Title | Publication Time | Tags | ||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Storage Protect Plus Server versions 10.1.x ant\u00e9rieures \u00e0 10.1.16.2",
"product": {
"name": "Storage Protect",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "WebSphere Application Server Liberty versions ant\u00e9rieures \u00e0 24.0.0.5 ",
"product": {
"name": "WebSphere",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "VIOS version 4.1 avec un fichier openssl.base versions ant\u00e9rieures \u00e0 3.0.13.1000",
"product": {
"name": "VIOS",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "WebSphere Application Server versions 8.5.x ant\u00e9rieures \u00e0 8.5.5.25",
"product": {
"name": "WebSphere",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "AIX versions 7.2 et 7.3 avec un fichier openssl.base versions ant\u00e9rieures \u00e0 1.1.1.2400 ou 3.0.13.1000",
"product": {
"name": "AIX",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "WebSphere Application Server versions 9.0.x ant\u00e9rieures \u00e0 9.0.5.20",
"product": {
"name": "WebSphere",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Sterling Control Center versions 6.3.0 ant\u00e9rieures \u00e0 6.3.0.0 iFix06",
"product": {
"name": "N/A",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Sterling Control Center versions 6.2.1 ant\u00e9rieures \u00e0 6.2.1.0 iFix13",
"product": {
"name": "N/A",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "VIOS versions 3.1 et 4.1 avec un fichier openssl.base versions ant\u00e9rieures \u00e0 1.1.1.2400 ou 3.0.13.1000",
"product": {
"name": "VIOS",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "QRadar SIEM versions 7.5.0.x ant\u00e9rieures \u00e0 7.5.0 UP9 IF01",
"product": {
"name": "QRadar SIEM",
"vendor": {
"name": "IBM",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2024-26934",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26934"
},
{
"name": "CVE-2023-52477",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52477"
},
{
"name": "CVE-2024-27059",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27059"
},
{
"name": "CVE-2023-38264",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-38264"
},
{
"name": "CVE-2024-28849",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28849"
},
{
"name": "CVE-2024-26897",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26897"
},
{
"name": "CVE-2021-47055",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47055"
},
{
"name": "CVE-2024-35154",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35154"
},
{
"name": "CVE-2020-36777",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-36777"
},
{
"name": "CVE-2024-27052",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27052"
},
{
"name": "CVE-2023-52425",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52425"
},
{
"name": "CVE-2024-25744",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-25744"
},
{
"name": "CVE-2024-26973",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26973"
},
{
"name": "CVE-2021-47185",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47185"
},
{
"name": "CVE-2023-45283",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-45283"
},
{
"name": "CVE-2024-23650",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-23650"
},
{
"name": "CVE-2023-45288",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-45288"
},
{
"name": "CVE-2024-26603",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26603"
},
{
"name": "CVE-2024-26964",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26964"
},
{
"name": "CVE-2021-33198",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-33198"
},
{
"name": "CVE-2024-26993",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26993"
},
{
"name": "CVE-2019-25162",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-25162"
},
{
"name": "CVE-2022-41715",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-41715"
},
{
"name": "CVE-2023-39321",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-39321"
},
{
"name": "CVE-2023-45285",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-45285"
},
{
"name": "CVE-2024-24783",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24783"
},
{
"name": "CVE-2023-45284",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-45284"
},
{
"name": "CVE-2024-29415",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-29415"
},
{
"name": "CVE-2023-45289",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-45289"
},
{
"name": "CVE-2024-3652",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-3652"
},
{
"name": "CVE-2024-26615",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26615"
},
{
"name": "CVE-2024-26643",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26643"
},
{
"name": "CVE-2024-26779",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26779"
},
{
"name": "CVE-2024-25026",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-25026"
},
{
"name": "CVE-2023-45290",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-45290"
},
{
"name": "CVE-2024-32021",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-32021"
},
{
"name": "CVE-2024-28180",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28180"
},
{
"name": "CVE-2024-24806",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24806"
},
{
"name": "CVE-2024-23307",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-23307"
},
{
"name": "CVE-2023-52528",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52528"
},
{
"name": "CVE-2024-27048",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27048"
},
{
"name": "CVE-2021-47013",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47013"
},
{
"name": "CVE-2023-48795",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-48795"
},
{
"name": "CVE-2024-26593",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26593"
},
{
"name": "CVE-2023-39320",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-39320"
},
{
"name": "CVE-2022-48627",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48627"
},
{
"name": "CVE-2021-47171",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47171"
},
{
"name": "CVE-2024-26743",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26743"
},
{
"name": "CVE-2023-39318",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-39318"
},
{
"name": "CVE-2023-6240",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-6240"
},
{
"name": "CVE-2024-32004",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-32004"
},
{
"name": "CVE-2021-47118",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47118"
},
{
"name": "CVE-2024-24788",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24788"
},
{
"name": "CVE-2023-51767",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-51767"
},
{
"name": "CVE-2024-21011",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21011"
},
{
"name": "CVE-2024-32020",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-32020"
},
{
"name": "CVE-2024-5535",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-5535"
},
{
"name": "CVE-2024-22329",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-22329"
},
{
"name": "CVE-2019-20372",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-20372"
},
{
"name": "CVE-2023-45803",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-45803"
},
{
"name": "CVE-2023-29406",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-29406"
},
{
"name": "CVE-2023-39319",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-39319"
},
{
"name": "CVE-2024-32487",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-32487"
},
{
"name": "CVE-2024-27056",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27056"
},
{
"name": "CVE-2024-26642",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26642"
},
{
"name": "CVE-2024-24785",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24785"
},
{
"name": "CVE-2021-47153",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47153"
},
{
"name": "CVE-2023-52439",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52439"
},
{
"name": "CVE-2024-26610",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26610"
},
{
"name": "CVE-2024-2357",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-2357"
},
{
"name": "CVE-2024-21094",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21094"
},
{
"name": "CVE-2024-26919",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26919"
},
{
"name": "CVE-2023-52445",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52445"
},
{
"name": "CVE-2024-1394",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-1394"
},
{
"name": "CVE-2022-2880",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2880"
},
{
"name": "CVE-2024-27014",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27014"
},
{
"name": "CVE-2021-34558",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-34558"
},
{
"name": "CVE-2024-32465",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-32465"
},
{
"name": "CVE-2022-2879",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2879"
},
{
"name": "CVE-2024-26892",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26892"
},
{
"name": "CVE-2023-52578",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52578"
},
{
"name": "CVE-2023-29400",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-29400"
},
{
"name": "CVE-2024-24787",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24787"
},
{
"name": "CVE-2022-38096",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-38096"
},
{
"name": "CVE-2021-46934",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-46934"
},
{
"name": "CVE-2023-52598",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52598"
},
{
"name": "CVE-2024-4603",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-4603"
},
{
"name": "CVE-2024-26659",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26659"
},
{
"name": "CVE-2024-26933",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26933"
},
{
"name": "CVE-2023-46604",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-46604"
},
{
"name": "CVE-2023-52594",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52594"
},
{
"name": "CVE-2024-26693",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26693"
},
{
"name": "CVE-2023-52595",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52595"
},
{
"name": "CVE-2023-45287",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-45287"
},
{
"name": "CVE-2022-48624",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48624"
},
{
"name": "CVE-2024-4741",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-4741"
},
{
"name": "CVE-2023-52513",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52513"
},
{
"name": "CVE-2023-52610",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52610"
},
{
"name": "CVE-2024-3651",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-3651"
},
{
"name": "CVE-2023-39322",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-39322"
},
{
"name": "CVE-2023-52606",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52606"
},
{
"name": "CVE-2023-6546",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-6546"
},
{
"name": "CVE-2023-2953",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-2953"
},
{
"name": "CVE-2024-26872",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26872"
},
{
"name": "CVE-2024-26901",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26901"
},
{
"name": "CVE-2024-1086",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-1086"
},
{
"name": "CVE-2024-0565",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-0565"
},
{
"name": "CVE-2023-39323",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-39323"
},
{
"name": "CVE-2023-39326",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-39326"
},
{
"name": "CVE-2024-21085",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21085"
},
{
"name": "CVE-2023-29409",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-29409"
},
{
"name": "CVE-2023-42282",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-42282"
},
{
"name": "CVE-2023-39325",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-39325"
},
{
"name": "CVE-2024-0340",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-0340"
},
{
"name": "CVE-2024-26744",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26744"
},
{
"name": "CVE-2024-24786",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24786"
},
{
"name": "CVE-2024-32002",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-32002"
},
{
"name": "CVE-2022-48669",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48669"
},
{
"name": "CVE-2023-52565",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52565"
},
{
"name": "CVE-2023-52520",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52520"
},
{
"name": "CVE-2024-26694",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26694"
},
{
"name": "CVE-2024-26664",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26664"
},
{
"name": "CVE-2024-24784",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24784"
},
{
"name": "CVE-2023-52607",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52607"
},
{
"name": "CVE-2018-25091",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-25091"
},
{
"name": "CVE-2023-6931",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-6931"
}
],
"links": [],
"reference": "CERTFR-2024-AVI-0646",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2024-08-02T00:00:00.000000"
}
],
"risks": [
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
},
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Injection de code indirecte \u00e0 distance (XSS)"
},
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits IBM. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance, une \u00e9l\u00e9vation de privil\u00e8ges et un d\u00e9ni de service \u00e0 distance.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits IBM",
"vendor_advisories": [
{
"published_at": "2024-07-29",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7161679",
"url": "https://www.ibm.com/support/pages/node/7161679"
},
{
"published_at": "2024-07-26",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7161667",
"url": "https://www.ibm.com/support/pages/node/7161667"
},
{
"published_at": "2024-07-30",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7161954",
"url": "https://www.ibm.com/support/pages/node/7161954"
},
{
"published_at": "2024-07-30",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7162032",
"url": "https://www.ibm.com/support/pages/node/7162032"
},
{
"published_at": "2024-07-12",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7160144",
"url": "https://www.ibm.com/support/pages/node/7160144"
},
{
"published_at": "2024-07-31",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7162077",
"url": "https://www.ibm.com/support/pages/node/7162077"
}
]
}
CERTFR-2024-AVI-0741
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été découvertes dans les produits Juniper Secure Analytics. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, un déni de service à distance et une atteinte à la confidentialité des données.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| Juniper Networks | Secure Analytics | Juniper Secure Analytics versions antérieures à 7.5.0 UP9 IF02 |
References
| Title | Publication Time | Tags | |||
|---|---|---|---|---|---|
|
|||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Juniper Secure Analytics versions ant\u00e9rieures \u00e0 7.5.0 UP9 IF02",
"product": {
"name": "Secure Analytics",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2023-29483",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-29483"
},
{
"name": "CVE-2024-42472",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42472"
},
{
"name": "CVE-2024-26934",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26934"
},
{
"name": "CVE-2023-52477",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52477"
},
{
"name": "CVE-2023-52675",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52675"
},
{
"name": "CVE-2023-4692",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4692"
},
{
"name": "CVE-2024-27059",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27059"
},
{
"name": "CVE-2024-26656",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26656"
},
{
"name": "CVE-2024-28834",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28834"
},
{
"name": "CVE-2023-38264",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-38264"
},
{
"name": "CVE-2024-26974",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26974"
},
{
"name": "CVE-2024-26897",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26897"
},
{
"name": "CVE-2021-47055",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47055"
},
{
"name": "CVE-2020-36777",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-36777"
},
{
"name": "CVE-2023-43788",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-43788"
},
{
"name": "CVE-2024-27052",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27052"
},
{
"name": "CVE-2023-52425",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52425"
},
{
"name": "CVE-2024-26585",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26585"
},
{
"name": "CVE-2024-25744",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-25744"
},
{
"name": "CVE-2024-26973",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26973"
},
{
"name": "CVE-2024-33602",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-33602"
},
{
"name": "CVE-2024-27397",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27397"
},
{
"name": "CVE-2024-35854",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35854"
},
{
"name": "CVE-2023-52878",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52878"
},
{
"name": "CVE-2021-47185",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47185"
},
{
"name": "CVE-2024-23650",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-23650"
},
{
"name": "CVE-2024-26603",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26603"
},
{
"name": "CVE-2024-26964",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26964"
},
{
"name": "CVE-2024-5564",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-5564"
},
{
"name": "CVE-2021-33198",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-33198"
},
{
"name": "CVE-2024-26993",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26993"
},
{
"name": "CVE-2019-25162",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-25162"
},
{
"name": "CVE-2022-41715",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-41715"
},
{
"name": "CVE-2023-39321",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-39321"
},
{
"name": "CVE-2024-3933",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-3933"
},
{
"name": "CVE-2024-1975",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-1975"
},
{
"name": "CVE-2023-52669",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52669"
},
{
"name": "CVE-2019-11358",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-11358"
},
{
"name": "CVE-2020-15778",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-15778"
},
{
"name": "CVE-2022-3287",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3287"
},
{
"name": "CVE-2024-36004",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36004"
},
{
"name": "CVE-2024-26859",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26859"
},
{
"name": "CVE-2020-13936",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-13936"
},
{
"name": "CVE-2023-44487",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-44487"
},
{
"name": "CVE-2024-29857",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-29857"
},
{
"name": "CVE-2024-35959",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35959"
},
{
"name": "CVE-2018-20060",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-20060"
},
{
"name": "CVE-2024-35855",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35855"
},
{
"name": "CVE-2024-1737",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-1737"
},
{
"name": "CVE-2023-25193",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-25193"
},
{
"name": "CVE-2024-33600",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-33600"
},
{
"name": "CVE-2024-3652",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-3652"
},
{
"name": "CVE-2024-26615",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26615"
},
{
"name": "CVE-2023-45802",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-45802"
},
{
"name": "CVE-2024-26801",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26801"
},
{
"name": "CVE-2024-36007",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36007"
},
{
"name": "CVE-2021-47311",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47311"
},
{
"name": "CVE-2023-3635",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-3635"
},
{
"name": "CVE-2024-26643",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26643"
},
{
"name": "CVE-2024-26779",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26779"
},
{
"name": "CVE-2024-32021",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-32021"
},
{
"name": "CVE-2024-33599",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-33599"
},
{
"name": "CVE-2024-25629",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-25629"
},
{
"name": "CVE-2024-28180",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28180"
},
{
"name": "CVE-2024-24806",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24806"
},
{
"name": "CVE-2024-35852",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35852"
},
{
"name": "CVE-2024-23307",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-23307"
},
{
"name": "CVE-2024-30172",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-30172"
},
{
"name": "CVE-2023-52528",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52528"
},
{
"name": "CVE-2024-27048",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27048"
},
{
"name": "CVE-2021-47013",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47013"
},
{
"name": "CVE-2023-52781",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52781"
},
{
"name": "CVE-2024-35845",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35845"
},
{
"name": "CVE-2021-41072",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-41072"
},
{
"name": "CVE-2023-48795",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-48795"
},
{
"name": "CVE-2021-47073",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47073"
},
{
"name": "CVE-2024-26804",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26804"
},
{
"name": "CVE-2024-26593",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26593"
},
{
"name": "CVE-2022-48627",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48627"
},
{
"name": "CVE-2021-47171",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47171"
},
{
"name": "CVE-2024-26743",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26743"
},
{
"name": "CVE-2023-52686",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52686"
},
{
"name": "CVE-2021-47236",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47236"
},
{
"name": "CVE-2023-39318",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-39318"
},
{
"name": "CVE-2023-6240",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-6240"
},
{
"name": "CVE-2024-32004",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-32004"
},
{
"name": "CVE-2021-47118",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47118"
},
{
"name": "CVE-2024-35890",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35890"
},
{
"name": "CVE-2020-23064",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-23064"
},
{
"name": "CVE-2023-6918",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-6918"
},
{
"name": "CVE-2024-22195",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-22195"
},
{
"name": "CVE-2023-52877",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52877"
},
{
"name": "CVE-2024-21011",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21011"
},
{
"name": "CVE-2024-32020",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-32020"
},
{
"name": "CVE-2024-0450",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-0450"
},
{
"name": "CVE-2023-45803",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-45803"
},
{
"name": "CVE-2023-39319",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-39319"
},
{
"name": "CVE-2024-32487",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-32487"
},
{
"name": "CVE-2024-26826",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26826"
},
{
"name": "CVE-2024-27056",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27056"
},
{
"name": "CVE-2024-26583",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26583"
},
{
"name": "CVE-2024-26642",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26642"
},
{
"name": "CVE-2021-47153",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47153"
},
{
"name": "CVE-2024-35888",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35888"
},
{
"name": "CVE-2023-52700",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52700"
},
{
"name": "CVE-2023-31122",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-31122"
},
{
"name": "CVE-2023-52439",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52439"
},
{
"name": "CVE-2021-47495",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47495"
},
{
"name": "CVE-2024-26675",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26675"
},
{
"name": "CVE-2019-14865",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-14865"
},
{
"name": "CVE-2024-26906",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26906"
},
{
"name": "CVE-2024-26610",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26610"
},
{
"name": "CVE-2024-2357",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-2357"
},
{
"name": "CVE-2024-26584",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26584"
},
{
"name": "CVE-2024-21094",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21094"
},
{
"name": "CVE-2024-26919",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26919"
},
{
"name": "CVE-2023-52445",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52445"
},
{
"name": "CVE-2024-33601",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-33601"
},
{
"name": "CVE-2024-3019",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-3019"
},
{
"name": "CVE-2022-2880",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2880"
},
{
"name": "CVE-2024-27014",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27014"
},
{
"name": "CVE-2021-34558",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-34558"
},
{
"name": "CVE-2024-32465",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-32465"
},
{
"name": "CVE-2024-22365",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-22365"
},
{
"name": "CVE-2023-43804",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-43804"
},
{
"name": "CVE-2023-43789",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-43789"
},
{
"name": "CVE-2024-38428",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-38428"
},
{
"name": "CVE-2024-25062",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-25062"
},
{
"name": "CVE-2022-2879",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2879"
},
{
"name": "CVE-2024-2398",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-2398"
},
{
"name": "CVE-2024-26892",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26892"
},
{
"name": "CVE-2024-35835",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35835"
},
{
"name": "CVE-2024-26735",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26735"
},
{
"name": "CVE-2023-52881",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52881"
},
{
"name": "CVE-2023-4693",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4693"
},
{
"name": "CVE-2021-46972",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-46972"
},
{
"name": "CVE-2023-52578",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52578"
},
{
"name": "CVE-2024-26461",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26461"
},
{
"name": "CVE-2024-34750",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34750"
},
{
"name": "CVE-2024-26458",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26458"
},
{
"name": "CVE-2021-46934",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-46934"
},
{
"name": "CVE-2024-1048",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-1048"
},
{
"name": "CVE-2023-6004",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-6004"
},
{
"name": "CVE-2023-52598",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52598"
},
{
"name": "CVE-2020-11022",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-11022"
},
{
"name": "CVE-2023-7008",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-7008"
},
{
"name": "CVE-2024-26659",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26659"
},
{
"name": "CVE-2023-52667",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52667"
},
{
"name": "CVE-2024-26933",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26933"
},
{
"name": "CVE-2023-31484",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-31484"
},
{
"name": "CVE-2023-52703",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52703"
},
{
"name": "CVE-2023-52594",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52594"
},
{
"name": "CVE-2024-26693",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26693"
},
{
"name": "CVE-2023-52595",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52595"
},
{
"name": "CVE-2024-30171",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-30171"
},
{
"name": "CVE-2023-45287",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-45287"
},
{
"name": "CVE-2022-48624",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48624"
},
{
"name": "CVE-2024-26759",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26759"
},
{
"name": "CVE-2023-52464",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52464"
},
{
"name": "CVE-2023-52813",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52813"
},
{
"name": "CVE-2024-35838",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35838"
},
{
"name": "CVE-2023-52513",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52513"
},
{
"name": "CVE-2023-52615",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52615"
},
{
"name": "CVE-2023-52610",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52610"
},
{
"name": "CVE-2023-52560",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52560"
},
{
"name": "CVE-2024-3651",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-3651"
},
{
"name": "CVE-2023-39322",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-39322"
},
{
"name": "CVE-2023-52606",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52606"
},
{
"name": "CVE-2021-47069",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47069"
},
{
"name": "CVE-2024-35960",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35960"
},
{
"name": "CVE-2022-39253",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-39253"
},
{
"name": "CVE-2024-34064",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34064"
},
{
"name": "CVE-2023-2953",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-2953"
},
{
"name": "CVE-2024-26872",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26872"
},
{
"name": "CVE-2020-26555",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-26555"
},
{
"name": "CVE-2024-26901",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26901"
},
{
"name": "CVE-2023-39326",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-39326"
},
{
"name": "CVE-2024-21085",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21085"
},
{
"name": "CVE-2023-29409",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-29409"
},
{
"name": "CVE-2024-35789",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35789"
},
{
"name": "CVE-2023-52835",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52835"
},
{
"name": "CVE-2024-26982",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26982"
},
{
"name": "CVE-2021-47310",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47310"
},
{
"name": "CVE-2023-52626",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52626"
},
{
"name": "CVE-2024-0340",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-0340"
},
{
"name": "CVE-2024-26744",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26744"
},
{
"name": "CVE-2024-24786",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24786"
},
{
"name": "CVE-2024-35958",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35958"
},
{
"name": "CVE-2021-47456",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47456"
},
{
"name": "CVE-2021-40153",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-40153"
},
{
"name": "CVE-2024-32002",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-32002"
},
{
"name": "CVE-2022-48669",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48669"
},
{
"name": "CVE-2023-52565",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52565"
},
{
"name": "CVE-2023-52520",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52520"
},
{
"name": "CVE-2021-47356",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47356"
},
{
"name": "CVE-2024-26694",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26694"
},
{
"name": "CVE-2024-2961",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-2961"
},
{
"name": "CVE-2024-26664",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26664"
},
{
"name": "CVE-2024-28182",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28182"
},
{
"name": "CVE-2021-47353",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47353"
},
{
"name": "CVE-2023-6597",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-6597"
},
{
"name": "CVE-2023-52607",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52607"
},
{
"name": "CVE-2024-6345",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-6345"
},
{
"name": "CVE-2020-11023",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-11023"
},
{
"name": "CVE-2018-25091",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-25091"
},
{
"name": "CVE-2023-5090",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-5090"
},
{
"name": "CVE-2024-27410",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27410"
},
{
"name": "CVE-2021-46909",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-46909"
},
{
"name": "CVE-2024-35853",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35853"
},
{
"name": "CVE-2024-26907",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26907"
}
],
"links": [],
"reference": "CERTFR-2024-AVI-0741",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2024-09-05T00:00:00.000000"
},
{
"description": "Ajout r\u00e9f\u00e9rence \u00e9diteur",
"revision_date": "2024-09-06T00:00:00.000000"
},
{
"description": "Correction d\u0027identifiants CVE erron\u00e9s",
"revision_date": "2024-10-15T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Injection de code indirecte \u00e0 distance (XSS)"
},
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits Juniper Secure Analytics. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance, un d\u00e9ni de service \u00e0 distance et une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans Juniper Secure Analytics",
"vendor_advisories": [
{
"published_at": "2024-09-30",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA86686",
"url": "https://supportportal.juniper.net/s/article/On-Demand-JSA-Series-Multiple-vulnerabilities-resolved-in-Juniper-Secure-Analytics-in-7-5-0-UP9-IF02"
}
]
}
CERTFR-2024-AVI-0646
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été découvertes dans les produits IBM. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, une élévation de privilèges et un déni de service à distance.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| IBM | Storage Protect | Storage Protect Plus Server versions 10.1.x antérieures à 10.1.16.2 | ||
| IBM | WebSphere | WebSphere Application Server Liberty versions antérieures à 24.0.0.5 | ||
| IBM | VIOS | VIOS version 4.1 avec un fichier openssl.base versions antérieures à 3.0.13.1000 | ||
| IBM | WebSphere | WebSphere Application Server versions 8.5.x antérieures à 8.5.5.25 | ||
| IBM | AIX | AIX versions 7.2 et 7.3 avec un fichier openssl.base versions antérieures à 1.1.1.2400 ou 3.0.13.1000 | ||
| IBM | WebSphere | WebSphere Application Server versions 9.0.x antérieures à 9.0.5.20 | ||
| IBM | N/A | Sterling Control Center versions 6.3.0 antérieures à 6.3.0.0 iFix06 | ||
| IBM | N/A | Sterling Control Center versions 6.2.1 antérieures à 6.2.1.0 iFix13 | ||
| IBM | VIOS | VIOS versions 3.1 et 4.1 avec un fichier openssl.base versions antérieures à 1.1.1.2400 ou 3.0.13.1000 | ||
| IBM | QRadar SIEM | QRadar SIEM versions 7.5.0.x antérieures à 7.5.0 UP9 IF01 |
References
| Title | Publication Time | Tags | ||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Storage Protect Plus Server versions 10.1.x ant\u00e9rieures \u00e0 10.1.16.2",
"product": {
"name": "Storage Protect",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "WebSphere Application Server Liberty versions ant\u00e9rieures \u00e0 24.0.0.5 ",
"product": {
"name": "WebSphere",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "VIOS version 4.1 avec un fichier openssl.base versions ant\u00e9rieures \u00e0 3.0.13.1000",
"product": {
"name": "VIOS",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "WebSphere Application Server versions 8.5.x ant\u00e9rieures \u00e0 8.5.5.25",
"product": {
"name": "WebSphere",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "AIX versions 7.2 et 7.3 avec un fichier openssl.base versions ant\u00e9rieures \u00e0 1.1.1.2400 ou 3.0.13.1000",
"product": {
"name": "AIX",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "WebSphere Application Server versions 9.0.x ant\u00e9rieures \u00e0 9.0.5.20",
"product": {
"name": "WebSphere",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Sterling Control Center versions 6.3.0 ant\u00e9rieures \u00e0 6.3.0.0 iFix06",
"product": {
"name": "N/A",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Sterling Control Center versions 6.2.1 ant\u00e9rieures \u00e0 6.2.1.0 iFix13",
"product": {
"name": "N/A",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "VIOS versions 3.1 et 4.1 avec un fichier openssl.base versions ant\u00e9rieures \u00e0 1.1.1.2400 ou 3.0.13.1000",
"product": {
"name": "VIOS",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "QRadar SIEM versions 7.5.0.x ant\u00e9rieures \u00e0 7.5.0 UP9 IF01",
"product": {
"name": "QRadar SIEM",
"vendor": {
"name": "IBM",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2024-26934",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26934"
},
{
"name": "CVE-2023-52477",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52477"
},
{
"name": "CVE-2024-27059",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27059"
},
{
"name": "CVE-2023-38264",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-38264"
},
{
"name": "CVE-2024-28849",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28849"
},
{
"name": "CVE-2024-26897",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26897"
},
{
"name": "CVE-2021-47055",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47055"
},
{
"name": "CVE-2024-35154",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35154"
},
{
"name": "CVE-2020-36777",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-36777"
},
{
"name": "CVE-2024-27052",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27052"
},
{
"name": "CVE-2023-52425",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52425"
},
{
"name": "CVE-2024-25744",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-25744"
},
{
"name": "CVE-2024-26973",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26973"
},
{
"name": "CVE-2021-47185",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47185"
},
{
"name": "CVE-2023-45283",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-45283"
},
{
"name": "CVE-2024-23650",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-23650"
},
{
"name": "CVE-2023-45288",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-45288"
},
{
"name": "CVE-2024-26603",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26603"
},
{
"name": "CVE-2024-26964",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26964"
},
{
"name": "CVE-2021-33198",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-33198"
},
{
"name": "CVE-2024-26993",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26993"
},
{
"name": "CVE-2019-25162",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-25162"
},
{
"name": "CVE-2022-41715",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-41715"
},
{
"name": "CVE-2023-39321",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-39321"
},
{
"name": "CVE-2023-45285",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-45285"
},
{
"name": "CVE-2024-24783",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24783"
},
{
"name": "CVE-2023-45284",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-45284"
},
{
"name": "CVE-2024-29415",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-29415"
},
{
"name": "CVE-2023-45289",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-45289"
},
{
"name": "CVE-2024-3652",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-3652"
},
{
"name": "CVE-2024-26615",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26615"
},
{
"name": "CVE-2024-26643",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26643"
},
{
"name": "CVE-2024-26779",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26779"
},
{
"name": "CVE-2024-25026",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-25026"
},
{
"name": "CVE-2023-45290",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-45290"
},
{
"name": "CVE-2024-32021",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-32021"
},
{
"name": "CVE-2024-28180",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28180"
},
{
"name": "CVE-2024-24806",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24806"
},
{
"name": "CVE-2024-23307",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-23307"
},
{
"name": "CVE-2023-52528",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52528"
},
{
"name": "CVE-2024-27048",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27048"
},
{
"name": "CVE-2021-47013",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47013"
},
{
"name": "CVE-2023-48795",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-48795"
},
{
"name": "CVE-2024-26593",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26593"
},
{
"name": "CVE-2023-39320",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-39320"
},
{
"name": "CVE-2022-48627",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48627"
},
{
"name": "CVE-2021-47171",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47171"
},
{
"name": "CVE-2024-26743",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26743"
},
{
"name": "CVE-2023-39318",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-39318"
},
{
"name": "CVE-2023-6240",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-6240"
},
{
"name": "CVE-2024-32004",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-32004"
},
{
"name": "CVE-2021-47118",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47118"
},
{
"name": "CVE-2024-24788",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24788"
},
{
"name": "CVE-2023-51767",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-51767"
},
{
"name": "CVE-2024-21011",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21011"
},
{
"name": "CVE-2024-32020",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-32020"
},
{
"name": "CVE-2024-5535",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-5535"
},
{
"name": "CVE-2024-22329",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-22329"
},
{
"name": "CVE-2019-20372",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-20372"
},
{
"name": "CVE-2023-45803",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-45803"
},
{
"name": "CVE-2023-29406",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-29406"
},
{
"name": "CVE-2023-39319",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-39319"
},
{
"name": "CVE-2024-32487",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-32487"
},
{
"name": "CVE-2024-27056",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27056"
},
{
"name": "CVE-2024-26642",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26642"
},
{
"name": "CVE-2024-24785",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24785"
},
{
"name": "CVE-2021-47153",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47153"
},
{
"name": "CVE-2023-52439",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52439"
},
{
"name": "CVE-2024-26610",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26610"
},
{
"name": "CVE-2024-2357",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-2357"
},
{
"name": "CVE-2024-21094",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21094"
},
{
"name": "CVE-2024-26919",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26919"
},
{
"name": "CVE-2023-52445",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52445"
},
{
"name": "CVE-2024-1394",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-1394"
},
{
"name": "CVE-2022-2880",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2880"
},
{
"name": "CVE-2024-27014",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27014"
},
{
"name": "CVE-2021-34558",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-34558"
},
{
"name": "CVE-2024-32465",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-32465"
},
{
"name": "CVE-2022-2879",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2879"
},
{
"name": "CVE-2024-26892",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26892"
},
{
"name": "CVE-2023-52578",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52578"
},
{
"name": "CVE-2023-29400",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-29400"
},
{
"name": "CVE-2024-24787",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24787"
},
{
"name": "CVE-2022-38096",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-38096"
},
{
"name": "CVE-2021-46934",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-46934"
},
{
"name": "CVE-2023-52598",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52598"
},
{
"name": "CVE-2024-4603",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-4603"
},
{
"name": "CVE-2024-26659",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26659"
},
{
"name": "CVE-2024-26933",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26933"
},
{
"name": "CVE-2023-46604",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-46604"
},
{
"name": "CVE-2023-52594",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52594"
},
{
"name": "CVE-2024-26693",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26693"
},
{
"name": "CVE-2023-52595",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52595"
},
{
"name": "CVE-2023-45287",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-45287"
},
{
"name": "CVE-2022-48624",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48624"
},
{
"name": "CVE-2024-4741",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-4741"
},
{
"name": "CVE-2023-52513",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52513"
},
{
"name": "CVE-2023-52610",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52610"
},
{
"name": "CVE-2024-3651",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-3651"
},
{
"name": "CVE-2023-39322",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-39322"
},
{
"name": "CVE-2023-52606",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52606"
},
{
"name": "CVE-2023-6546",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-6546"
},
{
"name": "CVE-2023-2953",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-2953"
},
{
"name": "CVE-2024-26872",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26872"
},
{
"name": "CVE-2024-26901",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26901"
},
{
"name": "CVE-2024-1086",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-1086"
},
{
"name": "CVE-2024-0565",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-0565"
},
{
"name": "CVE-2023-39323",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-39323"
},
{
"name": "CVE-2023-39326",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-39326"
},
{
"name": "CVE-2024-21085",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21085"
},
{
"name": "CVE-2023-29409",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-29409"
},
{
"name": "CVE-2023-42282",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-42282"
},
{
"name": "CVE-2023-39325",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-39325"
},
{
"name": "CVE-2024-0340",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-0340"
},
{
"name": "CVE-2024-26744",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26744"
},
{
"name": "CVE-2024-24786",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24786"
},
{
"name": "CVE-2024-32002",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-32002"
},
{
"name": "CVE-2022-48669",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48669"
},
{
"name": "CVE-2023-52565",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52565"
},
{
"name": "CVE-2023-52520",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52520"
},
{
"name": "CVE-2024-26694",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26694"
},
{
"name": "CVE-2024-26664",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26664"
},
{
"name": "CVE-2024-24784",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24784"
},
{
"name": "CVE-2023-52607",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52607"
},
{
"name": "CVE-2018-25091",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-25091"
},
{
"name": "CVE-2023-6931",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-6931"
}
],
"links": [],
"reference": "CERTFR-2024-AVI-0646",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2024-08-02T00:00:00.000000"
}
],
"risks": [
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
},
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Injection de code indirecte \u00e0 distance (XSS)"
},
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits IBM. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance, une \u00e9l\u00e9vation de privil\u00e8ges et un d\u00e9ni de service \u00e0 distance.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits IBM",
"vendor_advisories": [
{
"published_at": "2024-07-29",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7161679",
"url": "https://www.ibm.com/support/pages/node/7161679"
},
{
"published_at": "2024-07-26",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7161667",
"url": "https://www.ibm.com/support/pages/node/7161667"
},
{
"published_at": "2024-07-30",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7161954",
"url": "https://www.ibm.com/support/pages/node/7161954"
},
{
"published_at": "2024-07-30",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7162032",
"url": "https://www.ibm.com/support/pages/node/7162032"
},
{
"published_at": "2024-07-12",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7160144",
"url": "https://www.ibm.com/support/pages/node/7160144"
},
{
"published_at": "2024-07-31",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7162077",
"url": "https://www.ibm.com/support/pages/node/7162077"
}
]
}
CERTFR-2025-AVI-0304
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été découvertes dans les produits Juniper Networks. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, une élévation de privilèges et un déni de service à distance.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
L'éditeur indique que les versions 21.4.x de Junos OS pour SRX Series ne bénéficient pas de correctif pour la vulnérabilité CVE-2025-30659.
Impacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| Juniper Networks | Junos OS | Junos OS versions 21.4.x antérieures à 21.4R3-S10 | ||
| Juniper Networks | Junos OS Evolved | Junos OS Evolved versions 22.4.x-EVO antérieures à 22.4R3-S6-EVO | ||
| Juniper Networks | Junos OS Evolved | Junos OS Evolved versions 23.4.x-EVO antérieures à 23.4R2-S4-EVO | ||
| Juniper Networks | Junos OS | Junos OS versions 22.2.x antérieures à 22.2R3-S6 | ||
| Juniper Networks | Junos OS Evolved | Junos OS Evolved versions antérieures à 21.4R3-S10-EVO | ||
| Juniper Networks | Junos OS Evolved | Junos OS Evolved versions 23.2.x-EVO antérieures à 23.2R2-S3-EVO | ||
| Juniper Networks | Junos OS Evolved | Junos OS Evolved versions 24.2.x-EVO antérieures à 24.2R2-EVO | ||
| Juniper Networks | Junos Space | Junos Space versions antérieures à 24.1R3 | ||
| Juniper Networks | Junos Space | Junos Space Security Director versions antérieures à 24.1R3 | ||
| Juniper Networks | Junos OS | Junos OS versions 23.4.x antérieures à 23.4R2-S4 | ||
| Juniper Networks | Junos OS Evolved | Junos OS Evolved versions 22.2.x-EVO antérieures à 22.2R3-S6-EVO | ||
| Juniper Networks | CTPView | CTPView versions antérieures à 9.2R1 | ||
| Juniper Networks | Junos OS | Junos OS versions 22.4.x antérieures à 22.4R3-S6 | ||
| Juniper Networks | Junos OS | Junos OS versions 23.2.x antérieures à 23.2R2-S3 | ||
| Juniper Networks | Junos OS | Junos OS versions 24.2.x antérieures à 24.2R2 | ||
| Juniper Networks | Junos OS | Junos OS versions antérieures à 21.2R3-S9 |
References
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Junos OS versions 21.4.x ant\u00e9rieures \u00e0 21.4R3-S10 ",
"product": {
"name": "Junos OS",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS Evolved versions 22.4.x-EVO ant\u00e9rieures \u00e0 22.4R3-S6-EVO",
"product": {
"name": "Junos OS Evolved",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS Evolved versions 23.4.x-EVO ant\u00e9rieures \u00e0 23.4R2-S4-EVO",
"product": {
"name": "Junos OS Evolved",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS versions 22.2.x ant\u00e9rieures \u00e0 22.2R3-S6",
"product": {
"name": "Junos OS",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS Evolved versions ant\u00e9rieures \u00e0 21.4R3-S10-EVO",
"product": {
"name": "Junos OS Evolved",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS Evolved versions 23.2.x-EVO ant\u00e9rieures \u00e0 23.2R2-S3-EVO",
"product": {
"name": "Junos OS Evolved",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS Evolved versions 24.2.x-EVO ant\u00e9rieures \u00e0 24.2R2-EVO",
"product": {
"name": "Junos OS Evolved",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos Space versions ant\u00e9rieures \u00e0 24.1R3",
"product": {
"name": "Junos Space",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos Space Security Director versions ant\u00e9rieures \u00e0 24.1R3",
"product": {
"name": "Junos Space",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS versions 23.4.x ant\u00e9rieures \u00e0 23.4R2-S4",
"product": {
"name": "Junos OS",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS Evolved versions 22.2.x-EVO ant\u00e9rieures \u00e0 22.2R3-S6-EVO",
"product": {
"name": "Junos OS Evolved",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "CTPView versions ant\u00e9rieures \u00e0 9.2R1",
"product": {
"name": "CTPView",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS versions 22.4.x ant\u00e9rieures \u00e0 22.4R3-S6",
"product": {
"name": "Junos OS",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS versions 23.2.x ant\u00e9rieures \u00e0 23.2R2-S3",
"product": {
"name": "Junos OS",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS versions 24.2.x ant\u00e9rieures \u00e0 24.2R2",
"product": {
"name": "Junos OS",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS versions ant\u00e9rieures \u00e0 21.2R3-S9",
"product": {
"name": "Junos OS",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
}
],
"affected_systems_content": "L\u0027\u00e9diteur indique que les versions 21.4.x de Junos OS pour SRX Series ne b\u00e9n\u00e9ficient pas de correctif pour la vuln\u00e9rabilit\u00e9 CVE-2025-30659.",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2024-42472",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42472"
},
{
"name": "CVE-2024-7006",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-7006"
},
{
"name": "CVE-2024-21235",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21235"
},
{
"name": "CVE-2024-27820",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27820"
},
{
"name": "CVE-2024-42284",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42284"
},
{
"name": "CVE-2024-27052",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27052"
},
{
"name": "CVE-2025-21597",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21597"
},
{
"name": "CVE-2024-33602",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-33602"
},
{
"name": "CVE-2024-4076",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-4076"
},
{
"name": "CVE-2025-30658",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30658"
},
{
"name": "CVE-2024-40866",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-40866"
},
{
"name": "CVE-2024-6232",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-6232"
},
{
"name": "CVE-2024-21823",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21823"
},
{
"name": "CVE-2023-28746",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-28746"
},
{
"name": "CVE-2024-26993",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26993"
},
{
"name": "CVE-2024-1975",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-1975"
},
{
"name": "CVE-2024-40898",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-40898"
},
{
"name": "CVE-2024-26852",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26852"
},
{
"name": "CVE-2011-5094",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-5094"
},
{
"name": "CVE-2025-30657",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30657"
},
{
"name": "CVE-2025-30660",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30660"
},
{
"name": "CVE-2024-1737",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-1737"
},
{
"name": "CVE-2024-33600",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-33600"
},
{
"name": "CVE-2024-3652",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-3652"
},
{
"name": "CVE-2024-44187",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-44187"
},
{
"name": "CVE-2025-21601",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21601"
},
{
"name": "CVE-2024-32021",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-32021"
},
{
"name": "CVE-2024-40725",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-40725"
},
{
"name": "CVE-2019-7611",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-7611"
},
{
"name": "CVE-2024-33599",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-33599"
},
{
"name": "CVE-2025-21591",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21591"
},
{
"name": "CVE-2025-30649",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30649"
},
{
"name": "CVE-2025-30652",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30652"
},
{
"name": "CVE-2024-40789",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-40789"
},
{
"name": "CVE-2024-35845",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35845"
},
{
"name": "CVE-2025-30651",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30651"
},
{
"name": "CVE-2024-32004",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-32004"
},
{
"name": "CVE-2024-39884",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39884"
},
{
"name": "CVE-2023-48161",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-48161"
},
{
"name": "CVE-2024-32020",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-32020"
},
{
"name": "CVE-2024-0450",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-0450"
},
{
"name": "CVE-2024-27838",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27838"
},
{
"name": "CVE-2024-23271",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-23271"
},
{
"name": "CVE-2024-39487",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39487"
},
{
"name": "CVE-2024-36971",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36971"
},
{
"name": "CVE-2024-33601",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-33601"
},
{
"name": "CVE-2025-30647",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30647"
},
{
"name": "CVE-2024-32465",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-32465"
},
{
"name": "CVE-2011-1473",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-1473"
},
{
"name": "CVE-2025-30654",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30654"
},
{
"name": "CVE-2025-30655",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30655"
},
{
"name": "CVE-2024-40782",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-40782"
},
{
"name": "CVE-2024-26735",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26735"
},
{
"name": "CVE-2024-35899",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35899"
},
{
"name": "CVE-2024-40954",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-40954"
},
{
"name": "CVE-2021-47596",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47596"
},
{
"name": "CVE-2025-30659",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30659"
},
{
"name": "CVE-2025-30653",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30653"
},
{
"name": "CVE-2025-30645",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30645"
},
{
"name": "CVE-2020-7021",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-7021"
},
{
"name": "CVE-2021-22135",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-22135"
},
{
"name": "CVE-2025-30646",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30646"
},
{
"name": "CVE-2024-27851",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27851"
},
{
"name": "CVE-2025-30644",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30644"
},
{
"name": "CVE-2024-3651",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-3651"
},
{
"name": "CVE-2025-30656",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30656"
},
{
"name": "CVE-2022-39253",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-39253"
},
{
"name": "CVE-2021-22144",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-22144"
},
{
"name": "CVE-2024-40958",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-40958"
},
{
"name": "CVE-2025-21595",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21595"
},
{
"name": "CVE-2025-30648",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30648"
},
{
"name": "CVE-2024-21210",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21210"
},
{
"name": "CVE-2021-22137",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-22137"
},
{
"name": "CVE-2024-32002",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-32002"
},
{
"name": "CVE-2024-2961",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-2961"
},
{
"name": "CVE-2024-21217",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21217"
},
{
"name": "CVE-2024-28182",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28182"
},
{
"name": "CVE-2023-6597",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-6597"
},
{
"name": "CVE-2022-24808",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-24808"
},
{
"name": "CVE-2024-21208",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21208"
},
{
"name": "CVE-2025-21594",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21594"
},
{
"name": "CVE-2020-7020",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-7020"
}
],
"links": [],
"reference": "CERTFR-2025-AVI-0304",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2025-04-10T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "Falsification de requ\u00eates c\u00f4t\u00e9 serveur (SSRF)"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits Juniper Networks. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance, une \u00e9l\u00e9vation de privil\u00e8ges et un d\u00e9ni de service \u00e0 distance.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Juniper Networks",
"vendor_advisories": [
{
"published_at": "2025-04-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA96456",
"url": "https://supportportal.juniper.net/s/article/2025-04-Security-Bulletin-Junos-OS-and-Junos-OS-Evolved-Receipt-of-a-malformed-LLDP-TLV-results-in-l2cpd-crash-CVE-2025-30646"
},
{
"published_at": "2025-04-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA96447",
"url": "https://supportportal.juniper.net/s/article/2025-04-Security-Bulletin-Junos-Space-Multiple-vulnerabilities-resolved-in-24-1R3-release"
},
{
"published_at": "2025-04-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA96467",
"url": "https://supportportal.juniper.net/s/article/2025-04-Security-Bulletin-Junos-OS-Processing-of-a-specific-BGP-update-causes-the-SRRD-process-to-crash-CVE-2025-30657?language=en_US"
},
{
"published_at": "2025-04-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA96461",
"url": "https://supportportal.juniper.net/s/article/2025-04-Security-Bulletin-Junos-OS-and-Junos-OS-Evolved-Receipt-of-a-specific-ICMPv6-packet-causes-a-memory-overrun-leading-to-an-rpd-crash-CVE-2025-30651"
},
{
"published_at": "2025-04-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA96446",
"url": "https://supportportal.juniper.net/s/article/2025-04-Security-Bulletin-Junos-Space-Security-Director-Multiple-vulnerabilities-resolved-in-24-1R3-release"
},
{
"published_at": "2025-04-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA96451",
"url": "https://supportportal.juniper.net/s/article/2025-04-Security-Bulletin-Junos-OS-and-Junos-OS-Evolved-When-BGP-rib-sharding-and-update-threading-are-configured-and-a-peer-flaps-an-rpd-core-is-observed"
},
{
"published_at": "2025-04-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA96470",
"url": "https://supportportal.juniper.net/s/article/2025-04-Security-Bulletin-Junos-OS-SRX-Series-A-device-configured-for-vector-routing-crashes-when-receiving-specific-traffic-CVE-2025-30659?language=en_US"
},
{
"published_at": "2025-04-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA96458",
"url": "https://supportportal.juniper.net/s/article/2025-04-Security-Bulletin-Junos-OS-and-Junos-OS-Evolved-Receipt-of-a-specifically-malformed-DHCP-packet-causes-jdhcpd-process-to-crash-CVE-2025-30648"
},
{
"published_at": "2025-04-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA96462",
"url": "https://supportportal.juniper.net/s/article/2025-04-Security-Bulletin-Junos-OS-and-Junos-OS-Evolved-Executing-a-specific-CLI-command-when-asregex-optimized-is-configured-causes-an-RPD-crash-CVE-2025-30652"
},
{
"published_at": "2025-04-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA96457",
"url": "https://supportportal.juniper.net/s/article/2025-04-Security-Bulletin-Junos-OS-MX-Series-Subscriber-login-logout-activity-will-lead-to-a-memory-leak-CVE-2025-30647"
},
{
"published_at": "2025-04-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA96466",
"url": "https://supportportal.juniper.net/s/article/2025-04-Security-Bulletin-Junos-OS-MX-Series-SRX-Series-Processing-of-specific-SIP-INVITE-messages-by-the-SIP-ALG-will-lead-to-an-FPC-crash-CVE-2025-30656?language=en_US"
},
{
"published_at": "2025-04-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA96463",
"url": "https://supportportal.juniper.net/s/article/2025-04-Security-Bulletin-Junos-OS-and-Junos-OS-Evolved-LSP-flap-in-a-specific-MPLS-LSP-scenario-leads-to-RPD-crash-CVE-2025-30653"
},
{
"published_at": "2025-04-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA96459",
"url": "https://supportportal.juniper.net/s/article/2025-04-Security-Bulletin-Junos-OS-MX240-MX480-MX960-with-SPC3-An-attacker-sending-specific-packets-will-cause-a-CPU-utilization-DoS-CVE-2025-30649"
},
{
"published_at": "2025-04-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA96450",
"url": "https://supportportal.juniper.net/s/article/2025-04-Security-Bulletin-Junos-OS-and-Junos-OS-Evolved-In-an-EVPN-VXLAN-scenario-specific-ARP-or-NDP-packets-cause-FPC-to-crash-CVE-2025-21595"
},
{
"published_at": "2025-04-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA96464",
"url": "https://supportportal.juniper.net/s/article/2025-04-Security-Bulletin-Junos-OS-and-Junos-OS-Evolved-A-local-low-privileged-user-can-access-sensitive-information-CVE-2025-30654"
},
{
"published_at": "2025-04-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA96453",
"url": "https://supportportal.juniper.net/s/article/2025-04-Security-Bulletin-Junos-OS-EX2300-EX3400-EX4000-Series-QFX5k-Series-Receipt-of-a-specific-DHCP-packet-causes-FPC-crash-when-DHCP-Option-82-is-enabled-CVE-2025-30644"
},
{
"published_at": "2025-04-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA96465",
"url": "https://supportportal.juniper.net/s/article/2025-04-Security-Bulletin-Junos-OS-and-Junos-OS-Evolved-A-specific-CLI-command-will-cause-a-RPD-crash-when-rib-sharding-and-update-threading-is-enabled-CVE-2025-30655?language=en_US"
},
{
"published_at": "2025-04-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA96444",
"url": "https://supportportal.juniper.net/s/article/2025-04-Security-Bulletin-CTP-View-Multiple-Vulnerabilities-resolved-in-9-2R1-release"
},
{
"published_at": "2025-04-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA96469",
"url": "https://supportportal.juniper.net/s/article/2025-04-Security-Bulletin-Junos-OS-SRX-Series-On-devices-with-Anti-Virus-enabled-malicious-server-responses-will-cause-memory-to-leak-ultimately-causing-forwarding-to-stop-CVE-2025-30658?language=en_US"
},
{
"published_at": "2025-04-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA96448",
"url": "https://supportportal.juniper.net/s/article/2025-04-Security-Bulletin-Junos-OS-An-unauthenticated-adjacent-attacker-sending-a-malformed-DHCP-packet-causes-jdhcpd-to-crash-CVE-2025-21591"
},
{
"published_at": "2025-04-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA96471",
"url": "https://supportportal.juniper.net/s/article/2025-04-Security-Bulletin-Junos-OS-MX-Series-Decapsulation-of-specific-GRE-packets-leads-to-PFE-reset-CVE-2025-30660?language=en_US"
},
{
"published_at": "2025-04-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA96449",
"url": "https://supportportal.juniper.net/s/article/2025-04-Security-Bulletin-Junos-OS-MX-Series-In-DS-lite-and-NAT-senario-receipt-of-crafted-IPv4-traffic-causes-port-block-CVE-2025-21594"
},
{
"published_at": "2025-04-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA96455",
"url": "https://supportportal.juniper.net/s/article/2025-04-Security-Bulletin-Junos-OS-SRX-Series-Transmission-of-specific-control-traffic-sent-out-of-a-DS-Lite-tunnel-results-in-flowd-crash-CVE-2025-30645"
},
{
"published_at": "2025-04-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA96452",
"url": "https://supportportal.juniper.net/s/article/2025-04-Security-Bulletin-Junos-OS-SRX-and-EX-Series-MX240-MX480-MX960-QFX5120-Series-When-web-management-is-enabled-for-specific-services-an-attacker-may-cause-a-CPU-spike-by-sending-genuine-packets-to-the-device-CVE-2025-21601"
}
]
}
CERTFR-2024-AVI-0741
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été découvertes dans les produits Juniper Secure Analytics. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, un déni de service à distance et une atteinte à la confidentialité des données.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| Juniper Networks | Secure Analytics | Juniper Secure Analytics versions antérieures à 7.5.0 UP9 IF02 |
References
| Title | Publication Time | Tags | |||
|---|---|---|---|---|---|
|
|||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Juniper Secure Analytics versions ant\u00e9rieures \u00e0 7.5.0 UP9 IF02",
"product": {
"name": "Secure Analytics",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2023-29483",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-29483"
},
{
"name": "CVE-2024-42472",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42472"
},
{
"name": "CVE-2024-26934",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26934"
},
{
"name": "CVE-2023-52477",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52477"
},
{
"name": "CVE-2023-52675",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52675"
},
{
"name": "CVE-2023-4692",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4692"
},
{
"name": "CVE-2024-27059",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27059"
},
{
"name": "CVE-2024-26656",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26656"
},
{
"name": "CVE-2024-28834",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28834"
},
{
"name": "CVE-2023-38264",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-38264"
},
{
"name": "CVE-2024-26974",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26974"
},
{
"name": "CVE-2024-26897",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26897"
},
{
"name": "CVE-2021-47055",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47055"
},
{
"name": "CVE-2020-36777",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-36777"
},
{
"name": "CVE-2023-43788",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-43788"
},
{
"name": "CVE-2024-27052",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27052"
},
{
"name": "CVE-2023-52425",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52425"
},
{
"name": "CVE-2024-26585",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26585"
},
{
"name": "CVE-2024-25744",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-25744"
},
{
"name": "CVE-2024-26973",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26973"
},
{
"name": "CVE-2024-33602",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-33602"
},
{
"name": "CVE-2024-27397",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27397"
},
{
"name": "CVE-2024-35854",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35854"
},
{
"name": "CVE-2023-52878",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52878"
},
{
"name": "CVE-2021-47185",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47185"
},
{
"name": "CVE-2024-23650",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-23650"
},
{
"name": "CVE-2024-26603",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26603"
},
{
"name": "CVE-2024-26964",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26964"
},
{
"name": "CVE-2024-5564",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-5564"
},
{
"name": "CVE-2021-33198",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-33198"
},
{
"name": "CVE-2024-26993",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26993"
},
{
"name": "CVE-2019-25162",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-25162"
},
{
"name": "CVE-2022-41715",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-41715"
},
{
"name": "CVE-2023-39321",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-39321"
},
{
"name": "CVE-2024-3933",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-3933"
},
{
"name": "CVE-2024-1975",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-1975"
},
{
"name": "CVE-2023-52669",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52669"
},
{
"name": "CVE-2019-11358",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-11358"
},
{
"name": "CVE-2020-15778",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-15778"
},
{
"name": "CVE-2022-3287",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3287"
},
{
"name": "CVE-2024-36004",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36004"
},
{
"name": "CVE-2024-26859",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26859"
},
{
"name": "CVE-2020-13936",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-13936"
},
{
"name": "CVE-2023-44487",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-44487"
},
{
"name": "CVE-2024-29857",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-29857"
},
{
"name": "CVE-2024-35959",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35959"
},
{
"name": "CVE-2018-20060",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-20060"
},
{
"name": "CVE-2024-35855",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35855"
},
{
"name": "CVE-2024-1737",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-1737"
},
{
"name": "CVE-2023-25193",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-25193"
},
{
"name": "CVE-2024-33600",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-33600"
},
{
"name": "CVE-2024-3652",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-3652"
},
{
"name": "CVE-2024-26615",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26615"
},
{
"name": "CVE-2023-45802",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-45802"
},
{
"name": "CVE-2024-26801",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26801"
},
{
"name": "CVE-2024-36007",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36007"
},
{
"name": "CVE-2021-47311",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47311"
},
{
"name": "CVE-2023-3635",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-3635"
},
{
"name": "CVE-2024-26643",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26643"
},
{
"name": "CVE-2024-26779",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26779"
},
{
"name": "CVE-2024-32021",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-32021"
},
{
"name": "CVE-2024-33599",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-33599"
},
{
"name": "CVE-2024-25629",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-25629"
},
{
"name": "CVE-2024-28180",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28180"
},
{
"name": "CVE-2024-24806",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24806"
},
{
"name": "CVE-2024-35852",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35852"
},
{
"name": "CVE-2024-23307",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-23307"
},
{
"name": "CVE-2024-30172",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-30172"
},
{
"name": "CVE-2023-52528",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52528"
},
{
"name": "CVE-2024-27048",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27048"
},
{
"name": "CVE-2021-47013",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47013"
},
{
"name": "CVE-2023-52781",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52781"
},
{
"name": "CVE-2024-35845",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35845"
},
{
"name": "CVE-2021-41072",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-41072"
},
{
"name": "CVE-2023-48795",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-48795"
},
{
"name": "CVE-2021-47073",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47073"
},
{
"name": "CVE-2024-26804",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26804"
},
{
"name": "CVE-2024-26593",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26593"
},
{
"name": "CVE-2022-48627",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48627"
},
{
"name": "CVE-2021-47171",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47171"
},
{
"name": "CVE-2024-26743",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26743"
},
{
"name": "CVE-2023-52686",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52686"
},
{
"name": "CVE-2021-47236",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47236"
},
{
"name": "CVE-2023-39318",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-39318"
},
{
"name": "CVE-2023-6240",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-6240"
},
{
"name": "CVE-2024-32004",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-32004"
},
{
"name": "CVE-2021-47118",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47118"
},
{
"name": "CVE-2024-35890",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35890"
},
{
"name": "CVE-2020-23064",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-23064"
},
{
"name": "CVE-2023-6918",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-6918"
},
{
"name": "CVE-2024-22195",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-22195"
},
{
"name": "CVE-2023-52877",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52877"
},
{
"name": "CVE-2024-21011",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21011"
},
{
"name": "CVE-2024-32020",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-32020"
},
{
"name": "CVE-2024-0450",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-0450"
},
{
"name": "CVE-2023-45803",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-45803"
},
{
"name": "CVE-2023-39319",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-39319"
},
{
"name": "CVE-2024-32487",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-32487"
},
{
"name": "CVE-2024-26826",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26826"
},
{
"name": "CVE-2024-27056",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27056"
},
{
"name": "CVE-2024-26583",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26583"
},
{
"name": "CVE-2024-26642",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26642"
},
{
"name": "CVE-2021-47153",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47153"
},
{
"name": "CVE-2024-35888",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35888"
},
{
"name": "CVE-2023-52700",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52700"
},
{
"name": "CVE-2023-31122",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-31122"
},
{
"name": "CVE-2023-52439",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52439"
},
{
"name": "CVE-2021-47495",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47495"
},
{
"name": "CVE-2024-26675",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26675"
},
{
"name": "CVE-2019-14865",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-14865"
},
{
"name": "CVE-2024-26906",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26906"
},
{
"name": "CVE-2024-26610",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26610"
},
{
"name": "CVE-2024-2357",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-2357"
},
{
"name": "CVE-2024-26584",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26584"
},
{
"name": "CVE-2024-21094",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21094"
},
{
"name": "CVE-2024-26919",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26919"
},
{
"name": "CVE-2023-52445",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52445"
},
{
"name": "CVE-2024-33601",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-33601"
},
{
"name": "CVE-2024-3019",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-3019"
},
{
"name": "CVE-2022-2880",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2880"
},
{
"name": "CVE-2024-27014",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27014"
},
{
"name": "CVE-2021-34558",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-34558"
},
{
"name": "CVE-2024-32465",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-32465"
},
{
"name": "CVE-2024-22365",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-22365"
},
{
"name": "CVE-2023-43804",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-43804"
},
{
"name": "CVE-2023-43789",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-43789"
},
{
"name": "CVE-2024-38428",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-38428"
},
{
"name": "CVE-2024-25062",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-25062"
},
{
"name": "CVE-2022-2879",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2879"
},
{
"name": "CVE-2024-2398",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-2398"
},
{
"name": "CVE-2024-26892",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26892"
},
{
"name": "CVE-2024-35835",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35835"
},
{
"name": "CVE-2024-26735",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26735"
},
{
"name": "CVE-2023-52881",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52881"
},
{
"name": "CVE-2023-4693",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4693"
},
{
"name": "CVE-2021-46972",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-46972"
},
{
"name": "CVE-2023-52578",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52578"
},
{
"name": "CVE-2024-26461",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26461"
},
{
"name": "CVE-2024-34750",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34750"
},
{
"name": "CVE-2024-26458",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26458"
},
{
"name": "CVE-2021-46934",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-46934"
},
{
"name": "CVE-2024-1048",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-1048"
},
{
"name": "CVE-2023-6004",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-6004"
},
{
"name": "CVE-2023-52598",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52598"
},
{
"name": "CVE-2020-11022",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-11022"
},
{
"name": "CVE-2023-7008",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-7008"
},
{
"name": "CVE-2024-26659",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26659"
},
{
"name": "CVE-2023-52667",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52667"
},
{
"name": "CVE-2024-26933",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26933"
},
{
"name": "CVE-2023-31484",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-31484"
},
{
"name": "CVE-2023-52703",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52703"
},
{
"name": "CVE-2023-52594",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52594"
},
{
"name": "CVE-2024-26693",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26693"
},
{
"name": "CVE-2023-52595",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52595"
},
{
"name": "CVE-2024-30171",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-30171"
},
{
"name": "CVE-2023-45287",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-45287"
},
{
"name": "CVE-2022-48624",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48624"
},
{
"name": "CVE-2024-26759",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26759"
},
{
"name": "CVE-2023-52464",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52464"
},
{
"name": "CVE-2023-52813",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52813"
},
{
"name": "CVE-2024-35838",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35838"
},
{
"name": "CVE-2023-52513",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52513"
},
{
"name": "CVE-2023-52615",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52615"
},
{
"name": "CVE-2023-52610",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52610"
},
{
"name": "CVE-2023-52560",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52560"
},
{
"name": "CVE-2024-3651",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-3651"
},
{
"name": "CVE-2023-39322",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-39322"
},
{
"name": "CVE-2023-52606",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52606"
},
{
"name": "CVE-2021-47069",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47069"
},
{
"name": "CVE-2024-35960",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35960"
},
{
"name": "CVE-2022-39253",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-39253"
},
{
"name": "CVE-2024-34064",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34064"
},
{
"name": "CVE-2023-2953",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-2953"
},
{
"name": "CVE-2024-26872",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26872"
},
{
"name": "CVE-2020-26555",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-26555"
},
{
"name": "CVE-2024-26901",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26901"
},
{
"name": "CVE-2023-39326",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-39326"
},
{
"name": "CVE-2024-21085",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21085"
},
{
"name": "CVE-2023-29409",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-29409"
},
{
"name": "CVE-2024-35789",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35789"
},
{
"name": "CVE-2023-52835",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52835"
},
{
"name": "CVE-2024-26982",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26982"
},
{
"name": "CVE-2021-47310",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47310"
},
{
"name": "CVE-2023-52626",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52626"
},
{
"name": "CVE-2024-0340",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-0340"
},
{
"name": "CVE-2024-26744",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26744"
},
{
"name": "CVE-2024-24786",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24786"
},
{
"name": "CVE-2024-35958",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35958"
},
{
"name": "CVE-2021-47456",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47456"
},
{
"name": "CVE-2021-40153",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-40153"
},
{
"name": "CVE-2024-32002",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-32002"
},
{
"name": "CVE-2022-48669",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48669"
},
{
"name": "CVE-2023-52565",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52565"
},
{
"name": "CVE-2023-52520",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52520"
},
{
"name": "CVE-2021-47356",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47356"
},
{
"name": "CVE-2024-26694",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26694"
},
{
"name": "CVE-2024-2961",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-2961"
},
{
"name": "CVE-2024-26664",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26664"
},
{
"name": "CVE-2024-28182",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28182"
},
{
"name": "CVE-2021-47353",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47353"
},
{
"name": "CVE-2023-6597",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-6597"
},
{
"name": "CVE-2023-52607",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52607"
},
{
"name": "CVE-2024-6345",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-6345"
},
{
"name": "CVE-2020-11023",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-11023"
},
{
"name": "CVE-2018-25091",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-25091"
},
{
"name": "CVE-2023-5090",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-5090"
},
{
"name": "CVE-2024-27410",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27410"
},
{
"name": "CVE-2021-46909",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-46909"
},
{
"name": "CVE-2024-35853",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35853"
},
{
"name": "CVE-2024-26907",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26907"
}
],
"links": [],
"reference": "CERTFR-2024-AVI-0741",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2024-09-05T00:00:00.000000"
},
{
"description": "Ajout r\u00e9f\u00e9rence \u00e9diteur",
"revision_date": "2024-09-06T00:00:00.000000"
},
{
"description": "Correction d\u0027identifiants CVE erron\u00e9s",
"revision_date": "2024-10-15T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Injection de code indirecte \u00e0 distance (XSS)"
},
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits Juniper Secure Analytics. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance, un d\u00e9ni de service \u00e0 distance et une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans Juniper Secure Analytics",
"vendor_advisories": [
{
"published_at": "2024-09-30",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA86686",
"url": "https://supportportal.juniper.net/s/article/On-Demand-JSA-Series-Multiple-vulnerabilities-resolved-in-Juniper-Secure-Analytics-in-7-5-0-UP9-IF02"
}
]
}
CERTFR-2025-AVI-0304
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été découvertes dans les produits Juniper Networks. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, une élévation de privilèges et un déni de service à distance.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
L'éditeur indique que les versions 21.4.x de Junos OS pour SRX Series ne bénéficient pas de correctif pour la vulnérabilité CVE-2025-30659.
Impacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| Juniper Networks | Junos OS | Junos OS versions 21.4.x antérieures à 21.4R3-S10 | ||
| Juniper Networks | Junos OS Evolved | Junos OS Evolved versions 22.4.x-EVO antérieures à 22.4R3-S6-EVO | ||
| Juniper Networks | Junos OS Evolved | Junos OS Evolved versions 23.4.x-EVO antérieures à 23.4R2-S4-EVO | ||
| Juniper Networks | Junos OS | Junos OS versions 22.2.x antérieures à 22.2R3-S6 | ||
| Juniper Networks | Junos OS Evolved | Junos OS Evolved versions antérieures à 21.4R3-S10-EVO | ||
| Juniper Networks | Junos OS Evolved | Junos OS Evolved versions 23.2.x-EVO antérieures à 23.2R2-S3-EVO | ||
| Juniper Networks | Junos OS Evolved | Junos OS Evolved versions 24.2.x-EVO antérieures à 24.2R2-EVO | ||
| Juniper Networks | Junos Space | Junos Space versions antérieures à 24.1R3 | ||
| Juniper Networks | Junos Space | Junos Space Security Director versions antérieures à 24.1R3 | ||
| Juniper Networks | Junos OS | Junos OS versions 23.4.x antérieures à 23.4R2-S4 | ||
| Juniper Networks | Junos OS Evolved | Junos OS Evolved versions 22.2.x-EVO antérieures à 22.2R3-S6-EVO | ||
| Juniper Networks | CTPView | CTPView versions antérieures à 9.2R1 | ||
| Juniper Networks | Junos OS | Junos OS versions 22.4.x antérieures à 22.4R3-S6 | ||
| Juniper Networks | Junos OS | Junos OS versions 23.2.x antérieures à 23.2R2-S3 | ||
| Juniper Networks | Junos OS | Junos OS versions 24.2.x antérieures à 24.2R2 | ||
| Juniper Networks | Junos OS | Junos OS versions antérieures à 21.2R3-S9 |
References
| Title | Publication Time | Tags | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Junos OS versions 21.4.x ant\u00e9rieures \u00e0 21.4R3-S10 ",
"product": {
"name": "Junos OS",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS Evolved versions 22.4.x-EVO ant\u00e9rieures \u00e0 22.4R3-S6-EVO",
"product": {
"name": "Junos OS Evolved",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS Evolved versions 23.4.x-EVO ant\u00e9rieures \u00e0 23.4R2-S4-EVO",
"product": {
"name": "Junos OS Evolved",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS versions 22.2.x ant\u00e9rieures \u00e0 22.2R3-S6",
"product": {
"name": "Junos OS",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS Evolved versions ant\u00e9rieures \u00e0 21.4R3-S10-EVO",
"product": {
"name": "Junos OS Evolved",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS Evolved versions 23.2.x-EVO ant\u00e9rieures \u00e0 23.2R2-S3-EVO",
"product": {
"name": "Junos OS Evolved",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS Evolved versions 24.2.x-EVO ant\u00e9rieures \u00e0 24.2R2-EVO",
"product": {
"name": "Junos OS Evolved",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos Space versions ant\u00e9rieures \u00e0 24.1R3",
"product": {
"name": "Junos Space",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos Space Security Director versions ant\u00e9rieures \u00e0 24.1R3",
"product": {
"name": "Junos Space",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS versions 23.4.x ant\u00e9rieures \u00e0 23.4R2-S4",
"product": {
"name": "Junos OS",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS Evolved versions 22.2.x-EVO ant\u00e9rieures \u00e0 22.2R3-S6-EVO",
"product": {
"name": "Junos OS Evolved",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "CTPView versions ant\u00e9rieures \u00e0 9.2R1",
"product": {
"name": "CTPView",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS versions 22.4.x ant\u00e9rieures \u00e0 22.4R3-S6",
"product": {
"name": "Junos OS",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS versions 23.2.x ant\u00e9rieures \u00e0 23.2R2-S3",
"product": {
"name": "Junos OS",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS versions 24.2.x ant\u00e9rieures \u00e0 24.2R2",
"product": {
"name": "Junos OS",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS versions ant\u00e9rieures \u00e0 21.2R3-S9",
"product": {
"name": "Junos OS",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
}
],
"affected_systems_content": "L\u0027\u00e9diteur indique que les versions 21.4.x de Junos OS pour SRX Series ne b\u00e9n\u00e9ficient pas de correctif pour la vuln\u00e9rabilit\u00e9 CVE-2025-30659.",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2024-42472",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42472"
},
{
"name": "CVE-2024-7006",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-7006"
},
{
"name": "CVE-2024-21235",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21235"
},
{
"name": "CVE-2024-27820",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27820"
},
{
"name": "CVE-2024-42284",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42284"
},
{
"name": "CVE-2024-27052",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27052"
},
{
"name": "CVE-2025-21597",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21597"
},
{
"name": "CVE-2024-33602",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-33602"
},
{
"name": "CVE-2024-4076",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-4076"
},
{
"name": "CVE-2025-30658",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30658"
},
{
"name": "CVE-2024-40866",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-40866"
},
{
"name": "CVE-2024-6232",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-6232"
},
{
"name": "CVE-2024-21823",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21823"
},
{
"name": "CVE-2023-28746",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-28746"
},
{
"name": "CVE-2024-26993",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26993"
},
{
"name": "CVE-2024-1975",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-1975"
},
{
"name": "CVE-2024-40898",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-40898"
},
{
"name": "CVE-2024-26852",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26852"
},
{
"name": "CVE-2011-5094",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-5094"
},
{
"name": "CVE-2025-30657",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30657"
},
{
"name": "CVE-2025-30660",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30660"
},
{
"name": "CVE-2024-1737",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-1737"
},
{
"name": "CVE-2024-33600",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-33600"
},
{
"name": "CVE-2024-3652",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-3652"
},
{
"name": "CVE-2024-44187",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-44187"
},
{
"name": "CVE-2025-21601",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21601"
},
{
"name": "CVE-2024-32021",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-32021"
},
{
"name": "CVE-2024-40725",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-40725"
},
{
"name": "CVE-2019-7611",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-7611"
},
{
"name": "CVE-2024-33599",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-33599"
},
{
"name": "CVE-2025-21591",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21591"
},
{
"name": "CVE-2025-30649",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30649"
},
{
"name": "CVE-2025-30652",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30652"
},
{
"name": "CVE-2024-40789",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-40789"
},
{
"name": "CVE-2024-35845",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35845"
},
{
"name": "CVE-2025-30651",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30651"
},
{
"name": "CVE-2024-32004",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-32004"
},
{
"name": "CVE-2024-39884",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39884"
},
{
"name": "CVE-2023-48161",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-48161"
},
{
"name": "CVE-2024-32020",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-32020"
},
{
"name": "CVE-2024-0450",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-0450"
},
{
"name": "CVE-2024-27838",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27838"
},
{
"name": "CVE-2024-23271",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-23271"
},
{
"name": "CVE-2024-39487",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39487"
},
{
"name": "CVE-2024-36971",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36971"
},
{
"name": "CVE-2024-33601",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-33601"
},
{
"name": "CVE-2025-30647",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30647"
},
{
"name": "CVE-2024-32465",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-32465"
},
{
"name": "CVE-2011-1473",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-1473"
},
{
"name": "CVE-2025-30654",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30654"
},
{
"name": "CVE-2025-30655",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30655"
},
{
"name": "CVE-2024-40782",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-40782"
},
{
"name": "CVE-2024-26735",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26735"
},
{
"name": "CVE-2024-35899",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35899"
},
{
"name": "CVE-2024-40954",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-40954"
},
{
"name": "CVE-2021-47596",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47596"
},
{
"name": "CVE-2025-30659",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30659"
},
{
"name": "CVE-2025-30653",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30653"
},
{
"name": "CVE-2025-30645",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30645"
},
{
"name": "CVE-2020-7021",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-7021"
},
{
"name": "CVE-2021-22135",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-22135"
},
{
"name": "CVE-2025-30646",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30646"
},
{
"name": "CVE-2024-27851",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27851"
},
{
"name": "CVE-2025-30644",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30644"
},
{
"name": "CVE-2024-3651",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-3651"
},
{
"name": "CVE-2025-30656",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30656"
},
{
"name": "CVE-2022-39253",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-39253"
},
{
"name": "CVE-2021-22144",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-22144"
},
{
"name": "CVE-2024-40958",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-40958"
},
{
"name": "CVE-2025-21595",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21595"
},
{
"name": "CVE-2025-30648",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30648"
},
{
"name": "CVE-2024-21210",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21210"
},
{
"name": "CVE-2021-22137",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-22137"
},
{
"name": "CVE-2024-32002",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-32002"
},
{
"name": "CVE-2024-2961",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-2961"
},
{
"name": "CVE-2024-21217",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21217"
},
{
"name": "CVE-2024-28182",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28182"
},
{
"name": "CVE-2023-6597",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-6597"
},
{
"name": "CVE-2022-24808",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-24808"
},
{
"name": "CVE-2024-21208",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21208"
},
{
"name": "CVE-2025-21594",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21594"
},
{
"name": "CVE-2020-7020",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-7020"
}
],
"links": [],
"reference": "CERTFR-2025-AVI-0304",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2025-04-10T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "Falsification de requ\u00eates c\u00f4t\u00e9 serveur (SSRF)"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits Juniper Networks. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance, une \u00e9l\u00e9vation de privil\u00e8ges et un d\u00e9ni de service \u00e0 distance.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Juniper Networks",
"vendor_advisories": [
{
"published_at": "2025-04-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA96456",
"url": "https://supportportal.juniper.net/s/article/2025-04-Security-Bulletin-Junos-OS-and-Junos-OS-Evolved-Receipt-of-a-malformed-LLDP-TLV-results-in-l2cpd-crash-CVE-2025-30646"
},
{
"published_at": "2025-04-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA96447",
"url": "https://supportportal.juniper.net/s/article/2025-04-Security-Bulletin-Junos-Space-Multiple-vulnerabilities-resolved-in-24-1R3-release"
},
{
"published_at": "2025-04-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA96467",
"url": "https://supportportal.juniper.net/s/article/2025-04-Security-Bulletin-Junos-OS-Processing-of-a-specific-BGP-update-causes-the-SRRD-process-to-crash-CVE-2025-30657?language=en_US"
},
{
"published_at": "2025-04-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA96461",
"url": "https://supportportal.juniper.net/s/article/2025-04-Security-Bulletin-Junos-OS-and-Junos-OS-Evolved-Receipt-of-a-specific-ICMPv6-packet-causes-a-memory-overrun-leading-to-an-rpd-crash-CVE-2025-30651"
},
{
"published_at": "2025-04-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA96446",
"url": "https://supportportal.juniper.net/s/article/2025-04-Security-Bulletin-Junos-Space-Security-Director-Multiple-vulnerabilities-resolved-in-24-1R3-release"
},
{
"published_at": "2025-04-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA96451",
"url": "https://supportportal.juniper.net/s/article/2025-04-Security-Bulletin-Junos-OS-and-Junos-OS-Evolved-When-BGP-rib-sharding-and-update-threading-are-configured-and-a-peer-flaps-an-rpd-core-is-observed"
},
{
"published_at": "2025-04-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA96470",
"url": "https://supportportal.juniper.net/s/article/2025-04-Security-Bulletin-Junos-OS-SRX-Series-A-device-configured-for-vector-routing-crashes-when-receiving-specific-traffic-CVE-2025-30659?language=en_US"
},
{
"published_at": "2025-04-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA96458",
"url": "https://supportportal.juniper.net/s/article/2025-04-Security-Bulletin-Junos-OS-and-Junos-OS-Evolved-Receipt-of-a-specifically-malformed-DHCP-packet-causes-jdhcpd-process-to-crash-CVE-2025-30648"
},
{
"published_at": "2025-04-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA96462",
"url": "https://supportportal.juniper.net/s/article/2025-04-Security-Bulletin-Junos-OS-and-Junos-OS-Evolved-Executing-a-specific-CLI-command-when-asregex-optimized-is-configured-causes-an-RPD-crash-CVE-2025-30652"
},
{
"published_at": "2025-04-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA96457",
"url": "https://supportportal.juniper.net/s/article/2025-04-Security-Bulletin-Junos-OS-MX-Series-Subscriber-login-logout-activity-will-lead-to-a-memory-leak-CVE-2025-30647"
},
{
"published_at": "2025-04-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA96466",
"url": "https://supportportal.juniper.net/s/article/2025-04-Security-Bulletin-Junos-OS-MX-Series-SRX-Series-Processing-of-specific-SIP-INVITE-messages-by-the-SIP-ALG-will-lead-to-an-FPC-crash-CVE-2025-30656?language=en_US"
},
{
"published_at": "2025-04-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA96463",
"url": "https://supportportal.juniper.net/s/article/2025-04-Security-Bulletin-Junos-OS-and-Junos-OS-Evolved-LSP-flap-in-a-specific-MPLS-LSP-scenario-leads-to-RPD-crash-CVE-2025-30653"
},
{
"published_at": "2025-04-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA96459",
"url": "https://supportportal.juniper.net/s/article/2025-04-Security-Bulletin-Junos-OS-MX240-MX480-MX960-with-SPC3-An-attacker-sending-specific-packets-will-cause-a-CPU-utilization-DoS-CVE-2025-30649"
},
{
"published_at": "2025-04-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA96450",
"url": "https://supportportal.juniper.net/s/article/2025-04-Security-Bulletin-Junos-OS-and-Junos-OS-Evolved-In-an-EVPN-VXLAN-scenario-specific-ARP-or-NDP-packets-cause-FPC-to-crash-CVE-2025-21595"
},
{
"published_at": "2025-04-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA96464",
"url": "https://supportportal.juniper.net/s/article/2025-04-Security-Bulletin-Junos-OS-and-Junos-OS-Evolved-A-local-low-privileged-user-can-access-sensitive-information-CVE-2025-30654"
},
{
"published_at": "2025-04-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA96453",
"url": "https://supportportal.juniper.net/s/article/2025-04-Security-Bulletin-Junos-OS-EX2300-EX3400-EX4000-Series-QFX5k-Series-Receipt-of-a-specific-DHCP-packet-causes-FPC-crash-when-DHCP-Option-82-is-enabled-CVE-2025-30644"
},
{
"published_at": "2025-04-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA96465",
"url": "https://supportportal.juniper.net/s/article/2025-04-Security-Bulletin-Junos-OS-and-Junos-OS-Evolved-A-specific-CLI-command-will-cause-a-RPD-crash-when-rib-sharding-and-update-threading-is-enabled-CVE-2025-30655?language=en_US"
},
{
"published_at": "2025-04-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA96444",
"url": "https://supportportal.juniper.net/s/article/2025-04-Security-Bulletin-CTP-View-Multiple-Vulnerabilities-resolved-in-9-2R1-release"
},
{
"published_at": "2025-04-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA96469",
"url": "https://supportportal.juniper.net/s/article/2025-04-Security-Bulletin-Junos-OS-SRX-Series-On-devices-with-Anti-Virus-enabled-malicious-server-responses-will-cause-memory-to-leak-ultimately-causing-forwarding-to-stop-CVE-2025-30658?language=en_US"
},
{
"published_at": "2025-04-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA96448",
"url": "https://supportportal.juniper.net/s/article/2025-04-Security-Bulletin-Junos-OS-An-unauthenticated-adjacent-attacker-sending-a-malformed-DHCP-packet-causes-jdhcpd-to-crash-CVE-2025-21591"
},
{
"published_at": "2025-04-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA96471",
"url": "https://supportportal.juniper.net/s/article/2025-04-Security-Bulletin-Junos-OS-MX-Series-Decapsulation-of-specific-GRE-packets-leads-to-PFE-reset-CVE-2025-30660?language=en_US"
},
{
"published_at": "2025-04-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA96449",
"url": "https://supportportal.juniper.net/s/article/2025-04-Security-Bulletin-Junos-OS-MX-Series-In-DS-lite-and-NAT-senario-receipt-of-crafted-IPv4-traffic-causes-port-block-CVE-2025-21594"
},
{
"published_at": "2025-04-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA96455",
"url": "https://supportportal.juniper.net/s/article/2025-04-Security-Bulletin-Junos-OS-SRX-Series-Transmission-of-specific-control-traffic-sent-out-of-a-DS-Lite-tunnel-results-in-flowd-crash-CVE-2025-30645"
},
{
"published_at": "2025-04-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA96452",
"url": "https://supportportal.juniper.net/s/article/2025-04-Security-Bulletin-Junos-OS-SRX-and-EX-Series-MX240-MX480-MX960-QFX5120-Series-When-web-management-is-enabled-for-specific-services-an-attacker-may-cause-a-CPU-spike-by-sending-genuine-packets-to-the-device-CVE-2025-21601"
}
]
}
SUSE-SU-2024:1807-1
Vulnerability from csaf_suse - Published: 2024-05-28 20:11 - Updated: 2024-05-28 20:11Summary
Security update for git
Notes
Title of the patch
Security update for git
Description of the patch
This update for git fixes the following issues:
- CVE-2024-32002: Fixed recursive clones on case-insensitive filesystems that support symbolic links are susceptible to case confusion (bsc#1224168).
- CVE-2024-32004: Fixed arbitrary code execution during local clones (bsc#1224170).
- CVE-2024-32020: Fixed file overwriting vulnerability during local clones (bsc#1224171).
- CVE-2024-32021: Fixed git may create hardlinks to arbitrary user-readable files (bsc#1224172).
- CVE-2024-32465: Fixed arbitrary code execution during clone operations (bsc#1224173).
Patchnames
SUSE-2024-1807,SUSE-SLE-Micro-5.5-2024-1807,SUSE-SLE-Module-Basesystem-15-SP5-2024-1807,SUSE-SLE-Module-Development-Tools-15-SP5-2024-1807,SUSE-SLE-Product-HPC-15-SP3-LTSS-2024-1807,SUSE-SLE-Product-HPC-15-SP4-ESPOS-2024-1807,SUSE-SLE-Product-HPC-15-SP4-LTSS-2024-1807,SUSE-SLE-Product-SLED-15-SP4-LTSS-2024-1807,SUSE-SLE-Product-SLES-15-SP3-LTSS-2024-1807,SUSE-SLE-Product-SLES-15-SP4-LTSS-2024-1807,SUSE-SLE-Product-SLES_SAP-15-SP3-2024-1807,SUSE-SLE-Product-SLES_SAP-15-SP4-2024-1807,SUSE-SLE-Product-SUSE-Manager-Proxy-4.3-2024-1807,SUSE-SLE-Product-SUSE-Manager-Server-4.3-2024-1807,SUSE-Storage-7.1-2024-1807,openSUSE-SLE-15.5-2024-1807
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for git",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for git fixes the following issues:\n\n- CVE-2024-32002: Fixed recursive clones on case-insensitive filesystems that support symbolic links are susceptible to case confusion (bsc#1224168).\n- CVE-2024-32004: Fixed arbitrary code execution during local clones (bsc#1224170).\n- CVE-2024-32020: Fixed file overwriting vulnerability during local clones (bsc#1224171).\n- CVE-2024-32021: Fixed git may create hardlinks to arbitrary user-readable files (bsc#1224172).\n- CVE-2024-32465: Fixed arbitrary code execution during clone operations (bsc#1224173).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2024-1807,SUSE-SLE-Micro-5.5-2024-1807,SUSE-SLE-Module-Basesystem-15-SP5-2024-1807,SUSE-SLE-Module-Development-Tools-15-SP5-2024-1807,SUSE-SLE-Product-HPC-15-SP3-LTSS-2024-1807,SUSE-SLE-Product-HPC-15-SP4-ESPOS-2024-1807,SUSE-SLE-Product-HPC-15-SP4-LTSS-2024-1807,SUSE-SLE-Product-SLED-15-SP4-LTSS-2024-1807,SUSE-SLE-Product-SLES-15-SP3-LTSS-2024-1807,SUSE-SLE-Product-SLES-15-SP4-LTSS-2024-1807,SUSE-SLE-Product-SLES_SAP-15-SP3-2024-1807,SUSE-SLE-Product-SLES_SAP-15-SP4-2024-1807,SUSE-SLE-Product-SUSE-Manager-Proxy-4.3-2024-1807,SUSE-SLE-Product-SUSE-Manager-Server-4.3-2024-1807,SUSE-Storage-7.1-2024-1807,openSUSE-SLE-15.5-2024-1807",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2024_1807-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2024:1807-1",
"url": "https://www.suse.com/support/update/announcement/2024/suse-su-20241807-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2024:1807-1",
"url": "https://lists.suse.com/pipermail/sle-updates/2024-May/035389.html"
},
{
"category": "self",
"summary": "SUSE Bug 1224168",
"url": "https://bugzilla.suse.com/1224168"
},
{
"category": "self",
"summary": "SUSE Bug 1224170",
"url": "https://bugzilla.suse.com/1224170"
},
{
"category": "self",
"summary": "SUSE Bug 1224171",
"url": "https://bugzilla.suse.com/1224171"
},
{
"category": "self",
"summary": "SUSE Bug 1224172",
"url": "https://bugzilla.suse.com/1224172"
},
{
"category": "self",
"summary": "SUSE Bug 1224173",
"url": "https://bugzilla.suse.com/1224173"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-32002 page",
"url": "https://www.suse.com/security/cve/CVE-2024-32002/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-32004 page",
"url": "https://www.suse.com/security/cve/CVE-2024-32004/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-32020 page",
"url": "https://www.suse.com/security/cve/CVE-2024-32020/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-32021 page",
"url": "https://www.suse.com/security/cve/CVE-2024-32021/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-32465 page",
"url": "https://www.suse.com/security/cve/CVE-2024-32465/"
}
],
"title": "Security update for git",
"tracking": {
"current_release_date": "2024-05-28T20:11:34Z",
"generator": {
"date": "2024-05-28T20:11:34Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2024:1807-1",
"initial_release_date": "2024-05-28T20:11:34Z",
"revision_history": [
{
"date": "2024-05-28T20:11:34Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "git-2.35.3-150300.10.39.1.aarch64",
"product": {
"name": "git-2.35.3-150300.10.39.1.aarch64",
"product_id": "git-2.35.3-150300.10.39.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-arch-2.35.3-150300.10.39.1.aarch64",
"product": {
"name": "git-arch-2.35.3-150300.10.39.1.aarch64",
"product_id": "git-arch-2.35.3-150300.10.39.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-core-2.35.3-150300.10.39.1.aarch64",
"product": {
"name": "git-core-2.35.3-150300.10.39.1.aarch64",
"product_id": "git-core-2.35.3-150300.10.39.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-credential-gnome-keyring-2.35.3-150300.10.39.1.aarch64",
"product": {
"name": "git-credential-gnome-keyring-2.35.3-150300.10.39.1.aarch64",
"product_id": "git-credential-gnome-keyring-2.35.3-150300.10.39.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-2.35.3-150300.10.39.1.aarch64",
"product": {
"name": "git-credential-libsecret-2.35.3-150300.10.39.1.aarch64",
"product_id": "git-credential-libsecret-2.35.3-150300.10.39.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-cvs-2.35.3-150300.10.39.1.aarch64",
"product": {
"name": "git-cvs-2.35.3-150300.10.39.1.aarch64",
"product_id": "git-cvs-2.35.3-150300.10.39.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-daemon-2.35.3-150300.10.39.1.aarch64",
"product": {
"name": "git-daemon-2.35.3-150300.10.39.1.aarch64",
"product_id": "git-daemon-2.35.3-150300.10.39.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-email-2.35.3-150300.10.39.1.aarch64",
"product": {
"name": "git-email-2.35.3-150300.10.39.1.aarch64",
"product_id": "git-email-2.35.3-150300.10.39.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-gui-2.35.3-150300.10.39.1.aarch64",
"product": {
"name": "git-gui-2.35.3-150300.10.39.1.aarch64",
"product_id": "git-gui-2.35.3-150300.10.39.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-p4-2.35.3-150300.10.39.1.aarch64",
"product": {
"name": "git-p4-2.35.3-150300.10.39.1.aarch64",
"product_id": "git-p4-2.35.3-150300.10.39.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-svn-2.35.3-150300.10.39.1.aarch64",
"product": {
"name": "git-svn-2.35.3-150300.10.39.1.aarch64",
"product_id": "git-svn-2.35.3-150300.10.39.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-web-2.35.3-150300.10.39.1.aarch64",
"product": {
"name": "git-web-2.35.3-150300.10.39.1.aarch64",
"product_id": "git-web-2.35.3-150300.10.39.1.aarch64"
}
},
{
"category": "product_version",
"name": "gitk-2.35.3-150300.10.39.1.aarch64",
"product": {
"name": "gitk-2.35.3-150300.10.39.1.aarch64",
"product_id": "gitk-2.35.3-150300.10.39.1.aarch64"
}
},
{
"category": "product_version",
"name": "perl-Git-2.35.3-150300.10.39.1.aarch64",
"product": {
"name": "perl-Git-2.35.3-150300.10.39.1.aarch64",
"product_id": "perl-Git-2.35.3-150300.10.39.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "git-2.35.3-150300.10.39.1.i586",
"product": {
"name": "git-2.35.3-150300.10.39.1.i586",
"product_id": "git-2.35.3-150300.10.39.1.i586"
}
},
{
"category": "product_version",
"name": "git-arch-2.35.3-150300.10.39.1.i586",
"product": {
"name": "git-arch-2.35.3-150300.10.39.1.i586",
"product_id": "git-arch-2.35.3-150300.10.39.1.i586"
}
},
{
"category": "product_version",
"name": "git-core-2.35.3-150300.10.39.1.i586",
"product": {
"name": "git-core-2.35.3-150300.10.39.1.i586",
"product_id": "git-core-2.35.3-150300.10.39.1.i586"
}
},
{
"category": "product_version",
"name": "git-credential-gnome-keyring-2.35.3-150300.10.39.1.i586",
"product": {
"name": "git-credential-gnome-keyring-2.35.3-150300.10.39.1.i586",
"product_id": "git-credential-gnome-keyring-2.35.3-150300.10.39.1.i586"
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-2.35.3-150300.10.39.1.i586",
"product": {
"name": "git-credential-libsecret-2.35.3-150300.10.39.1.i586",
"product_id": "git-credential-libsecret-2.35.3-150300.10.39.1.i586"
}
},
{
"category": "product_version",
"name": "git-cvs-2.35.3-150300.10.39.1.i586",
"product": {
"name": "git-cvs-2.35.3-150300.10.39.1.i586",
"product_id": "git-cvs-2.35.3-150300.10.39.1.i586"
}
},
{
"category": "product_version",
"name": "git-daemon-2.35.3-150300.10.39.1.i586",
"product": {
"name": "git-daemon-2.35.3-150300.10.39.1.i586",
"product_id": "git-daemon-2.35.3-150300.10.39.1.i586"
}
},
{
"category": "product_version",
"name": "git-email-2.35.3-150300.10.39.1.i586",
"product": {
"name": "git-email-2.35.3-150300.10.39.1.i586",
"product_id": "git-email-2.35.3-150300.10.39.1.i586"
}
},
{
"category": "product_version",
"name": "git-gui-2.35.3-150300.10.39.1.i586",
"product": {
"name": "git-gui-2.35.3-150300.10.39.1.i586",
"product_id": "git-gui-2.35.3-150300.10.39.1.i586"
}
},
{
"category": "product_version",
"name": "git-p4-2.35.3-150300.10.39.1.i586",
"product": {
"name": "git-p4-2.35.3-150300.10.39.1.i586",
"product_id": "git-p4-2.35.3-150300.10.39.1.i586"
}
},
{
"category": "product_version",
"name": "git-svn-2.35.3-150300.10.39.1.i586",
"product": {
"name": "git-svn-2.35.3-150300.10.39.1.i586",
"product_id": "git-svn-2.35.3-150300.10.39.1.i586"
}
},
{
"category": "product_version",
"name": "git-web-2.35.3-150300.10.39.1.i586",
"product": {
"name": "git-web-2.35.3-150300.10.39.1.i586",
"product_id": "git-web-2.35.3-150300.10.39.1.i586"
}
},
{
"category": "product_version",
"name": "gitk-2.35.3-150300.10.39.1.i586",
"product": {
"name": "gitk-2.35.3-150300.10.39.1.i586",
"product_id": "gitk-2.35.3-150300.10.39.1.i586"
}
},
{
"category": "product_version",
"name": "perl-Git-2.35.3-150300.10.39.1.i586",
"product": {
"name": "perl-Git-2.35.3-150300.10.39.1.i586",
"product_id": "perl-Git-2.35.3-150300.10.39.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "git-doc-2.35.3-150300.10.39.1.noarch",
"product": {
"name": "git-doc-2.35.3-150300.10.39.1.noarch",
"product_id": "git-doc-2.35.3-150300.10.39.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "git-2.35.3-150300.10.39.1.ppc64le",
"product": {
"name": "git-2.35.3-150300.10.39.1.ppc64le",
"product_id": "git-2.35.3-150300.10.39.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-arch-2.35.3-150300.10.39.1.ppc64le",
"product": {
"name": "git-arch-2.35.3-150300.10.39.1.ppc64le",
"product_id": "git-arch-2.35.3-150300.10.39.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-core-2.35.3-150300.10.39.1.ppc64le",
"product": {
"name": "git-core-2.35.3-150300.10.39.1.ppc64le",
"product_id": "git-core-2.35.3-150300.10.39.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-credential-gnome-keyring-2.35.3-150300.10.39.1.ppc64le",
"product": {
"name": "git-credential-gnome-keyring-2.35.3-150300.10.39.1.ppc64le",
"product_id": "git-credential-gnome-keyring-2.35.3-150300.10.39.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-2.35.3-150300.10.39.1.ppc64le",
"product": {
"name": "git-credential-libsecret-2.35.3-150300.10.39.1.ppc64le",
"product_id": "git-credential-libsecret-2.35.3-150300.10.39.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-cvs-2.35.3-150300.10.39.1.ppc64le",
"product": {
"name": "git-cvs-2.35.3-150300.10.39.1.ppc64le",
"product_id": "git-cvs-2.35.3-150300.10.39.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-daemon-2.35.3-150300.10.39.1.ppc64le",
"product": {
"name": "git-daemon-2.35.3-150300.10.39.1.ppc64le",
"product_id": "git-daemon-2.35.3-150300.10.39.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-email-2.35.3-150300.10.39.1.ppc64le",
"product": {
"name": "git-email-2.35.3-150300.10.39.1.ppc64le",
"product_id": "git-email-2.35.3-150300.10.39.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-gui-2.35.3-150300.10.39.1.ppc64le",
"product": {
"name": "git-gui-2.35.3-150300.10.39.1.ppc64le",
"product_id": "git-gui-2.35.3-150300.10.39.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-p4-2.35.3-150300.10.39.1.ppc64le",
"product": {
"name": "git-p4-2.35.3-150300.10.39.1.ppc64le",
"product_id": "git-p4-2.35.3-150300.10.39.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-svn-2.35.3-150300.10.39.1.ppc64le",
"product": {
"name": "git-svn-2.35.3-150300.10.39.1.ppc64le",
"product_id": "git-svn-2.35.3-150300.10.39.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-web-2.35.3-150300.10.39.1.ppc64le",
"product": {
"name": "git-web-2.35.3-150300.10.39.1.ppc64le",
"product_id": "git-web-2.35.3-150300.10.39.1.ppc64le"
}
},
{
"category": "product_version",
"name": "gitk-2.35.3-150300.10.39.1.ppc64le",
"product": {
"name": "gitk-2.35.3-150300.10.39.1.ppc64le",
"product_id": "gitk-2.35.3-150300.10.39.1.ppc64le"
}
},
{
"category": "product_version",
"name": "perl-Git-2.35.3-150300.10.39.1.ppc64le",
"product": {
"name": "perl-Git-2.35.3-150300.10.39.1.ppc64le",
"product_id": "perl-Git-2.35.3-150300.10.39.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "git-2.35.3-150300.10.39.1.s390x",
"product": {
"name": "git-2.35.3-150300.10.39.1.s390x",
"product_id": "git-2.35.3-150300.10.39.1.s390x"
}
},
{
"category": "product_version",
"name": "git-arch-2.35.3-150300.10.39.1.s390x",
"product": {
"name": "git-arch-2.35.3-150300.10.39.1.s390x",
"product_id": "git-arch-2.35.3-150300.10.39.1.s390x"
}
},
{
"category": "product_version",
"name": "git-core-2.35.3-150300.10.39.1.s390x",
"product": {
"name": "git-core-2.35.3-150300.10.39.1.s390x",
"product_id": "git-core-2.35.3-150300.10.39.1.s390x"
}
},
{
"category": "product_version",
"name": "git-credential-gnome-keyring-2.35.3-150300.10.39.1.s390x",
"product": {
"name": "git-credential-gnome-keyring-2.35.3-150300.10.39.1.s390x",
"product_id": "git-credential-gnome-keyring-2.35.3-150300.10.39.1.s390x"
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-2.35.3-150300.10.39.1.s390x",
"product": {
"name": "git-credential-libsecret-2.35.3-150300.10.39.1.s390x",
"product_id": "git-credential-libsecret-2.35.3-150300.10.39.1.s390x"
}
},
{
"category": "product_version",
"name": "git-cvs-2.35.3-150300.10.39.1.s390x",
"product": {
"name": "git-cvs-2.35.3-150300.10.39.1.s390x",
"product_id": "git-cvs-2.35.3-150300.10.39.1.s390x"
}
},
{
"category": "product_version",
"name": "git-daemon-2.35.3-150300.10.39.1.s390x",
"product": {
"name": "git-daemon-2.35.3-150300.10.39.1.s390x",
"product_id": "git-daemon-2.35.3-150300.10.39.1.s390x"
}
},
{
"category": "product_version",
"name": "git-email-2.35.3-150300.10.39.1.s390x",
"product": {
"name": "git-email-2.35.3-150300.10.39.1.s390x",
"product_id": "git-email-2.35.3-150300.10.39.1.s390x"
}
},
{
"category": "product_version",
"name": "git-gui-2.35.3-150300.10.39.1.s390x",
"product": {
"name": "git-gui-2.35.3-150300.10.39.1.s390x",
"product_id": "git-gui-2.35.3-150300.10.39.1.s390x"
}
},
{
"category": "product_version",
"name": "git-p4-2.35.3-150300.10.39.1.s390x",
"product": {
"name": "git-p4-2.35.3-150300.10.39.1.s390x",
"product_id": "git-p4-2.35.3-150300.10.39.1.s390x"
}
},
{
"category": "product_version",
"name": "git-svn-2.35.3-150300.10.39.1.s390x",
"product": {
"name": "git-svn-2.35.3-150300.10.39.1.s390x",
"product_id": "git-svn-2.35.3-150300.10.39.1.s390x"
}
},
{
"category": "product_version",
"name": "git-web-2.35.3-150300.10.39.1.s390x",
"product": {
"name": "git-web-2.35.3-150300.10.39.1.s390x",
"product_id": "git-web-2.35.3-150300.10.39.1.s390x"
}
},
{
"category": "product_version",
"name": "gitk-2.35.3-150300.10.39.1.s390x",
"product": {
"name": "gitk-2.35.3-150300.10.39.1.s390x",
"product_id": "gitk-2.35.3-150300.10.39.1.s390x"
}
},
{
"category": "product_version",
"name": "perl-Git-2.35.3-150300.10.39.1.s390x",
"product": {
"name": "perl-Git-2.35.3-150300.10.39.1.s390x",
"product_id": "perl-Git-2.35.3-150300.10.39.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "git-2.35.3-150300.10.39.1.x86_64",
"product": {
"name": "git-2.35.3-150300.10.39.1.x86_64",
"product_id": "git-2.35.3-150300.10.39.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-arch-2.35.3-150300.10.39.1.x86_64",
"product": {
"name": "git-arch-2.35.3-150300.10.39.1.x86_64",
"product_id": "git-arch-2.35.3-150300.10.39.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-core-2.35.3-150300.10.39.1.x86_64",
"product": {
"name": "git-core-2.35.3-150300.10.39.1.x86_64",
"product_id": "git-core-2.35.3-150300.10.39.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-credential-gnome-keyring-2.35.3-150300.10.39.1.x86_64",
"product": {
"name": "git-credential-gnome-keyring-2.35.3-150300.10.39.1.x86_64",
"product_id": "git-credential-gnome-keyring-2.35.3-150300.10.39.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-2.35.3-150300.10.39.1.x86_64",
"product": {
"name": "git-credential-libsecret-2.35.3-150300.10.39.1.x86_64",
"product_id": "git-credential-libsecret-2.35.3-150300.10.39.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-cvs-2.35.3-150300.10.39.1.x86_64",
"product": {
"name": "git-cvs-2.35.3-150300.10.39.1.x86_64",
"product_id": "git-cvs-2.35.3-150300.10.39.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-daemon-2.35.3-150300.10.39.1.x86_64",
"product": {
"name": "git-daemon-2.35.3-150300.10.39.1.x86_64",
"product_id": "git-daemon-2.35.3-150300.10.39.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-email-2.35.3-150300.10.39.1.x86_64",
"product": {
"name": "git-email-2.35.3-150300.10.39.1.x86_64",
"product_id": "git-email-2.35.3-150300.10.39.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-gui-2.35.3-150300.10.39.1.x86_64",
"product": {
"name": "git-gui-2.35.3-150300.10.39.1.x86_64",
"product_id": "git-gui-2.35.3-150300.10.39.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-p4-2.35.3-150300.10.39.1.x86_64",
"product": {
"name": "git-p4-2.35.3-150300.10.39.1.x86_64",
"product_id": "git-p4-2.35.3-150300.10.39.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-svn-2.35.3-150300.10.39.1.x86_64",
"product": {
"name": "git-svn-2.35.3-150300.10.39.1.x86_64",
"product_id": "git-svn-2.35.3-150300.10.39.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-web-2.35.3-150300.10.39.1.x86_64",
"product": {
"name": "git-web-2.35.3-150300.10.39.1.x86_64",
"product_id": "git-web-2.35.3-150300.10.39.1.x86_64"
}
},
{
"category": "product_version",
"name": "gitk-2.35.3-150300.10.39.1.x86_64",
"product": {
"name": "gitk-2.35.3-150300.10.39.1.x86_64",
"product_id": "gitk-2.35.3-150300.10.39.1.x86_64"
}
},
{
"category": "product_version",
"name": "perl-Git-2.35.3-150300.10.39.1.x86_64",
"product": {
"name": "perl-Git-2.35.3-150300.10.39.1.x86_64",
"product_id": "perl-Git-2.35.3-150300.10.39.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Micro 5.5",
"product": {
"name": "SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-micro:5.5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Basesystem 15 SP5",
"product": {
"name": "SUSE Linux Enterprise Module for Basesystem 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-basesystem:15:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Development Tools 15 SP5",
"product": {
"name": "SUSE Linux Enterprise Module for Development Tools 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-development-tools:15:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-espos:15:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15 SP3-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:15:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15 SP4-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:15:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:15:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:15:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Manager Proxy 4.3",
"product": {
"name": "SUSE Manager Proxy 4.3",
"product_id": "SUSE Manager Proxy 4.3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse-manager-proxy:4.3"
}
}
},
{
"category": "product_name",
"name": "SUSE Manager Server 4.3",
"product": {
"name": "SUSE Manager Server 4.3",
"product_id": "SUSE Manager Server 4.3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse-manager-server:4.3"
}
}
},
{
"category": "product_name",
"name": "SUSE Enterprise Storage 7.1",
"product": {
"name": "SUSE Enterprise Storage 7.1",
"product_id": "SUSE Enterprise Storage 7.1",
"product_identification_helper": {
"cpe": "cpe:/o:suse:ses:7.1"
}
}
},
{
"category": "product_name",
"name": "openSUSE Leap 15.5",
"product": {
"name": "openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap:15.5"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.35.3-150300.10.39.1.aarch64 as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.aarch64"
},
"product_reference": "git-2.35.3-150300.10.39.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.35.3-150300.10.39.1.ppc64le as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.ppc64le"
},
"product_reference": "git-2.35.3-150300.10.39.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.35.3-150300.10.39.1.s390x as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.s390x"
},
"product_reference": "git-2.35.3-150300.10.39.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.35.3-150300.10.39.1.x86_64 as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "git-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.35.3-150300.10.39.1.aarch64 as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.aarch64"
},
"product_reference": "git-core-2.35.3-150300.10.39.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.35.3-150300.10.39.1.ppc64le as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.ppc64le"
},
"product_reference": "git-core-2.35.3-150300.10.39.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.35.3-150300.10.39.1.s390x as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.s390x"
},
"product_reference": "git-core-2.35.3-150300.10.39.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.35.3-150300.10.39.1.x86_64 as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "git-core-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.35.3-150300.10.39.1.aarch64 as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.aarch64"
},
"product_reference": "perl-Git-2.35.3-150300.10.39.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.35.3-150300.10.39.1.ppc64le as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.ppc64le"
},
"product_reference": "perl-Git-2.35.3-150300.10.39.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.35.3-150300.10.39.1.s390x as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.s390x"
},
"product_reference": "perl-Git-2.35.3-150300.10.39.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.35.3-150300.10.39.1.x86_64 as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "perl-Git-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.35.3-150300.10.39.1.aarch64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP5:git-core-2.35.3-150300.10.39.1.aarch64"
},
"product_reference": "git-core-2.35.3-150300.10.39.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.35.3-150300.10.39.1.ppc64le as component of SUSE Linux Enterprise Module for Basesystem 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP5:git-core-2.35.3-150300.10.39.1.ppc64le"
},
"product_reference": "git-core-2.35.3-150300.10.39.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.35.3-150300.10.39.1.s390x as component of SUSE Linux Enterprise Module for Basesystem 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP5:git-core-2.35.3-150300.10.39.1.s390x"
},
"product_reference": "git-core-2.35.3-150300.10.39.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.35.3-150300.10.39.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP5:git-core-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "git-core-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.35.3-150300.10.39.1.aarch64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP5:git-2.35.3-150300.10.39.1.aarch64"
},
"product_reference": "git-2.35.3-150300.10.39.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.35.3-150300.10.39.1.ppc64le as component of SUSE Linux Enterprise Module for Development Tools 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP5:git-2.35.3-150300.10.39.1.ppc64le"
},
"product_reference": "git-2.35.3-150300.10.39.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.35.3-150300.10.39.1.s390x as component of SUSE Linux Enterprise Module for Development Tools 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP5:git-2.35.3-150300.10.39.1.s390x"
},
"product_reference": "git-2.35.3-150300.10.39.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.35.3-150300.10.39.1.x86_64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP5:git-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "git-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-arch-2.35.3-150300.10.39.1.aarch64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP5:git-arch-2.35.3-150300.10.39.1.aarch64"
},
"product_reference": "git-arch-2.35.3-150300.10.39.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-arch-2.35.3-150300.10.39.1.ppc64le as component of SUSE Linux Enterprise Module for Development Tools 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP5:git-arch-2.35.3-150300.10.39.1.ppc64le"
},
"product_reference": "git-arch-2.35.3-150300.10.39.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-arch-2.35.3-150300.10.39.1.s390x as component of SUSE Linux Enterprise Module for Development Tools 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP5:git-arch-2.35.3-150300.10.39.1.s390x"
},
"product_reference": "git-arch-2.35.3-150300.10.39.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-arch-2.35.3-150300.10.39.1.x86_64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP5:git-arch-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "git-arch-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.35.3-150300.10.39.1.aarch64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP5:git-cvs-2.35.3-150300.10.39.1.aarch64"
},
"product_reference": "git-cvs-2.35.3-150300.10.39.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.35.3-150300.10.39.1.ppc64le as component of SUSE Linux Enterprise Module for Development Tools 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP5:git-cvs-2.35.3-150300.10.39.1.ppc64le"
},
"product_reference": "git-cvs-2.35.3-150300.10.39.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.35.3-150300.10.39.1.s390x as component of SUSE Linux Enterprise Module for Development Tools 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP5:git-cvs-2.35.3-150300.10.39.1.s390x"
},
"product_reference": "git-cvs-2.35.3-150300.10.39.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.35.3-150300.10.39.1.x86_64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP5:git-cvs-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "git-cvs-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.35.3-150300.10.39.1.aarch64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP5:git-daemon-2.35.3-150300.10.39.1.aarch64"
},
"product_reference": "git-daemon-2.35.3-150300.10.39.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.35.3-150300.10.39.1.ppc64le as component of SUSE Linux Enterprise Module for Development Tools 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP5:git-daemon-2.35.3-150300.10.39.1.ppc64le"
},
"product_reference": "git-daemon-2.35.3-150300.10.39.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.35.3-150300.10.39.1.s390x as component of SUSE Linux Enterprise Module for Development Tools 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP5:git-daemon-2.35.3-150300.10.39.1.s390x"
},
"product_reference": "git-daemon-2.35.3-150300.10.39.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.35.3-150300.10.39.1.x86_64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP5:git-daemon-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "git-daemon-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-doc-2.35.3-150300.10.39.1.noarch as component of SUSE Linux Enterprise Module for Development Tools 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP5:git-doc-2.35.3-150300.10.39.1.noarch"
},
"product_reference": "git-doc-2.35.3-150300.10.39.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.35.3-150300.10.39.1.aarch64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP5:git-email-2.35.3-150300.10.39.1.aarch64"
},
"product_reference": "git-email-2.35.3-150300.10.39.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.35.3-150300.10.39.1.ppc64le as component of SUSE Linux Enterprise Module for Development Tools 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP5:git-email-2.35.3-150300.10.39.1.ppc64le"
},
"product_reference": "git-email-2.35.3-150300.10.39.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.35.3-150300.10.39.1.s390x as component of SUSE Linux Enterprise Module for Development Tools 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP5:git-email-2.35.3-150300.10.39.1.s390x"
},
"product_reference": "git-email-2.35.3-150300.10.39.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.35.3-150300.10.39.1.x86_64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP5:git-email-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "git-email-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.35.3-150300.10.39.1.aarch64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP5:git-gui-2.35.3-150300.10.39.1.aarch64"
},
"product_reference": "git-gui-2.35.3-150300.10.39.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.35.3-150300.10.39.1.ppc64le as component of SUSE Linux Enterprise Module for Development Tools 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP5:git-gui-2.35.3-150300.10.39.1.ppc64le"
},
"product_reference": "git-gui-2.35.3-150300.10.39.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.35.3-150300.10.39.1.s390x as component of SUSE Linux Enterprise Module for Development Tools 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP5:git-gui-2.35.3-150300.10.39.1.s390x"
},
"product_reference": "git-gui-2.35.3-150300.10.39.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.35.3-150300.10.39.1.x86_64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP5:git-gui-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "git-gui-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.35.3-150300.10.39.1.aarch64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP5:git-svn-2.35.3-150300.10.39.1.aarch64"
},
"product_reference": "git-svn-2.35.3-150300.10.39.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.35.3-150300.10.39.1.ppc64le as component of SUSE Linux Enterprise Module for Development Tools 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP5:git-svn-2.35.3-150300.10.39.1.ppc64le"
},
"product_reference": "git-svn-2.35.3-150300.10.39.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.35.3-150300.10.39.1.s390x as component of SUSE Linux Enterprise Module for Development Tools 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP5:git-svn-2.35.3-150300.10.39.1.s390x"
},
"product_reference": "git-svn-2.35.3-150300.10.39.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.35.3-150300.10.39.1.x86_64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP5:git-svn-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "git-svn-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.35.3-150300.10.39.1.aarch64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP5:git-web-2.35.3-150300.10.39.1.aarch64"
},
"product_reference": "git-web-2.35.3-150300.10.39.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.35.3-150300.10.39.1.ppc64le as component of SUSE Linux Enterprise Module for Development Tools 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP5:git-web-2.35.3-150300.10.39.1.ppc64le"
},
"product_reference": "git-web-2.35.3-150300.10.39.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.35.3-150300.10.39.1.s390x as component of SUSE Linux Enterprise Module for Development Tools 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP5:git-web-2.35.3-150300.10.39.1.s390x"
},
"product_reference": "git-web-2.35.3-150300.10.39.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.35.3-150300.10.39.1.x86_64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP5:git-web-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "git-web-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.35.3-150300.10.39.1.aarch64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP5:gitk-2.35.3-150300.10.39.1.aarch64"
},
"product_reference": "gitk-2.35.3-150300.10.39.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.35.3-150300.10.39.1.ppc64le as component of SUSE Linux Enterprise Module for Development Tools 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP5:gitk-2.35.3-150300.10.39.1.ppc64le"
},
"product_reference": "gitk-2.35.3-150300.10.39.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.35.3-150300.10.39.1.s390x as component of SUSE Linux Enterprise Module for Development Tools 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP5:gitk-2.35.3-150300.10.39.1.s390x"
},
"product_reference": "gitk-2.35.3-150300.10.39.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.35.3-150300.10.39.1.x86_64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP5:gitk-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "gitk-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.35.3-150300.10.39.1.aarch64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP5:perl-Git-2.35.3-150300.10.39.1.aarch64"
},
"product_reference": "perl-Git-2.35.3-150300.10.39.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.35.3-150300.10.39.1.ppc64le as component of SUSE Linux Enterprise Module for Development Tools 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP5:perl-Git-2.35.3-150300.10.39.1.ppc64le"
},
"product_reference": "perl-Git-2.35.3-150300.10.39.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.35.3-150300.10.39.1.s390x as component of SUSE Linux Enterprise Module for Development Tools 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP5:perl-Git-2.35.3-150300.10.39.1.s390x"
},
"product_reference": "perl-Git-2.35.3-150300.10.39.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.35.3-150300.10.39.1.x86_64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP5:perl-Git-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "perl-Git-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.35.3-150300.10.39.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-2.35.3-150300.10.39.1.aarch64"
},
"product_reference": "git-2.35.3-150300.10.39.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.35.3-150300.10.39.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "git-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-arch-2.35.3-150300.10.39.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-arch-2.35.3-150300.10.39.1.aarch64"
},
"product_reference": "git-arch-2.35.3-150300.10.39.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-arch-2.35.3-150300.10.39.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-arch-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "git-arch-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.35.3-150300.10.39.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-core-2.35.3-150300.10.39.1.aarch64"
},
"product_reference": "git-core-2.35.3-150300.10.39.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.35.3-150300.10.39.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-core-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "git-core-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.35.3-150300.10.39.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-cvs-2.35.3-150300.10.39.1.aarch64"
},
"product_reference": "git-cvs-2.35.3-150300.10.39.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.35.3-150300.10.39.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-cvs-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "git-cvs-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.35.3-150300.10.39.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-daemon-2.35.3-150300.10.39.1.aarch64"
},
"product_reference": "git-daemon-2.35.3-150300.10.39.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.35.3-150300.10.39.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-daemon-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "git-daemon-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-doc-2.35.3-150300.10.39.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-doc-2.35.3-150300.10.39.1.noarch"
},
"product_reference": "git-doc-2.35.3-150300.10.39.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.35.3-150300.10.39.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-email-2.35.3-150300.10.39.1.aarch64"
},
"product_reference": "git-email-2.35.3-150300.10.39.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.35.3-150300.10.39.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-email-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "git-email-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.35.3-150300.10.39.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-gui-2.35.3-150300.10.39.1.aarch64"
},
"product_reference": "git-gui-2.35.3-150300.10.39.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.35.3-150300.10.39.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-gui-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "git-gui-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.35.3-150300.10.39.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-svn-2.35.3-150300.10.39.1.aarch64"
},
"product_reference": "git-svn-2.35.3-150300.10.39.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.35.3-150300.10.39.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-svn-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "git-svn-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.35.3-150300.10.39.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-web-2.35.3-150300.10.39.1.aarch64"
},
"product_reference": "git-web-2.35.3-150300.10.39.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.35.3-150300.10.39.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-web-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "git-web-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.35.3-150300.10.39.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:gitk-2.35.3-150300.10.39.1.aarch64"
},
"product_reference": "gitk-2.35.3-150300.10.39.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.35.3-150300.10.39.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:gitk-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "gitk-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.35.3-150300.10.39.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:perl-Git-2.35.3-150300.10.39.1.aarch64"
},
"product_reference": "perl-Git-2.35.3-150300.10.39.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.35.3-150300.10.39.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:perl-Git-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "perl-Git-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.35.3-150300.10.39.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-2.35.3-150300.10.39.1.aarch64"
},
"product_reference": "git-2.35.3-150300.10.39.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.35.3-150300.10.39.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "git-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-arch-2.35.3-150300.10.39.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-arch-2.35.3-150300.10.39.1.aarch64"
},
"product_reference": "git-arch-2.35.3-150300.10.39.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-arch-2.35.3-150300.10.39.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-arch-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "git-arch-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.35.3-150300.10.39.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-core-2.35.3-150300.10.39.1.aarch64"
},
"product_reference": "git-core-2.35.3-150300.10.39.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.35.3-150300.10.39.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-core-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "git-core-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.35.3-150300.10.39.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-cvs-2.35.3-150300.10.39.1.aarch64"
},
"product_reference": "git-cvs-2.35.3-150300.10.39.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.35.3-150300.10.39.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-cvs-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "git-cvs-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.35.3-150300.10.39.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-daemon-2.35.3-150300.10.39.1.aarch64"
},
"product_reference": "git-daemon-2.35.3-150300.10.39.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.35.3-150300.10.39.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-daemon-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "git-daemon-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-doc-2.35.3-150300.10.39.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-doc-2.35.3-150300.10.39.1.noarch"
},
"product_reference": "git-doc-2.35.3-150300.10.39.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.35.3-150300.10.39.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-email-2.35.3-150300.10.39.1.aarch64"
},
"product_reference": "git-email-2.35.3-150300.10.39.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.35.3-150300.10.39.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-email-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "git-email-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.35.3-150300.10.39.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-gui-2.35.3-150300.10.39.1.aarch64"
},
"product_reference": "git-gui-2.35.3-150300.10.39.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.35.3-150300.10.39.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-gui-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "git-gui-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.35.3-150300.10.39.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-svn-2.35.3-150300.10.39.1.aarch64"
},
"product_reference": "git-svn-2.35.3-150300.10.39.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.35.3-150300.10.39.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-svn-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "git-svn-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.35.3-150300.10.39.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-web-2.35.3-150300.10.39.1.aarch64"
},
"product_reference": "git-web-2.35.3-150300.10.39.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.35.3-150300.10.39.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-web-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "git-web-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.35.3-150300.10.39.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:gitk-2.35.3-150300.10.39.1.aarch64"
},
"product_reference": "gitk-2.35.3-150300.10.39.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.35.3-150300.10.39.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:gitk-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "gitk-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.35.3-150300.10.39.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:perl-Git-2.35.3-150300.10.39.1.aarch64"
},
"product_reference": "perl-Git-2.35.3-150300.10.39.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.35.3-150300.10.39.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:perl-Git-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "perl-Git-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.35.3-150300.10.39.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-2.35.3-150300.10.39.1.aarch64"
},
"product_reference": "git-2.35.3-150300.10.39.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.35.3-150300.10.39.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "git-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-arch-2.35.3-150300.10.39.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-arch-2.35.3-150300.10.39.1.aarch64"
},
"product_reference": "git-arch-2.35.3-150300.10.39.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-arch-2.35.3-150300.10.39.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-arch-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "git-arch-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.35.3-150300.10.39.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-core-2.35.3-150300.10.39.1.aarch64"
},
"product_reference": "git-core-2.35.3-150300.10.39.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.35.3-150300.10.39.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-core-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "git-core-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.35.3-150300.10.39.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-cvs-2.35.3-150300.10.39.1.aarch64"
},
"product_reference": "git-cvs-2.35.3-150300.10.39.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.35.3-150300.10.39.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-cvs-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "git-cvs-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.35.3-150300.10.39.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-daemon-2.35.3-150300.10.39.1.aarch64"
},
"product_reference": "git-daemon-2.35.3-150300.10.39.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.35.3-150300.10.39.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-daemon-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "git-daemon-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-doc-2.35.3-150300.10.39.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-doc-2.35.3-150300.10.39.1.noarch"
},
"product_reference": "git-doc-2.35.3-150300.10.39.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.35.3-150300.10.39.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-email-2.35.3-150300.10.39.1.aarch64"
},
"product_reference": "git-email-2.35.3-150300.10.39.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.35.3-150300.10.39.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-email-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "git-email-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.35.3-150300.10.39.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-gui-2.35.3-150300.10.39.1.aarch64"
},
"product_reference": "git-gui-2.35.3-150300.10.39.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.35.3-150300.10.39.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-gui-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "git-gui-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.35.3-150300.10.39.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-svn-2.35.3-150300.10.39.1.aarch64"
},
"product_reference": "git-svn-2.35.3-150300.10.39.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.35.3-150300.10.39.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-svn-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "git-svn-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.35.3-150300.10.39.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-web-2.35.3-150300.10.39.1.aarch64"
},
"product_reference": "git-web-2.35.3-150300.10.39.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.35.3-150300.10.39.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-web-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "git-web-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.35.3-150300.10.39.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:gitk-2.35.3-150300.10.39.1.aarch64"
},
"product_reference": "gitk-2.35.3-150300.10.39.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.35.3-150300.10.39.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:gitk-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "gitk-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.35.3-150300.10.39.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:perl-Git-2.35.3-150300.10.39.1.aarch64"
},
"product_reference": "perl-Git-2.35.3-150300.10.39.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.35.3-150300.10.39.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:perl-Git-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "perl-Git-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.35.3-150300.10.39.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.35.3-150300.10.39.1.aarch64"
},
"product_reference": "git-2.35.3-150300.10.39.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.35.3-150300.10.39.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.35.3-150300.10.39.1.ppc64le"
},
"product_reference": "git-2.35.3-150300.10.39.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.35.3-150300.10.39.1.s390x as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.35.3-150300.10.39.1.s390x"
},
"product_reference": "git-2.35.3-150300.10.39.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.35.3-150300.10.39.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "git-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-arch-2.35.3-150300.10.39.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.35.3-150300.10.39.1.aarch64"
},
"product_reference": "git-arch-2.35.3-150300.10.39.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-arch-2.35.3-150300.10.39.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.35.3-150300.10.39.1.ppc64le"
},
"product_reference": "git-arch-2.35.3-150300.10.39.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-arch-2.35.3-150300.10.39.1.s390x as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.35.3-150300.10.39.1.s390x"
},
"product_reference": "git-arch-2.35.3-150300.10.39.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-arch-2.35.3-150300.10.39.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "git-arch-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.35.3-150300.10.39.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.35.3-150300.10.39.1.aarch64"
},
"product_reference": "git-core-2.35.3-150300.10.39.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.35.3-150300.10.39.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.35.3-150300.10.39.1.ppc64le"
},
"product_reference": "git-core-2.35.3-150300.10.39.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.35.3-150300.10.39.1.s390x as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.35.3-150300.10.39.1.s390x"
},
"product_reference": "git-core-2.35.3-150300.10.39.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.35.3-150300.10.39.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "git-core-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.35.3-150300.10.39.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.35.3-150300.10.39.1.aarch64"
},
"product_reference": "git-cvs-2.35.3-150300.10.39.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.35.3-150300.10.39.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.35.3-150300.10.39.1.ppc64le"
},
"product_reference": "git-cvs-2.35.3-150300.10.39.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.35.3-150300.10.39.1.s390x as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.35.3-150300.10.39.1.s390x"
},
"product_reference": "git-cvs-2.35.3-150300.10.39.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.35.3-150300.10.39.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "git-cvs-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.35.3-150300.10.39.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.35.3-150300.10.39.1.aarch64"
},
"product_reference": "git-daemon-2.35.3-150300.10.39.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.35.3-150300.10.39.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.35.3-150300.10.39.1.ppc64le"
},
"product_reference": "git-daemon-2.35.3-150300.10.39.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.35.3-150300.10.39.1.s390x as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.35.3-150300.10.39.1.s390x"
},
"product_reference": "git-daemon-2.35.3-150300.10.39.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.35.3-150300.10.39.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "git-daemon-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-doc-2.35.3-150300.10.39.1.noarch as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:git-doc-2.35.3-150300.10.39.1.noarch"
},
"product_reference": "git-doc-2.35.3-150300.10.39.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.35.3-150300.10.39.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.35.3-150300.10.39.1.aarch64"
},
"product_reference": "git-email-2.35.3-150300.10.39.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.35.3-150300.10.39.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.35.3-150300.10.39.1.ppc64le"
},
"product_reference": "git-email-2.35.3-150300.10.39.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.35.3-150300.10.39.1.s390x as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.35.3-150300.10.39.1.s390x"
},
"product_reference": "git-email-2.35.3-150300.10.39.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.35.3-150300.10.39.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "git-email-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.35.3-150300.10.39.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.35.3-150300.10.39.1.aarch64"
},
"product_reference": "git-gui-2.35.3-150300.10.39.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.35.3-150300.10.39.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.35.3-150300.10.39.1.ppc64le"
},
"product_reference": "git-gui-2.35.3-150300.10.39.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.35.3-150300.10.39.1.s390x as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.35.3-150300.10.39.1.s390x"
},
"product_reference": "git-gui-2.35.3-150300.10.39.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.35.3-150300.10.39.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "git-gui-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.35.3-150300.10.39.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.35.3-150300.10.39.1.aarch64"
},
"product_reference": "git-svn-2.35.3-150300.10.39.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.35.3-150300.10.39.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.35.3-150300.10.39.1.ppc64le"
},
"product_reference": "git-svn-2.35.3-150300.10.39.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.35.3-150300.10.39.1.s390x as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.35.3-150300.10.39.1.s390x"
},
"product_reference": "git-svn-2.35.3-150300.10.39.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.35.3-150300.10.39.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "git-svn-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.35.3-150300.10.39.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.35.3-150300.10.39.1.aarch64"
},
"product_reference": "git-web-2.35.3-150300.10.39.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.35.3-150300.10.39.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.35.3-150300.10.39.1.ppc64le"
},
"product_reference": "git-web-2.35.3-150300.10.39.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.35.3-150300.10.39.1.s390x as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.35.3-150300.10.39.1.s390x"
},
"product_reference": "git-web-2.35.3-150300.10.39.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.35.3-150300.10.39.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "git-web-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.35.3-150300.10.39.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.35.3-150300.10.39.1.aarch64"
},
"product_reference": "gitk-2.35.3-150300.10.39.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.35.3-150300.10.39.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.35.3-150300.10.39.1.ppc64le"
},
"product_reference": "gitk-2.35.3-150300.10.39.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.35.3-150300.10.39.1.s390x as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.35.3-150300.10.39.1.s390x"
},
"product_reference": "gitk-2.35.3-150300.10.39.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.35.3-150300.10.39.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "gitk-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.35.3-150300.10.39.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.35.3-150300.10.39.1.aarch64"
},
"product_reference": "perl-Git-2.35.3-150300.10.39.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.35.3-150300.10.39.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.35.3-150300.10.39.1.ppc64le"
},
"product_reference": "perl-Git-2.35.3-150300.10.39.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.35.3-150300.10.39.1.s390x as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.35.3-150300.10.39.1.s390x"
},
"product_reference": "perl-Git-2.35.3-150300.10.39.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.35.3-150300.10.39.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "perl-Git-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.35.3-150300.10.39.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.35.3-150300.10.39.1.aarch64"
},
"product_reference": "git-2.35.3-150300.10.39.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.35.3-150300.10.39.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.35.3-150300.10.39.1.ppc64le"
},
"product_reference": "git-2.35.3-150300.10.39.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.35.3-150300.10.39.1.s390x as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.35.3-150300.10.39.1.s390x"
},
"product_reference": "git-2.35.3-150300.10.39.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.35.3-150300.10.39.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "git-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-arch-2.35.3-150300.10.39.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.35.3-150300.10.39.1.aarch64"
},
"product_reference": "git-arch-2.35.3-150300.10.39.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-arch-2.35.3-150300.10.39.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.35.3-150300.10.39.1.ppc64le"
},
"product_reference": "git-arch-2.35.3-150300.10.39.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-arch-2.35.3-150300.10.39.1.s390x as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.35.3-150300.10.39.1.s390x"
},
"product_reference": "git-arch-2.35.3-150300.10.39.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-arch-2.35.3-150300.10.39.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "git-arch-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.35.3-150300.10.39.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.35.3-150300.10.39.1.aarch64"
},
"product_reference": "git-core-2.35.3-150300.10.39.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.35.3-150300.10.39.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.35.3-150300.10.39.1.ppc64le"
},
"product_reference": "git-core-2.35.3-150300.10.39.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.35.3-150300.10.39.1.s390x as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.35.3-150300.10.39.1.s390x"
},
"product_reference": "git-core-2.35.3-150300.10.39.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.35.3-150300.10.39.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "git-core-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.35.3-150300.10.39.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.35.3-150300.10.39.1.aarch64"
},
"product_reference": "git-cvs-2.35.3-150300.10.39.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.35.3-150300.10.39.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.35.3-150300.10.39.1.ppc64le"
},
"product_reference": "git-cvs-2.35.3-150300.10.39.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.35.3-150300.10.39.1.s390x as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.35.3-150300.10.39.1.s390x"
},
"product_reference": "git-cvs-2.35.3-150300.10.39.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.35.3-150300.10.39.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "git-cvs-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.35.3-150300.10.39.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.35.3-150300.10.39.1.aarch64"
},
"product_reference": "git-daemon-2.35.3-150300.10.39.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.35.3-150300.10.39.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.35.3-150300.10.39.1.ppc64le"
},
"product_reference": "git-daemon-2.35.3-150300.10.39.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.35.3-150300.10.39.1.s390x as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.35.3-150300.10.39.1.s390x"
},
"product_reference": "git-daemon-2.35.3-150300.10.39.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.35.3-150300.10.39.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "git-daemon-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-doc-2.35.3-150300.10.39.1.noarch as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:git-doc-2.35.3-150300.10.39.1.noarch"
},
"product_reference": "git-doc-2.35.3-150300.10.39.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.35.3-150300.10.39.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.35.3-150300.10.39.1.aarch64"
},
"product_reference": "git-email-2.35.3-150300.10.39.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.35.3-150300.10.39.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.35.3-150300.10.39.1.ppc64le"
},
"product_reference": "git-email-2.35.3-150300.10.39.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.35.3-150300.10.39.1.s390x as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.35.3-150300.10.39.1.s390x"
},
"product_reference": "git-email-2.35.3-150300.10.39.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.35.3-150300.10.39.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "git-email-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.35.3-150300.10.39.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.35.3-150300.10.39.1.aarch64"
},
"product_reference": "git-gui-2.35.3-150300.10.39.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.35.3-150300.10.39.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.35.3-150300.10.39.1.ppc64le"
},
"product_reference": "git-gui-2.35.3-150300.10.39.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.35.3-150300.10.39.1.s390x as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.35.3-150300.10.39.1.s390x"
},
"product_reference": "git-gui-2.35.3-150300.10.39.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.35.3-150300.10.39.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "git-gui-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.35.3-150300.10.39.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.35.3-150300.10.39.1.aarch64"
},
"product_reference": "git-svn-2.35.3-150300.10.39.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.35.3-150300.10.39.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.35.3-150300.10.39.1.ppc64le"
},
"product_reference": "git-svn-2.35.3-150300.10.39.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.35.3-150300.10.39.1.s390x as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.35.3-150300.10.39.1.s390x"
},
"product_reference": "git-svn-2.35.3-150300.10.39.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.35.3-150300.10.39.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "git-svn-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.35.3-150300.10.39.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.35.3-150300.10.39.1.aarch64"
},
"product_reference": "git-web-2.35.3-150300.10.39.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.35.3-150300.10.39.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.35.3-150300.10.39.1.ppc64le"
},
"product_reference": "git-web-2.35.3-150300.10.39.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.35.3-150300.10.39.1.s390x as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.35.3-150300.10.39.1.s390x"
},
"product_reference": "git-web-2.35.3-150300.10.39.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.35.3-150300.10.39.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "git-web-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.35.3-150300.10.39.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.35.3-150300.10.39.1.aarch64"
},
"product_reference": "gitk-2.35.3-150300.10.39.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.35.3-150300.10.39.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.35.3-150300.10.39.1.ppc64le"
},
"product_reference": "gitk-2.35.3-150300.10.39.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.35.3-150300.10.39.1.s390x as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.35.3-150300.10.39.1.s390x"
},
"product_reference": "gitk-2.35.3-150300.10.39.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.35.3-150300.10.39.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "gitk-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.35.3-150300.10.39.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.35.3-150300.10.39.1.aarch64"
},
"product_reference": "perl-Git-2.35.3-150300.10.39.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.35.3-150300.10.39.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.35.3-150300.10.39.1.ppc64le"
},
"product_reference": "perl-Git-2.35.3-150300.10.39.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.35.3-150300.10.39.1.s390x as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.35.3-150300.10.39.1.s390x"
},
"product_reference": "perl-Git-2.35.3-150300.10.39.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.35.3-150300.10.39.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "perl-Git-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.35.3-150300.10.39.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-2.35.3-150300.10.39.1.ppc64le"
},
"product_reference": "git-2.35.3-150300.10.39.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.35.3-150300.10.39.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "git-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-arch-2.35.3-150300.10.39.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-arch-2.35.3-150300.10.39.1.ppc64le"
},
"product_reference": "git-arch-2.35.3-150300.10.39.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-arch-2.35.3-150300.10.39.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-arch-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "git-arch-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.35.3-150300.10.39.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-core-2.35.3-150300.10.39.1.ppc64le"
},
"product_reference": "git-core-2.35.3-150300.10.39.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.35.3-150300.10.39.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-core-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "git-core-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.35.3-150300.10.39.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-cvs-2.35.3-150300.10.39.1.ppc64le"
},
"product_reference": "git-cvs-2.35.3-150300.10.39.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.35.3-150300.10.39.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-cvs-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "git-cvs-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.35.3-150300.10.39.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-daemon-2.35.3-150300.10.39.1.ppc64le"
},
"product_reference": "git-daemon-2.35.3-150300.10.39.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.35.3-150300.10.39.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-daemon-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "git-daemon-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-doc-2.35.3-150300.10.39.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-doc-2.35.3-150300.10.39.1.noarch"
},
"product_reference": "git-doc-2.35.3-150300.10.39.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.35.3-150300.10.39.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-email-2.35.3-150300.10.39.1.ppc64le"
},
"product_reference": "git-email-2.35.3-150300.10.39.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.35.3-150300.10.39.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-email-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "git-email-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.35.3-150300.10.39.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-gui-2.35.3-150300.10.39.1.ppc64le"
},
"product_reference": "git-gui-2.35.3-150300.10.39.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.35.3-150300.10.39.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-gui-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "git-gui-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.35.3-150300.10.39.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-svn-2.35.3-150300.10.39.1.ppc64le"
},
"product_reference": "git-svn-2.35.3-150300.10.39.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.35.3-150300.10.39.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-svn-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "git-svn-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.35.3-150300.10.39.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-web-2.35.3-150300.10.39.1.ppc64le"
},
"product_reference": "git-web-2.35.3-150300.10.39.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.35.3-150300.10.39.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-web-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "git-web-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.35.3-150300.10.39.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3:gitk-2.35.3-150300.10.39.1.ppc64le"
},
"product_reference": "gitk-2.35.3-150300.10.39.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.35.3-150300.10.39.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3:gitk-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "gitk-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.35.3-150300.10.39.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3:perl-Git-2.35.3-150300.10.39.1.ppc64le"
},
"product_reference": "perl-Git-2.35.3-150300.10.39.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.35.3-150300.10.39.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3:perl-Git-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "perl-Git-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.35.3-150300.10.39.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-2.35.3-150300.10.39.1.ppc64le"
},
"product_reference": "git-2.35.3-150300.10.39.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.35.3-150300.10.39.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "git-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-arch-2.35.3-150300.10.39.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-arch-2.35.3-150300.10.39.1.ppc64le"
},
"product_reference": "git-arch-2.35.3-150300.10.39.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-arch-2.35.3-150300.10.39.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-arch-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "git-arch-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.35.3-150300.10.39.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-core-2.35.3-150300.10.39.1.ppc64le"
},
"product_reference": "git-core-2.35.3-150300.10.39.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.35.3-150300.10.39.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-core-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "git-core-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.35.3-150300.10.39.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-cvs-2.35.3-150300.10.39.1.ppc64le"
},
"product_reference": "git-cvs-2.35.3-150300.10.39.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.35.3-150300.10.39.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-cvs-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "git-cvs-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.35.3-150300.10.39.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-daemon-2.35.3-150300.10.39.1.ppc64le"
},
"product_reference": "git-daemon-2.35.3-150300.10.39.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.35.3-150300.10.39.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-daemon-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "git-daemon-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-doc-2.35.3-150300.10.39.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-doc-2.35.3-150300.10.39.1.noarch"
},
"product_reference": "git-doc-2.35.3-150300.10.39.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.35.3-150300.10.39.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-email-2.35.3-150300.10.39.1.ppc64le"
},
"product_reference": "git-email-2.35.3-150300.10.39.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.35.3-150300.10.39.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-email-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "git-email-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.35.3-150300.10.39.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-gui-2.35.3-150300.10.39.1.ppc64le"
},
"product_reference": "git-gui-2.35.3-150300.10.39.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.35.3-150300.10.39.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-gui-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "git-gui-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.35.3-150300.10.39.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-svn-2.35.3-150300.10.39.1.ppc64le"
},
"product_reference": "git-svn-2.35.3-150300.10.39.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.35.3-150300.10.39.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-svn-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "git-svn-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.35.3-150300.10.39.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-web-2.35.3-150300.10.39.1.ppc64le"
},
"product_reference": "git-web-2.35.3-150300.10.39.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.35.3-150300.10.39.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-web-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "git-web-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.35.3-150300.10.39.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:gitk-2.35.3-150300.10.39.1.ppc64le"
},
"product_reference": "gitk-2.35.3-150300.10.39.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.35.3-150300.10.39.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:gitk-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "gitk-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.35.3-150300.10.39.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:perl-Git-2.35.3-150300.10.39.1.ppc64le"
},
"product_reference": "perl-Git-2.35.3-150300.10.39.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.35.3-150300.10.39.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:perl-Git-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "perl-Git-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.35.3-150300.10.39.1.x86_64 as component of SUSE Manager Proxy 4.3",
"product_id": "SUSE Manager Proxy 4.3:git-core-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "git-core-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Manager Proxy 4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.35.3-150300.10.39.1.ppc64le as component of SUSE Manager Server 4.3",
"product_id": "SUSE Manager Server 4.3:git-core-2.35.3-150300.10.39.1.ppc64le"
},
"product_reference": "git-core-2.35.3-150300.10.39.1.ppc64le",
"relates_to_product_reference": "SUSE Manager Server 4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.35.3-150300.10.39.1.s390x as component of SUSE Manager Server 4.3",
"product_id": "SUSE Manager Server 4.3:git-core-2.35.3-150300.10.39.1.s390x"
},
"product_reference": "git-core-2.35.3-150300.10.39.1.s390x",
"relates_to_product_reference": "SUSE Manager Server 4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.35.3-150300.10.39.1.x86_64 as component of SUSE Manager Server 4.3",
"product_id": "SUSE Manager Server 4.3:git-core-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "git-core-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Manager Server 4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.35.3-150300.10.39.1.aarch64 as component of SUSE Enterprise Storage 7.1",
"product_id": "SUSE Enterprise Storage 7.1:git-2.35.3-150300.10.39.1.aarch64"
},
"product_reference": "git-2.35.3-150300.10.39.1.aarch64",
"relates_to_product_reference": "SUSE Enterprise Storage 7.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.35.3-150300.10.39.1.x86_64 as component of SUSE Enterprise Storage 7.1",
"product_id": "SUSE Enterprise Storage 7.1:git-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "git-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Enterprise Storage 7.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-arch-2.35.3-150300.10.39.1.aarch64 as component of SUSE Enterprise Storage 7.1",
"product_id": "SUSE Enterprise Storage 7.1:git-arch-2.35.3-150300.10.39.1.aarch64"
},
"product_reference": "git-arch-2.35.3-150300.10.39.1.aarch64",
"relates_to_product_reference": "SUSE Enterprise Storage 7.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-arch-2.35.3-150300.10.39.1.x86_64 as component of SUSE Enterprise Storage 7.1",
"product_id": "SUSE Enterprise Storage 7.1:git-arch-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "git-arch-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Enterprise Storage 7.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.35.3-150300.10.39.1.aarch64 as component of SUSE Enterprise Storage 7.1",
"product_id": "SUSE Enterprise Storage 7.1:git-core-2.35.3-150300.10.39.1.aarch64"
},
"product_reference": "git-core-2.35.3-150300.10.39.1.aarch64",
"relates_to_product_reference": "SUSE Enterprise Storage 7.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.35.3-150300.10.39.1.x86_64 as component of SUSE Enterprise Storage 7.1",
"product_id": "SUSE Enterprise Storage 7.1:git-core-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "git-core-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Enterprise Storage 7.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.35.3-150300.10.39.1.aarch64 as component of SUSE Enterprise Storage 7.1",
"product_id": "SUSE Enterprise Storage 7.1:git-cvs-2.35.3-150300.10.39.1.aarch64"
},
"product_reference": "git-cvs-2.35.3-150300.10.39.1.aarch64",
"relates_to_product_reference": "SUSE Enterprise Storage 7.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.35.3-150300.10.39.1.x86_64 as component of SUSE Enterprise Storage 7.1",
"product_id": "SUSE Enterprise Storage 7.1:git-cvs-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "git-cvs-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Enterprise Storage 7.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.35.3-150300.10.39.1.aarch64 as component of SUSE Enterprise Storage 7.1",
"product_id": "SUSE Enterprise Storage 7.1:git-daemon-2.35.3-150300.10.39.1.aarch64"
},
"product_reference": "git-daemon-2.35.3-150300.10.39.1.aarch64",
"relates_to_product_reference": "SUSE Enterprise Storage 7.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.35.3-150300.10.39.1.x86_64 as component of SUSE Enterprise Storage 7.1",
"product_id": "SUSE Enterprise Storage 7.1:git-daemon-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "git-daemon-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Enterprise Storage 7.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-doc-2.35.3-150300.10.39.1.noarch as component of SUSE Enterprise Storage 7.1",
"product_id": "SUSE Enterprise Storage 7.1:git-doc-2.35.3-150300.10.39.1.noarch"
},
"product_reference": "git-doc-2.35.3-150300.10.39.1.noarch",
"relates_to_product_reference": "SUSE Enterprise Storage 7.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.35.3-150300.10.39.1.aarch64 as component of SUSE Enterprise Storage 7.1",
"product_id": "SUSE Enterprise Storage 7.1:git-email-2.35.3-150300.10.39.1.aarch64"
},
"product_reference": "git-email-2.35.3-150300.10.39.1.aarch64",
"relates_to_product_reference": "SUSE Enterprise Storage 7.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.35.3-150300.10.39.1.x86_64 as component of SUSE Enterprise Storage 7.1",
"product_id": "SUSE Enterprise Storage 7.1:git-email-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "git-email-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Enterprise Storage 7.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.35.3-150300.10.39.1.aarch64 as component of SUSE Enterprise Storage 7.1",
"product_id": "SUSE Enterprise Storage 7.1:git-gui-2.35.3-150300.10.39.1.aarch64"
},
"product_reference": "git-gui-2.35.3-150300.10.39.1.aarch64",
"relates_to_product_reference": "SUSE Enterprise Storage 7.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.35.3-150300.10.39.1.x86_64 as component of SUSE Enterprise Storage 7.1",
"product_id": "SUSE Enterprise Storage 7.1:git-gui-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "git-gui-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Enterprise Storage 7.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.35.3-150300.10.39.1.aarch64 as component of SUSE Enterprise Storage 7.1",
"product_id": "SUSE Enterprise Storage 7.1:git-svn-2.35.3-150300.10.39.1.aarch64"
},
"product_reference": "git-svn-2.35.3-150300.10.39.1.aarch64",
"relates_to_product_reference": "SUSE Enterprise Storage 7.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.35.3-150300.10.39.1.x86_64 as component of SUSE Enterprise Storage 7.1",
"product_id": "SUSE Enterprise Storage 7.1:git-svn-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "git-svn-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Enterprise Storage 7.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.35.3-150300.10.39.1.aarch64 as component of SUSE Enterprise Storage 7.1",
"product_id": "SUSE Enterprise Storage 7.1:git-web-2.35.3-150300.10.39.1.aarch64"
},
"product_reference": "git-web-2.35.3-150300.10.39.1.aarch64",
"relates_to_product_reference": "SUSE Enterprise Storage 7.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.35.3-150300.10.39.1.x86_64 as component of SUSE Enterprise Storage 7.1",
"product_id": "SUSE Enterprise Storage 7.1:git-web-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "git-web-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Enterprise Storage 7.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.35.3-150300.10.39.1.aarch64 as component of SUSE Enterprise Storage 7.1",
"product_id": "SUSE Enterprise Storage 7.1:gitk-2.35.3-150300.10.39.1.aarch64"
},
"product_reference": "gitk-2.35.3-150300.10.39.1.aarch64",
"relates_to_product_reference": "SUSE Enterprise Storage 7.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.35.3-150300.10.39.1.x86_64 as component of SUSE Enterprise Storage 7.1",
"product_id": "SUSE Enterprise Storage 7.1:gitk-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "gitk-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Enterprise Storage 7.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.35.3-150300.10.39.1.aarch64 as component of SUSE Enterprise Storage 7.1",
"product_id": "SUSE Enterprise Storage 7.1:perl-Git-2.35.3-150300.10.39.1.aarch64"
},
"product_reference": "perl-Git-2.35.3-150300.10.39.1.aarch64",
"relates_to_product_reference": "SUSE Enterprise Storage 7.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.35.3-150300.10.39.1.x86_64 as component of SUSE Enterprise Storage 7.1",
"product_id": "SUSE Enterprise Storage 7.1:perl-Git-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "perl-Git-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Enterprise Storage 7.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.35.3-150300.10.39.1.aarch64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:git-2.35.3-150300.10.39.1.aarch64"
},
"product_reference": "git-2.35.3-150300.10.39.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.35.3-150300.10.39.1.ppc64le as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:git-2.35.3-150300.10.39.1.ppc64le"
},
"product_reference": "git-2.35.3-150300.10.39.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.35.3-150300.10.39.1.s390x as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:git-2.35.3-150300.10.39.1.s390x"
},
"product_reference": "git-2.35.3-150300.10.39.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.35.3-150300.10.39.1.x86_64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:git-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "git-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-arch-2.35.3-150300.10.39.1.aarch64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:git-arch-2.35.3-150300.10.39.1.aarch64"
},
"product_reference": "git-arch-2.35.3-150300.10.39.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-arch-2.35.3-150300.10.39.1.ppc64le as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:git-arch-2.35.3-150300.10.39.1.ppc64le"
},
"product_reference": "git-arch-2.35.3-150300.10.39.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-arch-2.35.3-150300.10.39.1.s390x as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:git-arch-2.35.3-150300.10.39.1.s390x"
},
"product_reference": "git-arch-2.35.3-150300.10.39.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-arch-2.35.3-150300.10.39.1.x86_64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:git-arch-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "git-arch-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.35.3-150300.10.39.1.aarch64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:git-core-2.35.3-150300.10.39.1.aarch64"
},
"product_reference": "git-core-2.35.3-150300.10.39.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.35.3-150300.10.39.1.ppc64le as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:git-core-2.35.3-150300.10.39.1.ppc64le"
},
"product_reference": "git-core-2.35.3-150300.10.39.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.35.3-150300.10.39.1.s390x as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:git-core-2.35.3-150300.10.39.1.s390x"
},
"product_reference": "git-core-2.35.3-150300.10.39.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.35.3-150300.10.39.1.x86_64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:git-core-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "git-core-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-gnome-keyring-2.35.3-150300.10.39.1.aarch64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:git-credential-gnome-keyring-2.35.3-150300.10.39.1.aarch64"
},
"product_reference": "git-credential-gnome-keyring-2.35.3-150300.10.39.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-gnome-keyring-2.35.3-150300.10.39.1.ppc64le as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:git-credential-gnome-keyring-2.35.3-150300.10.39.1.ppc64le"
},
"product_reference": "git-credential-gnome-keyring-2.35.3-150300.10.39.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-gnome-keyring-2.35.3-150300.10.39.1.s390x as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:git-credential-gnome-keyring-2.35.3-150300.10.39.1.s390x"
},
"product_reference": "git-credential-gnome-keyring-2.35.3-150300.10.39.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-gnome-keyring-2.35.3-150300.10.39.1.x86_64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:git-credential-gnome-keyring-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "git-credential-gnome-keyring-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-2.35.3-150300.10.39.1.aarch64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:git-credential-libsecret-2.35.3-150300.10.39.1.aarch64"
},
"product_reference": "git-credential-libsecret-2.35.3-150300.10.39.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-2.35.3-150300.10.39.1.ppc64le as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:git-credential-libsecret-2.35.3-150300.10.39.1.ppc64le"
},
"product_reference": "git-credential-libsecret-2.35.3-150300.10.39.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-2.35.3-150300.10.39.1.s390x as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:git-credential-libsecret-2.35.3-150300.10.39.1.s390x"
},
"product_reference": "git-credential-libsecret-2.35.3-150300.10.39.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-2.35.3-150300.10.39.1.x86_64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:git-credential-libsecret-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "git-credential-libsecret-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.35.3-150300.10.39.1.aarch64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:git-cvs-2.35.3-150300.10.39.1.aarch64"
},
"product_reference": "git-cvs-2.35.3-150300.10.39.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.35.3-150300.10.39.1.ppc64le as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:git-cvs-2.35.3-150300.10.39.1.ppc64le"
},
"product_reference": "git-cvs-2.35.3-150300.10.39.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.35.3-150300.10.39.1.s390x as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:git-cvs-2.35.3-150300.10.39.1.s390x"
},
"product_reference": "git-cvs-2.35.3-150300.10.39.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.35.3-150300.10.39.1.x86_64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:git-cvs-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "git-cvs-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.35.3-150300.10.39.1.aarch64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:git-daemon-2.35.3-150300.10.39.1.aarch64"
},
"product_reference": "git-daemon-2.35.3-150300.10.39.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.35.3-150300.10.39.1.ppc64le as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:git-daemon-2.35.3-150300.10.39.1.ppc64le"
},
"product_reference": "git-daemon-2.35.3-150300.10.39.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.35.3-150300.10.39.1.s390x as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:git-daemon-2.35.3-150300.10.39.1.s390x"
},
"product_reference": "git-daemon-2.35.3-150300.10.39.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.35.3-150300.10.39.1.x86_64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:git-daemon-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "git-daemon-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-doc-2.35.3-150300.10.39.1.noarch as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:git-doc-2.35.3-150300.10.39.1.noarch"
},
"product_reference": "git-doc-2.35.3-150300.10.39.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.35.3-150300.10.39.1.aarch64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:git-email-2.35.3-150300.10.39.1.aarch64"
},
"product_reference": "git-email-2.35.3-150300.10.39.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.35.3-150300.10.39.1.ppc64le as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:git-email-2.35.3-150300.10.39.1.ppc64le"
},
"product_reference": "git-email-2.35.3-150300.10.39.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.35.3-150300.10.39.1.s390x as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:git-email-2.35.3-150300.10.39.1.s390x"
},
"product_reference": "git-email-2.35.3-150300.10.39.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.35.3-150300.10.39.1.x86_64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:git-email-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "git-email-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.35.3-150300.10.39.1.aarch64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:git-gui-2.35.3-150300.10.39.1.aarch64"
},
"product_reference": "git-gui-2.35.3-150300.10.39.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.35.3-150300.10.39.1.ppc64le as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:git-gui-2.35.3-150300.10.39.1.ppc64le"
},
"product_reference": "git-gui-2.35.3-150300.10.39.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.35.3-150300.10.39.1.s390x as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:git-gui-2.35.3-150300.10.39.1.s390x"
},
"product_reference": "git-gui-2.35.3-150300.10.39.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.35.3-150300.10.39.1.x86_64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:git-gui-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "git-gui-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-p4-2.35.3-150300.10.39.1.aarch64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:git-p4-2.35.3-150300.10.39.1.aarch64"
},
"product_reference": "git-p4-2.35.3-150300.10.39.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-p4-2.35.3-150300.10.39.1.ppc64le as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:git-p4-2.35.3-150300.10.39.1.ppc64le"
},
"product_reference": "git-p4-2.35.3-150300.10.39.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-p4-2.35.3-150300.10.39.1.s390x as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:git-p4-2.35.3-150300.10.39.1.s390x"
},
"product_reference": "git-p4-2.35.3-150300.10.39.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-p4-2.35.3-150300.10.39.1.x86_64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:git-p4-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "git-p4-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.35.3-150300.10.39.1.aarch64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:git-svn-2.35.3-150300.10.39.1.aarch64"
},
"product_reference": "git-svn-2.35.3-150300.10.39.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.35.3-150300.10.39.1.ppc64le as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:git-svn-2.35.3-150300.10.39.1.ppc64le"
},
"product_reference": "git-svn-2.35.3-150300.10.39.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.35.3-150300.10.39.1.s390x as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:git-svn-2.35.3-150300.10.39.1.s390x"
},
"product_reference": "git-svn-2.35.3-150300.10.39.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.35.3-150300.10.39.1.x86_64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:git-svn-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "git-svn-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.35.3-150300.10.39.1.aarch64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:git-web-2.35.3-150300.10.39.1.aarch64"
},
"product_reference": "git-web-2.35.3-150300.10.39.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.35.3-150300.10.39.1.ppc64le as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:git-web-2.35.3-150300.10.39.1.ppc64le"
},
"product_reference": "git-web-2.35.3-150300.10.39.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.35.3-150300.10.39.1.s390x as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:git-web-2.35.3-150300.10.39.1.s390x"
},
"product_reference": "git-web-2.35.3-150300.10.39.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.35.3-150300.10.39.1.x86_64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:git-web-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "git-web-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.35.3-150300.10.39.1.aarch64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:gitk-2.35.3-150300.10.39.1.aarch64"
},
"product_reference": "gitk-2.35.3-150300.10.39.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.35.3-150300.10.39.1.ppc64le as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:gitk-2.35.3-150300.10.39.1.ppc64le"
},
"product_reference": "gitk-2.35.3-150300.10.39.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.35.3-150300.10.39.1.s390x as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:gitk-2.35.3-150300.10.39.1.s390x"
},
"product_reference": "gitk-2.35.3-150300.10.39.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.35.3-150300.10.39.1.x86_64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:gitk-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "gitk-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.35.3-150300.10.39.1.aarch64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:perl-Git-2.35.3-150300.10.39.1.aarch64"
},
"product_reference": "perl-Git-2.35.3-150300.10.39.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.35.3-150300.10.39.1.ppc64le as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:perl-Git-2.35.3-150300.10.39.1.ppc64le"
},
"product_reference": "perl-Git-2.35.3-150300.10.39.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.35.3-150300.10.39.1.s390x as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:perl-Git-2.35.3-150300.10.39.1.s390x"
},
"product_reference": "perl-Git-2.35.3-150300.10.39.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.35.3-150300.10.39.1.x86_64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:perl-Git-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "perl-Git-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.5"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-32002",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-32002"
}
],
"notes": [
{
"category": "general",
"text": "Git is a revision control system. Prior to versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4, repositories with submodules can be crafted in a way that exploits a bug in Git whereby it can be fooled into writing files not into the submodule\u0027s worktree but into a `.git/` directory. This allows writing a hook that will be executed while the clone operation is still running, giving the user no opportunity to inspect the code that is being executed. The problem has been patched in versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4. If symbolic link support is disabled in Git (e.g. via `git config --global core.symlinks false`), the described attack won\u0027t work. As always, it is best to avoid cloning repositories from untrusted sources.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 7.1:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Enterprise Storage 7.1:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP5:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP5:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP5:git-core-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP5:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-arch-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-arch-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-cvs-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-cvs-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-daemon-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-daemon-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-email-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-email-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-gui-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-gui-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-svn-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-svn-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-web-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-web-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:gitk-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:gitk-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:perl-Git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-arch-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-cvs-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-daemon-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-email-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-gui-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-svn-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-web-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:gitk-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-arch-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-cvs-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-daemon-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-email-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-gui-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-svn-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-web-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:gitk-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Manager Proxy 4.3:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Manager Server 4.3:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Manager Server 4.3:git-core-2.35.3-150300.10.39.1.s390x",
"SUSE Manager Server 4.3:git-core-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-arch-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-arch-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-arch-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-arch-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-core-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-core-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-core-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-core-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-credential-gnome-keyring-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-credential-gnome-keyring-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-credential-gnome-keyring-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-credential-gnome-keyring-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-credential-libsecret-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-credential-libsecret-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-credential-libsecret-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-credential-libsecret-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-cvs-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-cvs-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-cvs-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-cvs-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-daemon-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-daemon-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-daemon-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-daemon-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-doc-2.35.3-150300.10.39.1.noarch",
"openSUSE Leap 15.5:git-email-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-email-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-email-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-email-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-gui-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-gui-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-gui-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-gui-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-p4-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-p4-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-p4-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-p4-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-svn-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-svn-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-svn-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-svn-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-web-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-web-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-web-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-web-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:gitk-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:gitk-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:gitk-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:gitk-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:perl-Git-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:perl-Git-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:perl-Git-2.35.3-150300.10.39.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-32002",
"url": "https://www.suse.com/security/cve/CVE-2024-32002"
},
{
"category": "external",
"summary": "SUSE Bug 1224168 for CVE-2024-32002",
"url": "https://bugzilla.suse.com/1224168"
},
{
"category": "external",
"summary": "SUSE Bug 1224170 for CVE-2024-32002",
"url": "https://bugzilla.suse.com/1224170"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 7.1:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Enterprise Storage 7.1:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP5:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP5:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP5:git-core-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP5:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-arch-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-arch-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-cvs-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-cvs-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-daemon-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-daemon-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-email-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-email-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-gui-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-gui-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-svn-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-svn-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-web-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-web-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:gitk-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:gitk-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:perl-Git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-arch-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-cvs-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-daemon-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-email-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-gui-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-svn-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-web-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:gitk-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-arch-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-cvs-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-daemon-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-email-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-gui-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-svn-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-web-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:gitk-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Manager Proxy 4.3:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Manager Server 4.3:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Manager Server 4.3:git-core-2.35.3-150300.10.39.1.s390x",
"SUSE Manager Server 4.3:git-core-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-arch-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-arch-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-arch-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-arch-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-core-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-core-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-core-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-core-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-credential-gnome-keyring-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-credential-gnome-keyring-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-credential-gnome-keyring-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-credential-gnome-keyring-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-credential-libsecret-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-credential-libsecret-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-credential-libsecret-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-credential-libsecret-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-cvs-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-cvs-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-cvs-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-cvs-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-daemon-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-daemon-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-daemon-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-daemon-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-doc-2.35.3-150300.10.39.1.noarch",
"openSUSE Leap 15.5:git-email-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-email-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-email-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-email-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-gui-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-gui-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-gui-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-gui-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-p4-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-p4-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-p4-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-p4-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-svn-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-svn-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-svn-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-svn-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-web-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-web-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-web-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-web-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:gitk-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:gitk-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:gitk-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:gitk-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:perl-Git-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:perl-Git-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:perl-Git-2.35.3-150300.10.39.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 7.1:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Enterprise Storage 7.1:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP5:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP5:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP5:git-core-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP5:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-arch-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-arch-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-cvs-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-cvs-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-daemon-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-daemon-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-email-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-email-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-gui-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-gui-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-svn-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-svn-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-web-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-web-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:gitk-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:gitk-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:perl-Git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-arch-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-cvs-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-daemon-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-email-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-gui-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-svn-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-web-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:gitk-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-arch-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-cvs-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-daemon-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-email-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-gui-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-svn-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-web-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:gitk-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Manager Proxy 4.3:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Manager Server 4.3:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Manager Server 4.3:git-core-2.35.3-150300.10.39.1.s390x",
"SUSE Manager Server 4.3:git-core-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-arch-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-arch-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-arch-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-arch-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-core-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-core-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-core-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-core-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-credential-gnome-keyring-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-credential-gnome-keyring-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-credential-gnome-keyring-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-credential-gnome-keyring-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-credential-libsecret-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-credential-libsecret-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-credential-libsecret-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-credential-libsecret-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-cvs-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-cvs-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-cvs-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-cvs-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-daemon-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-daemon-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-daemon-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-daemon-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-doc-2.35.3-150300.10.39.1.noarch",
"openSUSE Leap 15.5:git-email-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-email-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-email-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-email-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-gui-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-gui-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-gui-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-gui-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-p4-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-p4-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-p4-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-p4-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-svn-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-svn-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-svn-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-svn-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-web-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-web-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-web-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-web-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:gitk-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:gitk-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:gitk-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:gitk-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:perl-Git-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:perl-Git-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:perl-Git-2.35.3-150300.10.39.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-05-28T20:11:34Z",
"details": "important"
}
],
"title": "CVE-2024-32002"
},
{
"cve": "CVE-2024-32004",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-32004"
}
],
"notes": [
{
"category": "general",
"text": "Git is a revision control system. Prior to versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4, an attacker can prepare a local repository in such a way that, when cloned, will execute arbitrary code during the operation. The problem has been patched in versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4. As a workaround, avoid cloning repositories from untrusted sources.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 7.1:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Enterprise Storage 7.1:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP5:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP5:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP5:git-core-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP5:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-arch-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-arch-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-cvs-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-cvs-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-daemon-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-daemon-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-email-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-email-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-gui-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-gui-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-svn-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-svn-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-web-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-web-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:gitk-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:gitk-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:perl-Git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-arch-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-cvs-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-daemon-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-email-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-gui-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-svn-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-web-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:gitk-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-arch-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-cvs-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-daemon-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-email-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-gui-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-svn-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-web-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:gitk-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Manager Proxy 4.3:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Manager Server 4.3:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Manager Server 4.3:git-core-2.35.3-150300.10.39.1.s390x",
"SUSE Manager Server 4.3:git-core-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-arch-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-arch-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-arch-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-arch-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-core-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-core-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-core-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-core-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-credential-gnome-keyring-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-credential-gnome-keyring-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-credential-gnome-keyring-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-credential-gnome-keyring-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-credential-libsecret-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-credential-libsecret-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-credential-libsecret-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-credential-libsecret-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-cvs-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-cvs-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-cvs-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-cvs-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-daemon-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-daemon-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-daemon-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-daemon-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-doc-2.35.3-150300.10.39.1.noarch",
"openSUSE Leap 15.5:git-email-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-email-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-email-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-email-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-gui-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-gui-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-gui-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-gui-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-p4-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-p4-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-p4-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-p4-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-svn-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-svn-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-svn-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-svn-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-web-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-web-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-web-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-web-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:gitk-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:gitk-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:gitk-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:gitk-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:perl-Git-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:perl-Git-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:perl-Git-2.35.3-150300.10.39.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-32004",
"url": "https://www.suse.com/security/cve/CVE-2024-32004"
},
{
"category": "external",
"summary": "SUSE Bug 1224170 for CVE-2024-32004",
"url": "https://bugzilla.suse.com/1224170"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 7.1:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Enterprise Storage 7.1:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP5:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP5:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP5:git-core-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP5:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-arch-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-arch-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-cvs-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-cvs-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-daemon-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-daemon-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-email-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-email-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-gui-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-gui-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-svn-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-svn-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-web-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-web-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:gitk-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:gitk-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:perl-Git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-arch-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-cvs-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-daemon-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-email-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-gui-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-svn-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-web-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:gitk-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-arch-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-cvs-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-daemon-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-email-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-gui-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-svn-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-web-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:gitk-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Manager Proxy 4.3:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Manager Server 4.3:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Manager Server 4.3:git-core-2.35.3-150300.10.39.1.s390x",
"SUSE Manager Server 4.3:git-core-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-arch-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-arch-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-arch-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-arch-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-core-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-core-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-core-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-core-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-credential-gnome-keyring-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-credential-gnome-keyring-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-credential-gnome-keyring-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-credential-gnome-keyring-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-credential-libsecret-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-credential-libsecret-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-credential-libsecret-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-credential-libsecret-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-cvs-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-cvs-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-cvs-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-cvs-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-daemon-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-daemon-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-daemon-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-daemon-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-doc-2.35.3-150300.10.39.1.noarch",
"openSUSE Leap 15.5:git-email-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-email-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-email-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-email-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-gui-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-gui-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-gui-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-gui-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-p4-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-p4-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-p4-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-p4-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-svn-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-svn-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-svn-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-svn-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-web-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-web-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-web-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-web-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:gitk-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:gitk-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:gitk-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:gitk-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:perl-Git-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:perl-Git-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:perl-Git-2.35.3-150300.10.39.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 7.1:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Enterprise Storage 7.1:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP5:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP5:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP5:git-core-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP5:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-arch-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-arch-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-cvs-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-cvs-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-daemon-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-daemon-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-email-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-email-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-gui-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-gui-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-svn-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-svn-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-web-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-web-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:gitk-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:gitk-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:perl-Git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-arch-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-cvs-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-daemon-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-email-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-gui-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-svn-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-web-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:gitk-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-arch-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-cvs-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-daemon-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-email-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-gui-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-svn-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-web-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:gitk-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Manager Proxy 4.3:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Manager Server 4.3:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Manager Server 4.3:git-core-2.35.3-150300.10.39.1.s390x",
"SUSE Manager Server 4.3:git-core-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-arch-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-arch-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-arch-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-arch-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-core-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-core-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-core-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-core-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-credential-gnome-keyring-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-credential-gnome-keyring-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-credential-gnome-keyring-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-credential-gnome-keyring-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-credential-libsecret-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-credential-libsecret-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-credential-libsecret-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-credential-libsecret-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-cvs-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-cvs-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-cvs-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-cvs-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-daemon-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-daemon-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-daemon-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-daemon-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-doc-2.35.3-150300.10.39.1.noarch",
"openSUSE Leap 15.5:git-email-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-email-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-email-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-email-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-gui-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-gui-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-gui-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-gui-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-p4-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-p4-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-p4-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-p4-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-svn-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-svn-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-svn-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-svn-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-web-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-web-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-web-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-web-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:gitk-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:gitk-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:gitk-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:gitk-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:perl-Git-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:perl-Git-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:perl-Git-2.35.3-150300.10.39.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-05-28T20:11:34Z",
"details": "important"
}
],
"title": "CVE-2024-32004"
},
{
"cve": "CVE-2024-32020",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-32020"
}
],
"notes": [
{
"category": "general",
"text": "Git is a revision control system. Prior to versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4, local clones may end up hardlinking files into the target repository\u0027s object database when source and target repository reside on the same disk. If the source repository is owned by a different user, then those hardlinked files may be rewritten at any point in time by the untrusted user. Cloning local repositories will cause Git to either copy or hardlink files of the source repository into the target repository. This significantly speeds up such local clones compared to doing a \"proper\" clone and saves both disk space and compute time. When cloning a repository located on the same disk that is owned by a different user than the current user we also end up creating such hardlinks. These files will continue to be owned and controlled by the potentially-untrusted user and can be rewritten by them at will in the future. The problem has been patched in versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 7.1:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Enterprise Storage 7.1:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP5:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP5:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP5:git-core-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP5:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-arch-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-arch-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-cvs-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-cvs-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-daemon-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-daemon-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-email-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-email-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-gui-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-gui-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-svn-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-svn-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-web-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-web-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:gitk-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:gitk-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:perl-Git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-arch-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-cvs-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-daemon-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-email-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-gui-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-svn-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-web-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:gitk-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-arch-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-cvs-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-daemon-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-email-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-gui-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-svn-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-web-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:gitk-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Manager Proxy 4.3:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Manager Server 4.3:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Manager Server 4.3:git-core-2.35.3-150300.10.39.1.s390x",
"SUSE Manager Server 4.3:git-core-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-arch-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-arch-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-arch-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-arch-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-core-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-core-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-core-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-core-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-credential-gnome-keyring-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-credential-gnome-keyring-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-credential-gnome-keyring-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-credential-gnome-keyring-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-credential-libsecret-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-credential-libsecret-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-credential-libsecret-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-credential-libsecret-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-cvs-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-cvs-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-cvs-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-cvs-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-daemon-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-daemon-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-daemon-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-daemon-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-doc-2.35.3-150300.10.39.1.noarch",
"openSUSE Leap 15.5:git-email-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-email-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-email-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-email-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-gui-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-gui-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-gui-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-gui-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-p4-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-p4-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-p4-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-p4-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-svn-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-svn-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-svn-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-svn-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-web-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-web-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-web-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-web-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:gitk-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:gitk-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:gitk-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:gitk-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:perl-Git-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:perl-Git-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:perl-Git-2.35.3-150300.10.39.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-32020",
"url": "https://www.suse.com/security/cve/CVE-2024-32020"
},
{
"category": "external",
"summary": "SUSE Bug 1224171 for CVE-2024-32020",
"url": "https://bugzilla.suse.com/1224171"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 7.1:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Enterprise Storage 7.1:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP5:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP5:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP5:git-core-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP5:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-arch-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-arch-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-cvs-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-cvs-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-daemon-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-daemon-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-email-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-email-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-gui-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-gui-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-svn-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-svn-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-web-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-web-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:gitk-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:gitk-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:perl-Git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-arch-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-cvs-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-daemon-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-email-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-gui-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-svn-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-web-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:gitk-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-arch-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-cvs-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-daemon-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-email-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-gui-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-svn-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-web-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:gitk-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Manager Proxy 4.3:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Manager Server 4.3:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Manager Server 4.3:git-core-2.35.3-150300.10.39.1.s390x",
"SUSE Manager Server 4.3:git-core-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-arch-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-arch-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-arch-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-arch-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-core-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-core-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-core-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-core-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-credential-gnome-keyring-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-credential-gnome-keyring-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-credential-gnome-keyring-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-credential-gnome-keyring-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-credential-libsecret-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-credential-libsecret-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-credential-libsecret-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-credential-libsecret-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-cvs-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-cvs-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-cvs-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-cvs-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-daemon-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-daemon-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-daemon-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-daemon-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-doc-2.35.3-150300.10.39.1.noarch",
"openSUSE Leap 15.5:git-email-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-email-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-email-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-email-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-gui-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-gui-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-gui-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-gui-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-p4-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-p4-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-p4-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-p4-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-svn-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-svn-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-svn-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-svn-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-web-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-web-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-web-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-web-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:gitk-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:gitk-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:gitk-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:gitk-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:perl-Git-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:perl-Git-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:perl-Git-2.35.3-150300.10.39.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.9,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 7.1:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Enterprise Storage 7.1:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP5:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP5:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP5:git-core-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP5:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-arch-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-arch-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-cvs-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-cvs-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-daemon-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-daemon-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-email-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-email-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-gui-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-gui-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-svn-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-svn-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-web-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-web-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:gitk-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:gitk-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:perl-Git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-arch-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-cvs-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-daemon-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-email-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-gui-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-svn-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-web-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:gitk-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-arch-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-cvs-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-daemon-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-email-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-gui-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-svn-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-web-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:gitk-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Manager Proxy 4.3:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Manager Server 4.3:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Manager Server 4.3:git-core-2.35.3-150300.10.39.1.s390x",
"SUSE Manager Server 4.3:git-core-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-arch-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-arch-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-arch-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-arch-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-core-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-core-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-core-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-core-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-credential-gnome-keyring-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-credential-gnome-keyring-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-credential-gnome-keyring-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-credential-gnome-keyring-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-credential-libsecret-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-credential-libsecret-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-credential-libsecret-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-credential-libsecret-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-cvs-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-cvs-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-cvs-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-cvs-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-daemon-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-daemon-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-daemon-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-daemon-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-doc-2.35.3-150300.10.39.1.noarch",
"openSUSE Leap 15.5:git-email-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-email-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-email-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-email-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-gui-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-gui-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-gui-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-gui-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-p4-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-p4-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-p4-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-p4-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-svn-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-svn-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-svn-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-svn-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-web-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-web-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-web-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-web-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:gitk-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:gitk-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:gitk-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:gitk-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:perl-Git-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:perl-Git-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:perl-Git-2.35.3-150300.10.39.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-05-28T20:11:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-32020"
},
{
"cve": "CVE-2024-32021",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-32021"
}
],
"notes": [
{
"category": "general",
"text": "Git is a revision control system. Prior to versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4, when cloning a local source repository that contains symlinks via the filesystem, Git may create hardlinks to arbitrary user-readable files on the same filesystem as the target repository in the `objects/` directory. Cloning a local repository over the filesystem may creating hardlinks to arbitrary user-owned files on the same filesystem in the target Git repository\u0027s `objects/` directory. When cloning a repository over the filesystem (without explicitly specifying the `file://` protocol or `--no-local`), the optimizations for local cloning\nwill be used, which include attempting to hard link the object files instead of copying them. While the code includes checks against symbolic links in the source repository, which were added during the fix for CVE-2022-39253, these checks can still be raced because the hard link operation ultimately follows symlinks. If the object on the filesystem appears as a file during the check, and then a symlink during the operation, this will allow the adversary to bypass the check and create hardlinks in the destination objects directory to arbitrary, user-readable files. The problem has been patched in versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 7.1:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Enterprise Storage 7.1:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP5:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP5:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP5:git-core-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP5:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-arch-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-arch-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-cvs-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-cvs-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-daemon-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-daemon-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-email-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-email-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-gui-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-gui-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-svn-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-svn-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-web-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-web-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:gitk-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:gitk-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:perl-Git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-arch-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-cvs-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-daemon-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-email-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-gui-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-svn-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-web-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:gitk-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-arch-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-cvs-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-daemon-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-email-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-gui-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-svn-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-web-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:gitk-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Manager Proxy 4.3:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Manager Server 4.3:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Manager Server 4.3:git-core-2.35.3-150300.10.39.1.s390x",
"SUSE Manager Server 4.3:git-core-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-arch-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-arch-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-arch-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-arch-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-core-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-core-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-core-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-core-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-credential-gnome-keyring-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-credential-gnome-keyring-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-credential-gnome-keyring-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-credential-gnome-keyring-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-credential-libsecret-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-credential-libsecret-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-credential-libsecret-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-credential-libsecret-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-cvs-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-cvs-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-cvs-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-cvs-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-daemon-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-daemon-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-daemon-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-daemon-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-doc-2.35.3-150300.10.39.1.noarch",
"openSUSE Leap 15.5:git-email-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-email-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-email-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-email-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-gui-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-gui-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-gui-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-gui-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-p4-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-p4-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-p4-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-p4-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-svn-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-svn-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-svn-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-svn-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-web-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-web-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-web-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-web-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:gitk-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:gitk-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:gitk-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:gitk-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:perl-Git-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:perl-Git-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:perl-Git-2.35.3-150300.10.39.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-32021",
"url": "https://www.suse.com/security/cve/CVE-2024-32021"
},
{
"category": "external",
"summary": "SUSE Bug 1224172 for CVE-2024-32021",
"url": "https://bugzilla.suse.com/1224172"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 7.1:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Enterprise Storage 7.1:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP5:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP5:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP5:git-core-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP5:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-arch-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-arch-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-cvs-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-cvs-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-daemon-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-daemon-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-email-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-email-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-gui-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-gui-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-svn-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-svn-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-web-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-web-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:gitk-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:gitk-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:perl-Git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-arch-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-cvs-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-daemon-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-email-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-gui-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-svn-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-web-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:gitk-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-arch-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-cvs-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-daemon-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-email-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-gui-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-svn-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-web-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:gitk-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Manager Proxy 4.3:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Manager Server 4.3:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Manager Server 4.3:git-core-2.35.3-150300.10.39.1.s390x",
"SUSE Manager Server 4.3:git-core-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-arch-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-arch-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-arch-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-arch-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-core-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-core-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-core-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-core-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-credential-gnome-keyring-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-credential-gnome-keyring-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-credential-gnome-keyring-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-credential-gnome-keyring-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-credential-libsecret-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-credential-libsecret-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-credential-libsecret-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-credential-libsecret-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-cvs-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-cvs-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-cvs-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-cvs-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-daemon-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-daemon-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-daemon-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-daemon-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-doc-2.35.3-150300.10.39.1.noarch",
"openSUSE Leap 15.5:git-email-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-email-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-email-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-email-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-gui-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-gui-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-gui-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-gui-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-p4-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-p4-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-p4-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-p4-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-svn-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-svn-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-svn-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-svn-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-web-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-web-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-web-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-web-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:gitk-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:gitk-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:gitk-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:gitk-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:perl-Git-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:perl-Git-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:perl-Git-2.35.3-150300.10.39.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.9,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 7.1:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Enterprise Storage 7.1:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP5:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP5:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP5:git-core-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP5:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-arch-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-arch-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-cvs-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-cvs-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-daemon-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-daemon-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-email-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-email-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-gui-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-gui-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-svn-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-svn-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-web-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-web-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:gitk-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:gitk-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:perl-Git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-arch-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-cvs-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-daemon-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-email-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-gui-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-svn-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-web-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:gitk-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-arch-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-cvs-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-daemon-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-email-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-gui-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-svn-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-web-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:gitk-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Manager Proxy 4.3:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Manager Server 4.3:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Manager Server 4.3:git-core-2.35.3-150300.10.39.1.s390x",
"SUSE Manager Server 4.3:git-core-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-arch-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-arch-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-arch-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-arch-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-core-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-core-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-core-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-core-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-credential-gnome-keyring-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-credential-gnome-keyring-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-credential-gnome-keyring-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-credential-gnome-keyring-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-credential-libsecret-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-credential-libsecret-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-credential-libsecret-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-credential-libsecret-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-cvs-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-cvs-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-cvs-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-cvs-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-daemon-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-daemon-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-daemon-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-daemon-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-doc-2.35.3-150300.10.39.1.noarch",
"openSUSE Leap 15.5:git-email-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-email-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-email-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-email-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-gui-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-gui-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-gui-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-gui-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-p4-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-p4-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-p4-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-p4-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-svn-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-svn-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-svn-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-svn-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-web-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-web-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-web-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-web-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:gitk-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:gitk-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:gitk-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:gitk-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:perl-Git-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:perl-Git-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:perl-Git-2.35.3-150300.10.39.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-05-28T20:11:34Z",
"details": "moderate"
}
],
"title": "CVE-2024-32021"
},
{
"cve": "CVE-2024-32465",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-32465"
}
],
"notes": [
{
"category": "general",
"text": "Git is a revision control system. The Git project recommends to avoid working in untrusted repositories, and instead to clone it first with `git clone --no-local` to obtain a clean copy. Git has specific protections to make that a safe operation even with an untrusted source repository, but vulnerabilities allow those protections to be bypassed. In the context of cloning local repositories owned by other users, this vulnerability has been covered in CVE-2024-32004. But there are circumstances where the fixes for CVE-2024-32004 are not enough: For example, when obtaining a `.zip` file containing a full copy of a Git repository, it should not be trusted by default to be safe, as e.g. hooks could be configured to run within the context of that repository. The problem has been patched in versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4. As a workaround, avoid using Git in repositories that have been obtained via archives from untrusted sources.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 7.1:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Enterprise Storage 7.1:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP5:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP5:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP5:git-core-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP5:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-arch-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-arch-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-cvs-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-cvs-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-daemon-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-daemon-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-email-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-email-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-gui-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-gui-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-svn-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-svn-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-web-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-web-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:gitk-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:gitk-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:perl-Git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-arch-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-cvs-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-daemon-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-email-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-gui-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-svn-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-web-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:gitk-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-arch-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-cvs-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-daemon-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-email-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-gui-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-svn-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-web-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:gitk-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Manager Proxy 4.3:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Manager Server 4.3:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Manager Server 4.3:git-core-2.35.3-150300.10.39.1.s390x",
"SUSE Manager Server 4.3:git-core-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-arch-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-arch-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-arch-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-arch-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-core-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-core-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-core-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-core-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-credential-gnome-keyring-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-credential-gnome-keyring-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-credential-gnome-keyring-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-credential-gnome-keyring-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-credential-libsecret-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-credential-libsecret-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-credential-libsecret-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-credential-libsecret-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-cvs-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-cvs-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-cvs-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-cvs-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-daemon-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-daemon-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-daemon-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-daemon-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-doc-2.35.3-150300.10.39.1.noarch",
"openSUSE Leap 15.5:git-email-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-email-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-email-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-email-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-gui-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-gui-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-gui-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-gui-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-p4-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-p4-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-p4-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-p4-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-svn-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-svn-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-svn-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-svn-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-web-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-web-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-web-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-web-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:gitk-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:gitk-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:gitk-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:gitk-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:perl-Git-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:perl-Git-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:perl-Git-2.35.3-150300.10.39.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-32465",
"url": "https://www.suse.com/security/cve/CVE-2024-32465"
},
{
"category": "external",
"summary": "SUSE Bug 1224170 for CVE-2024-32465",
"url": "https://bugzilla.suse.com/1224170"
},
{
"category": "external",
"summary": "SUSE Bug 1224173 for CVE-2024-32465",
"url": "https://bugzilla.suse.com/1224173"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 7.1:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Enterprise Storage 7.1:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP5:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP5:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP5:git-core-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP5:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-arch-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-arch-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-cvs-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-cvs-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-daemon-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-daemon-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-email-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-email-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-gui-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-gui-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-svn-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-svn-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-web-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-web-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:gitk-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:gitk-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:perl-Git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-arch-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-cvs-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-daemon-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-email-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-gui-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-svn-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-web-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:gitk-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-arch-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-cvs-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-daemon-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-email-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-gui-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-svn-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-web-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:gitk-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Manager Proxy 4.3:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Manager Server 4.3:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Manager Server 4.3:git-core-2.35.3-150300.10.39.1.s390x",
"SUSE Manager Server 4.3:git-core-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-arch-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-arch-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-arch-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-arch-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-core-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-core-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-core-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-core-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-credential-gnome-keyring-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-credential-gnome-keyring-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-credential-gnome-keyring-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-credential-gnome-keyring-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-credential-libsecret-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-credential-libsecret-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-credential-libsecret-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-credential-libsecret-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-cvs-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-cvs-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-cvs-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-cvs-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-daemon-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-daemon-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-daemon-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-daemon-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-doc-2.35.3-150300.10.39.1.noarch",
"openSUSE Leap 15.5:git-email-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-email-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-email-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-email-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-gui-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-gui-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-gui-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-gui-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-p4-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-p4-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-p4-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-p4-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-svn-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-svn-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-svn-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-svn-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-web-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-web-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-web-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-web-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:gitk-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:gitk-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:gitk-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:gitk-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:perl-Git-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:perl-Git-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:perl-Git-2.35.3-150300.10.39.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 7.1:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Enterprise Storage 7.1:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Enterprise Storage 7.1:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Enterprise Storage 7.1:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP5:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP5:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP5:git-core-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP5:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-arch-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-arch-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-cvs-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-cvs-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-daemon-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-daemon-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-email-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-email-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-gui-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-gui-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-svn-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-svn-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-web-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-web-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:gitk-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:gitk-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:perl-Git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP5:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-arch-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-cvs-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-daemon-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-email-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-gui-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-svn-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-web-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:gitk-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-arch-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-arch-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-cvs-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-cvs-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-daemon-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-daemon-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-doc-2.35.3-150300.10.39.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-email-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-email-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-gui-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-gui-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-svn-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-svn-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-web-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-web-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:gitk-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:gitk-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:perl-Git-2.35.3-150300.10.39.1.x86_64",
"SUSE Manager Proxy 4.3:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Manager Server 4.3:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Manager Server 4.3:git-core-2.35.3-150300.10.39.1.s390x",
"SUSE Manager Server 4.3:git-core-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-arch-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-arch-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-arch-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-arch-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-core-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-core-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-core-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-core-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-credential-gnome-keyring-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-credential-gnome-keyring-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-credential-gnome-keyring-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-credential-gnome-keyring-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-credential-libsecret-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-credential-libsecret-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-credential-libsecret-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-credential-libsecret-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-cvs-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-cvs-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-cvs-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-cvs-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-daemon-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-daemon-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-daemon-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-daemon-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-doc-2.35.3-150300.10.39.1.noarch",
"openSUSE Leap 15.5:git-email-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-email-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-email-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-email-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-gui-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-gui-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-gui-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-gui-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-p4-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-p4-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-p4-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-p4-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-svn-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-svn-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-svn-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-svn-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:git-web-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:git-web-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:git-web-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:git-web-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:gitk-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:gitk-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:gitk-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:gitk-2.35.3-150300.10.39.1.x86_64",
"openSUSE Leap 15.5:perl-Git-2.35.3-150300.10.39.1.aarch64",
"openSUSE Leap 15.5:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"openSUSE Leap 15.5:perl-Git-2.35.3-150300.10.39.1.s390x",
"openSUSE Leap 15.5:perl-Git-2.35.3-150300.10.39.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-05-28T20:11:34Z",
"details": "important"
}
],
"title": "CVE-2024-32465"
}
]
}
SUSE-SU-2024:1807-2
Vulnerability from csaf_suse - Published: 2024-05-28 20:11 - Updated: 2024-05-28 20:11Summary
Security update for git
Notes
Title of the patch
Security update for git
Description of the patch
This update for git fixes the following issues:
- CVE-2024-32002: Fixed recursive clones on case-insensitive filesystems that support symbolic links are susceptible to case confusion (bsc#1224168).
- CVE-2024-32004: Fixed arbitrary code execution during local clones (bsc#1224170).
- CVE-2024-32020: Fixed file overwriting vulnerability during local clones (bsc#1224171).
- CVE-2024-32021: Fixed git may create hardlinks to arbitrary user-readable files (bsc#1224172).
- CVE-2024-32465: Fixed arbitrary code execution during clone operations (bsc#1224173).
Patchnames
SUSE-2024-1807,SUSE-SLE-Micro-5.5-2024-1807
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for git",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for git fixes the following issues:\n\n- CVE-2024-32002: Fixed recursive clones on case-insensitive filesystems that support symbolic links are susceptible to case confusion (bsc#1224168).\n- CVE-2024-32004: Fixed arbitrary code execution during local clones (bsc#1224170).\n- CVE-2024-32020: Fixed file overwriting vulnerability during local clones (bsc#1224171).\n- CVE-2024-32021: Fixed git may create hardlinks to arbitrary user-readable files (bsc#1224172).\n- CVE-2024-32465: Fixed arbitrary code execution during clone operations (bsc#1224173).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2024-1807,SUSE-SLE-Micro-5.5-2024-1807",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2024_1807-2.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2024:1807-2",
"url": "https://www.suse.com/support/update/announcement/2024/suse-su-20241807-2/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2024:1807-2",
"url": "https://lists.suse.com/pipermail/sle-updates/2024-July/035964.html"
},
{
"category": "self",
"summary": "SUSE Bug 1224168",
"url": "https://bugzilla.suse.com/1224168"
},
{
"category": "self",
"summary": "SUSE Bug 1224170",
"url": "https://bugzilla.suse.com/1224170"
},
{
"category": "self",
"summary": "SUSE Bug 1224171",
"url": "https://bugzilla.suse.com/1224171"
},
{
"category": "self",
"summary": "SUSE Bug 1224172",
"url": "https://bugzilla.suse.com/1224172"
},
{
"category": "self",
"summary": "SUSE Bug 1224173",
"url": "https://bugzilla.suse.com/1224173"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-32002 page",
"url": "https://www.suse.com/security/cve/CVE-2024-32002/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-32004 page",
"url": "https://www.suse.com/security/cve/CVE-2024-32004/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-32020 page",
"url": "https://www.suse.com/security/cve/CVE-2024-32020/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-32021 page",
"url": "https://www.suse.com/security/cve/CVE-2024-32021/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-32465 page",
"url": "https://www.suse.com/security/cve/CVE-2024-32465/"
}
],
"title": "Security update for git",
"tracking": {
"current_release_date": "2024-05-28T20:11:48Z",
"generator": {
"date": "2024-05-28T20:11:48Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2024:1807-2",
"initial_release_date": "2024-05-28T20:11:48Z",
"revision_history": [
{
"date": "2024-05-28T20:11:48Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "git-2.35.3-150300.10.39.1.aarch64",
"product": {
"name": "git-2.35.3-150300.10.39.1.aarch64",
"product_id": "git-2.35.3-150300.10.39.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-arch-2.35.3-150300.10.39.1.aarch64",
"product": {
"name": "git-arch-2.35.3-150300.10.39.1.aarch64",
"product_id": "git-arch-2.35.3-150300.10.39.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-core-2.35.3-150300.10.39.1.aarch64",
"product": {
"name": "git-core-2.35.3-150300.10.39.1.aarch64",
"product_id": "git-core-2.35.3-150300.10.39.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-credential-gnome-keyring-2.35.3-150300.10.39.1.aarch64",
"product": {
"name": "git-credential-gnome-keyring-2.35.3-150300.10.39.1.aarch64",
"product_id": "git-credential-gnome-keyring-2.35.3-150300.10.39.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-2.35.3-150300.10.39.1.aarch64",
"product": {
"name": "git-credential-libsecret-2.35.3-150300.10.39.1.aarch64",
"product_id": "git-credential-libsecret-2.35.3-150300.10.39.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-cvs-2.35.3-150300.10.39.1.aarch64",
"product": {
"name": "git-cvs-2.35.3-150300.10.39.1.aarch64",
"product_id": "git-cvs-2.35.3-150300.10.39.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-daemon-2.35.3-150300.10.39.1.aarch64",
"product": {
"name": "git-daemon-2.35.3-150300.10.39.1.aarch64",
"product_id": "git-daemon-2.35.3-150300.10.39.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-email-2.35.3-150300.10.39.1.aarch64",
"product": {
"name": "git-email-2.35.3-150300.10.39.1.aarch64",
"product_id": "git-email-2.35.3-150300.10.39.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-gui-2.35.3-150300.10.39.1.aarch64",
"product": {
"name": "git-gui-2.35.3-150300.10.39.1.aarch64",
"product_id": "git-gui-2.35.3-150300.10.39.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-p4-2.35.3-150300.10.39.1.aarch64",
"product": {
"name": "git-p4-2.35.3-150300.10.39.1.aarch64",
"product_id": "git-p4-2.35.3-150300.10.39.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-svn-2.35.3-150300.10.39.1.aarch64",
"product": {
"name": "git-svn-2.35.3-150300.10.39.1.aarch64",
"product_id": "git-svn-2.35.3-150300.10.39.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-web-2.35.3-150300.10.39.1.aarch64",
"product": {
"name": "git-web-2.35.3-150300.10.39.1.aarch64",
"product_id": "git-web-2.35.3-150300.10.39.1.aarch64"
}
},
{
"category": "product_version",
"name": "gitk-2.35.3-150300.10.39.1.aarch64",
"product": {
"name": "gitk-2.35.3-150300.10.39.1.aarch64",
"product_id": "gitk-2.35.3-150300.10.39.1.aarch64"
}
},
{
"category": "product_version",
"name": "perl-Git-2.35.3-150300.10.39.1.aarch64",
"product": {
"name": "perl-Git-2.35.3-150300.10.39.1.aarch64",
"product_id": "perl-Git-2.35.3-150300.10.39.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "git-2.35.3-150300.10.39.1.i586",
"product": {
"name": "git-2.35.3-150300.10.39.1.i586",
"product_id": "git-2.35.3-150300.10.39.1.i586"
}
},
{
"category": "product_version",
"name": "git-arch-2.35.3-150300.10.39.1.i586",
"product": {
"name": "git-arch-2.35.3-150300.10.39.1.i586",
"product_id": "git-arch-2.35.3-150300.10.39.1.i586"
}
},
{
"category": "product_version",
"name": "git-core-2.35.3-150300.10.39.1.i586",
"product": {
"name": "git-core-2.35.3-150300.10.39.1.i586",
"product_id": "git-core-2.35.3-150300.10.39.1.i586"
}
},
{
"category": "product_version",
"name": "git-credential-gnome-keyring-2.35.3-150300.10.39.1.i586",
"product": {
"name": "git-credential-gnome-keyring-2.35.3-150300.10.39.1.i586",
"product_id": "git-credential-gnome-keyring-2.35.3-150300.10.39.1.i586"
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-2.35.3-150300.10.39.1.i586",
"product": {
"name": "git-credential-libsecret-2.35.3-150300.10.39.1.i586",
"product_id": "git-credential-libsecret-2.35.3-150300.10.39.1.i586"
}
},
{
"category": "product_version",
"name": "git-cvs-2.35.3-150300.10.39.1.i586",
"product": {
"name": "git-cvs-2.35.3-150300.10.39.1.i586",
"product_id": "git-cvs-2.35.3-150300.10.39.1.i586"
}
},
{
"category": "product_version",
"name": "git-daemon-2.35.3-150300.10.39.1.i586",
"product": {
"name": "git-daemon-2.35.3-150300.10.39.1.i586",
"product_id": "git-daemon-2.35.3-150300.10.39.1.i586"
}
},
{
"category": "product_version",
"name": "git-email-2.35.3-150300.10.39.1.i586",
"product": {
"name": "git-email-2.35.3-150300.10.39.1.i586",
"product_id": "git-email-2.35.3-150300.10.39.1.i586"
}
},
{
"category": "product_version",
"name": "git-gui-2.35.3-150300.10.39.1.i586",
"product": {
"name": "git-gui-2.35.3-150300.10.39.1.i586",
"product_id": "git-gui-2.35.3-150300.10.39.1.i586"
}
},
{
"category": "product_version",
"name": "git-p4-2.35.3-150300.10.39.1.i586",
"product": {
"name": "git-p4-2.35.3-150300.10.39.1.i586",
"product_id": "git-p4-2.35.3-150300.10.39.1.i586"
}
},
{
"category": "product_version",
"name": "git-svn-2.35.3-150300.10.39.1.i586",
"product": {
"name": "git-svn-2.35.3-150300.10.39.1.i586",
"product_id": "git-svn-2.35.3-150300.10.39.1.i586"
}
},
{
"category": "product_version",
"name": "git-web-2.35.3-150300.10.39.1.i586",
"product": {
"name": "git-web-2.35.3-150300.10.39.1.i586",
"product_id": "git-web-2.35.3-150300.10.39.1.i586"
}
},
{
"category": "product_version",
"name": "gitk-2.35.3-150300.10.39.1.i586",
"product": {
"name": "gitk-2.35.3-150300.10.39.1.i586",
"product_id": "gitk-2.35.3-150300.10.39.1.i586"
}
},
{
"category": "product_version",
"name": "perl-Git-2.35.3-150300.10.39.1.i586",
"product": {
"name": "perl-Git-2.35.3-150300.10.39.1.i586",
"product_id": "perl-Git-2.35.3-150300.10.39.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "git-doc-2.35.3-150300.10.39.1.noarch",
"product": {
"name": "git-doc-2.35.3-150300.10.39.1.noarch",
"product_id": "git-doc-2.35.3-150300.10.39.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "git-2.35.3-150300.10.39.1.ppc64le",
"product": {
"name": "git-2.35.3-150300.10.39.1.ppc64le",
"product_id": "git-2.35.3-150300.10.39.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-arch-2.35.3-150300.10.39.1.ppc64le",
"product": {
"name": "git-arch-2.35.3-150300.10.39.1.ppc64le",
"product_id": "git-arch-2.35.3-150300.10.39.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-core-2.35.3-150300.10.39.1.ppc64le",
"product": {
"name": "git-core-2.35.3-150300.10.39.1.ppc64le",
"product_id": "git-core-2.35.3-150300.10.39.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-credential-gnome-keyring-2.35.3-150300.10.39.1.ppc64le",
"product": {
"name": "git-credential-gnome-keyring-2.35.3-150300.10.39.1.ppc64le",
"product_id": "git-credential-gnome-keyring-2.35.3-150300.10.39.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-2.35.3-150300.10.39.1.ppc64le",
"product": {
"name": "git-credential-libsecret-2.35.3-150300.10.39.1.ppc64le",
"product_id": "git-credential-libsecret-2.35.3-150300.10.39.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-cvs-2.35.3-150300.10.39.1.ppc64le",
"product": {
"name": "git-cvs-2.35.3-150300.10.39.1.ppc64le",
"product_id": "git-cvs-2.35.3-150300.10.39.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-daemon-2.35.3-150300.10.39.1.ppc64le",
"product": {
"name": "git-daemon-2.35.3-150300.10.39.1.ppc64le",
"product_id": "git-daemon-2.35.3-150300.10.39.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-email-2.35.3-150300.10.39.1.ppc64le",
"product": {
"name": "git-email-2.35.3-150300.10.39.1.ppc64le",
"product_id": "git-email-2.35.3-150300.10.39.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-gui-2.35.3-150300.10.39.1.ppc64le",
"product": {
"name": "git-gui-2.35.3-150300.10.39.1.ppc64le",
"product_id": "git-gui-2.35.3-150300.10.39.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-p4-2.35.3-150300.10.39.1.ppc64le",
"product": {
"name": "git-p4-2.35.3-150300.10.39.1.ppc64le",
"product_id": "git-p4-2.35.3-150300.10.39.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-svn-2.35.3-150300.10.39.1.ppc64le",
"product": {
"name": "git-svn-2.35.3-150300.10.39.1.ppc64le",
"product_id": "git-svn-2.35.3-150300.10.39.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-web-2.35.3-150300.10.39.1.ppc64le",
"product": {
"name": "git-web-2.35.3-150300.10.39.1.ppc64le",
"product_id": "git-web-2.35.3-150300.10.39.1.ppc64le"
}
},
{
"category": "product_version",
"name": "gitk-2.35.3-150300.10.39.1.ppc64le",
"product": {
"name": "gitk-2.35.3-150300.10.39.1.ppc64le",
"product_id": "gitk-2.35.3-150300.10.39.1.ppc64le"
}
},
{
"category": "product_version",
"name": "perl-Git-2.35.3-150300.10.39.1.ppc64le",
"product": {
"name": "perl-Git-2.35.3-150300.10.39.1.ppc64le",
"product_id": "perl-Git-2.35.3-150300.10.39.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "git-2.35.3-150300.10.39.1.s390x",
"product": {
"name": "git-2.35.3-150300.10.39.1.s390x",
"product_id": "git-2.35.3-150300.10.39.1.s390x"
}
},
{
"category": "product_version",
"name": "git-arch-2.35.3-150300.10.39.1.s390x",
"product": {
"name": "git-arch-2.35.3-150300.10.39.1.s390x",
"product_id": "git-arch-2.35.3-150300.10.39.1.s390x"
}
},
{
"category": "product_version",
"name": "git-core-2.35.3-150300.10.39.1.s390x",
"product": {
"name": "git-core-2.35.3-150300.10.39.1.s390x",
"product_id": "git-core-2.35.3-150300.10.39.1.s390x"
}
},
{
"category": "product_version",
"name": "git-credential-gnome-keyring-2.35.3-150300.10.39.1.s390x",
"product": {
"name": "git-credential-gnome-keyring-2.35.3-150300.10.39.1.s390x",
"product_id": "git-credential-gnome-keyring-2.35.3-150300.10.39.1.s390x"
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-2.35.3-150300.10.39.1.s390x",
"product": {
"name": "git-credential-libsecret-2.35.3-150300.10.39.1.s390x",
"product_id": "git-credential-libsecret-2.35.3-150300.10.39.1.s390x"
}
},
{
"category": "product_version",
"name": "git-cvs-2.35.3-150300.10.39.1.s390x",
"product": {
"name": "git-cvs-2.35.3-150300.10.39.1.s390x",
"product_id": "git-cvs-2.35.3-150300.10.39.1.s390x"
}
},
{
"category": "product_version",
"name": "git-daemon-2.35.3-150300.10.39.1.s390x",
"product": {
"name": "git-daemon-2.35.3-150300.10.39.1.s390x",
"product_id": "git-daemon-2.35.3-150300.10.39.1.s390x"
}
},
{
"category": "product_version",
"name": "git-email-2.35.3-150300.10.39.1.s390x",
"product": {
"name": "git-email-2.35.3-150300.10.39.1.s390x",
"product_id": "git-email-2.35.3-150300.10.39.1.s390x"
}
},
{
"category": "product_version",
"name": "git-gui-2.35.3-150300.10.39.1.s390x",
"product": {
"name": "git-gui-2.35.3-150300.10.39.1.s390x",
"product_id": "git-gui-2.35.3-150300.10.39.1.s390x"
}
},
{
"category": "product_version",
"name": "git-p4-2.35.3-150300.10.39.1.s390x",
"product": {
"name": "git-p4-2.35.3-150300.10.39.1.s390x",
"product_id": "git-p4-2.35.3-150300.10.39.1.s390x"
}
},
{
"category": "product_version",
"name": "git-svn-2.35.3-150300.10.39.1.s390x",
"product": {
"name": "git-svn-2.35.3-150300.10.39.1.s390x",
"product_id": "git-svn-2.35.3-150300.10.39.1.s390x"
}
},
{
"category": "product_version",
"name": "git-web-2.35.3-150300.10.39.1.s390x",
"product": {
"name": "git-web-2.35.3-150300.10.39.1.s390x",
"product_id": "git-web-2.35.3-150300.10.39.1.s390x"
}
},
{
"category": "product_version",
"name": "gitk-2.35.3-150300.10.39.1.s390x",
"product": {
"name": "gitk-2.35.3-150300.10.39.1.s390x",
"product_id": "gitk-2.35.3-150300.10.39.1.s390x"
}
},
{
"category": "product_version",
"name": "perl-Git-2.35.3-150300.10.39.1.s390x",
"product": {
"name": "perl-Git-2.35.3-150300.10.39.1.s390x",
"product_id": "perl-Git-2.35.3-150300.10.39.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "git-2.35.3-150300.10.39.1.x86_64",
"product": {
"name": "git-2.35.3-150300.10.39.1.x86_64",
"product_id": "git-2.35.3-150300.10.39.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-arch-2.35.3-150300.10.39.1.x86_64",
"product": {
"name": "git-arch-2.35.3-150300.10.39.1.x86_64",
"product_id": "git-arch-2.35.3-150300.10.39.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-core-2.35.3-150300.10.39.1.x86_64",
"product": {
"name": "git-core-2.35.3-150300.10.39.1.x86_64",
"product_id": "git-core-2.35.3-150300.10.39.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-credential-gnome-keyring-2.35.3-150300.10.39.1.x86_64",
"product": {
"name": "git-credential-gnome-keyring-2.35.3-150300.10.39.1.x86_64",
"product_id": "git-credential-gnome-keyring-2.35.3-150300.10.39.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-2.35.3-150300.10.39.1.x86_64",
"product": {
"name": "git-credential-libsecret-2.35.3-150300.10.39.1.x86_64",
"product_id": "git-credential-libsecret-2.35.3-150300.10.39.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-cvs-2.35.3-150300.10.39.1.x86_64",
"product": {
"name": "git-cvs-2.35.3-150300.10.39.1.x86_64",
"product_id": "git-cvs-2.35.3-150300.10.39.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-daemon-2.35.3-150300.10.39.1.x86_64",
"product": {
"name": "git-daemon-2.35.3-150300.10.39.1.x86_64",
"product_id": "git-daemon-2.35.3-150300.10.39.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-email-2.35.3-150300.10.39.1.x86_64",
"product": {
"name": "git-email-2.35.3-150300.10.39.1.x86_64",
"product_id": "git-email-2.35.3-150300.10.39.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-gui-2.35.3-150300.10.39.1.x86_64",
"product": {
"name": "git-gui-2.35.3-150300.10.39.1.x86_64",
"product_id": "git-gui-2.35.3-150300.10.39.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-p4-2.35.3-150300.10.39.1.x86_64",
"product": {
"name": "git-p4-2.35.3-150300.10.39.1.x86_64",
"product_id": "git-p4-2.35.3-150300.10.39.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-svn-2.35.3-150300.10.39.1.x86_64",
"product": {
"name": "git-svn-2.35.3-150300.10.39.1.x86_64",
"product_id": "git-svn-2.35.3-150300.10.39.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-web-2.35.3-150300.10.39.1.x86_64",
"product": {
"name": "git-web-2.35.3-150300.10.39.1.x86_64",
"product_id": "git-web-2.35.3-150300.10.39.1.x86_64"
}
},
{
"category": "product_version",
"name": "gitk-2.35.3-150300.10.39.1.x86_64",
"product": {
"name": "gitk-2.35.3-150300.10.39.1.x86_64",
"product_id": "gitk-2.35.3-150300.10.39.1.x86_64"
}
},
{
"category": "product_version",
"name": "perl-Git-2.35.3-150300.10.39.1.x86_64",
"product": {
"name": "perl-Git-2.35.3-150300.10.39.1.x86_64",
"product_id": "perl-Git-2.35.3-150300.10.39.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Micro 5.5",
"product": {
"name": "SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-micro:5.5"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.35.3-150300.10.39.1.aarch64 as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.aarch64"
},
"product_reference": "git-2.35.3-150300.10.39.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.35.3-150300.10.39.1.ppc64le as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.ppc64le"
},
"product_reference": "git-2.35.3-150300.10.39.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.35.3-150300.10.39.1.s390x as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.s390x"
},
"product_reference": "git-2.35.3-150300.10.39.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.35.3-150300.10.39.1.x86_64 as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "git-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.35.3-150300.10.39.1.aarch64 as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.aarch64"
},
"product_reference": "git-core-2.35.3-150300.10.39.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.35.3-150300.10.39.1.ppc64le as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.ppc64le"
},
"product_reference": "git-core-2.35.3-150300.10.39.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.35.3-150300.10.39.1.s390x as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.s390x"
},
"product_reference": "git-core-2.35.3-150300.10.39.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.35.3-150300.10.39.1.x86_64 as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "git-core-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.35.3-150300.10.39.1.aarch64 as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.aarch64"
},
"product_reference": "perl-Git-2.35.3-150300.10.39.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.35.3-150300.10.39.1.ppc64le as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.ppc64le"
},
"product_reference": "perl-Git-2.35.3-150300.10.39.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.35.3-150300.10.39.1.s390x as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.s390x"
},
"product_reference": "perl-Git-2.35.3-150300.10.39.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.35.3-150300.10.39.1.x86_64 as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.x86_64"
},
"product_reference": "perl-Git-2.35.3-150300.10.39.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-32002",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-32002"
}
],
"notes": [
{
"category": "general",
"text": "Git is a revision control system. Prior to versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4, repositories with submodules can be crafted in a way that exploits a bug in Git whereby it can be fooled into writing files not into the submodule\u0027s worktree but into a `.git/` directory. This allows writing a hook that will be executed while the clone operation is still running, giving the user no opportunity to inspect the code that is being executed. The problem has been patched in versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4. If symbolic link support is disabled in Git (e.g. via `git config --global core.symlinks false`), the described attack won\u0027t work. As always, it is best to avoid cloning repositories from untrusted sources.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-32002",
"url": "https://www.suse.com/security/cve/CVE-2024-32002"
},
{
"category": "external",
"summary": "SUSE Bug 1224168 for CVE-2024-32002",
"url": "https://bugzilla.suse.com/1224168"
},
{
"category": "external",
"summary": "SUSE Bug 1224170 for CVE-2024-32002",
"url": "https://bugzilla.suse.com/1224170"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-05-28T20:11:48Z",
"details": "important"
}
],
"title": "CVE-2024-32002"
},
{
"cve": "CVE-2024-32004",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-32004"
}
],
"notes": [
{
"category": "general",
"text": "Git is a revision control system. Prior to versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4, an attacker can prepare a local repository in such a way that, when cloned, will execute arbitrary code during the operation. The problem has been patched in versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4. As a workaround, avoid cloning repositories from untrusted sources.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-32004",
"url": "https://www.suse.com/security/cve/CVE-2024-32004"
},
{
"category": "external",
"summary": "SUSE Bug 1224170 for CVE-2024-32004",
"url": "https://bugzilla.suse.com/1224170"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-05-28T20:11:48Z",
"details": "important"
}
],
"title": "CVE-2024-32004"
},
{
"cve": "CVE-2024-32020",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-32020"
}
],
"notes": [
{
"category": "general",
"text": "Git is a revision control system. Prior to versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4, local clones may end up hardlinking files into the target repository\u0027s object database when source and target repository reside on the same disk. If the source repository is owned by a different user, then those hardlinked files may be rewritten at any point in time by the untrusted user. Cloning local repositories will cause Git to either copy or hardlink files of the source repository into the target repository. This significantly speeds up such local clones compared to doing a \"proper\" clone and saves both disk space and compute time. When cloning a repository located on the same disk that is owned by a different user than the current user we also end up creating such hardlinks. These files will continue to be owned and controlled by the potentially-untrusted user and can be rewritten by them at will in the future. The problem has been patched in versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-32020",
"url": "https://www.suse.com/security/cve/CVE-2024-32020"
},
{
"category": "external",
"summary": "SUSE Bug 1224171 for CVE-2024-32020",
"url": "https://bugzilla.suse.com/1224171"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.9,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-05-28T20:11:48Z",
"details": "moderate"
}
],
"title": "CVE-2024-32020"
},
{
"cve": "CVE-2024-32021",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-32021"
}
],
"notes": [
{
"category": "general",
"text": "Git is a revision control system. Prior to versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4, when cloning a local source repository that contains symlinks via the filesystem, Git may create hardlinks to arbitrary user-readable files on the same filesystem as the target repository in the `objects/` directory. Cloning a local repository over the filesystem may creating hardlinks to arbitrary user-owned files on the same filesystem in the target Git repository\u0027s `objects/` directory. When cloning a repository over the filesystem (without explicitly specifying the `file://` protocol or `--no-local`), the optimizations for local cloning\nwill be used, which include attempting to hard link the object files instead of copying them. While the code includes checks against symbolic links in the source repository, which were added during the fix for CVE-2022-39253, these checks can still be raced because the hard link operation ultimately follows symlinks. If the object on the filesystem appears as a file during the check, and then a symlink during the operation, this will allow the adversary to bypass the check and create hardlinks in the destination objects directory to arbitrary, user-readable files. The problem has been patched in versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-32021",
"url": "https://www.suse.com/security/cve/CVE-2024-32021"
},
{
"category": "external",
"summary": "SUSE Bug 1224172 for CVE-2024-32021",
"url": "https://bugzilla.suse.com/1224172"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.9,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-05-28T20:11:48Z",
"details": "moderate"
}
],
"title": "CVE-2024-32021"
},
{
"cve": "CVE-2024-32465",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-32465"
}
],
"notes": [
{
"category": "general",
"text": "Git is a revision control system. The Git project recommends to avoid working in untrusted repositories, and instead to clone it first with `git clone --no-local` to obtain a clean copy. Git has specific protections to make that a safe operation even with an untrusted source repository, but vulnerabilities allow those protections to be bypassed. In the context of cloning local repositories owned by other users, this vulnerability has been covered in CVE-2024-32004. But there are circumstances where the fixes for CVE-2024-32004 are not enough: For example, when obtaining a `.zip` file containing a full copy of a Git repository, it should not be trusted by default to be safe, as e.g. hooks could be configured to run within the context of that repository. The problem has been patched in versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4. As a workaround, avoid using Git in repositories that have been obtained via archives from untrusted sources.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-32465",
"url": "https://www.suse.com/security/cve/CVE-2024-32465"
},
{
"category": "external",
"summary": "SUSE Bug 1224170 for CVE-2024-32465",
"url": "https://bugzilla.suse.com/1224170"
},
{
"category": "external",
"summary": "SUSE Bug 1224173 for CVE-2024-32465",
"url": "https://bugzilla.suse.com/1224173"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Micro 5.5:git-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Micro 5.5:git-core-2.35.3-150300.10.39.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.s390x",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.35.3-150300.10.39.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-05-28T20:11:48Z",
"details": "important"
}
],
"title": "CVE-2024-32465"
}
]
}
SUSE-SU-2024:2277-1
Vulnerability from csaf_suse - Published: 2024-07-02 15:03 - Updated: 2024-07-02 15:03Summary
Security update for git
Notes
Title of the patch
Security update for git
Description of the patch
This update for git fixes the following issues:
- CVE-2024-32002: Fix recursive clones on case-insensitive filesystems that support symbolic links are susceptible to case confusion. (bsc#1224168)
- CVE-2024-32004: Fixed arbitrary code execution during local clones. (bsc#1224170)
- CVE-2024-32020: Fix file overwriting vulnerability during local clones. (bsc#1224171)
- CVE-2024-32021: Git may create hardlinks to arbitrary user-readable files. (bsc#1224172)
- CVE-2024-32465: Fixed arbitrary code execution during clone operations. (bsc#1224173)
Patchnames
SUSE-2024-2277,SUSE-SLE-Module-Basesystem-15-SP6-2024-2277,SUSE-SLE-Module-Development-Tools-15-SP6-2024-2277,openSUSE-SLE-15.6-2024-2277
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for git",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for git fixes the following issues:\n\n- CVE-2024-32002: Fix recursive clones on case-insensitive filesystems that support symbolic links are susceptible to case confusion. (bsc#1224168)\n- CVE-2024-32004: Fixed arbitrary code execution during local clones. (bsc#1224170)\n- CVE-2024-32020: Fix file overwriting vulnerability during local clones. (bsc#1224171)\n- CVE-2024-32021: Git may create hardlinks to arbitrary user-readable files. (bsc#1224172)\n- CVE-2024-32465: Fixed arbitrary code execution during clone operations. (bsc#1224173)\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2024-2277,SUSE-SLE-Module-Basesystem-15-SP6-2024-2277,SUSE-SLE-Module-Development-Tools-15-SP6-2024-2277,openSUSE-SLE-15.6-2024-2277",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2024_2277-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2024:2277-1",
"url": "https://www.suse.com/support/update/announcement/2024/suse-su-20242277-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2024:2277-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2024-July/018849.html"
},
{
"category": "self",
"summary": "SUSE Bug 1224168",
"url": "https://bugzilla.suse.com/1224168"
},
{
"category": "self",
"summary": "SUSE Bug 1224170",
"url": "https://bugzilla.suse.com/1224170"
},
{
"category": "self",
"summary": "SUSE Bug 1224171",
"url": "https://bugzilla.suse.com/1224171"
},
{
"category": "self",
"summary": "SUSE Bug 1224172",
"url": "https://bugzilla.suse.com/1224172"
},
{
"category": "self",
"summary": "SUSE Bug 1224173",
"url": "https://bugzilla.suse.com/1224173"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-32002 page",
"url": "https://www.suse.com/security/cve/CVE-2024-32002/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-32004 page",
"url": "https://www.suse.com/security/cve/CVE-2024-32004/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-32020 page",
"url": "https://www.suse.com/security/cve/CVE-2024-32020/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-32021 page",
"url": "https://www.suse.com/security/cve/CVE-2024-32021/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-32465 page",
"url": "https://www.suse.com/security/cve/CVE-2024-32465/"
}
],
"title": "Security update for git",
"tracking": {
"current_release_date": "2024-07-02T15:03:50Z",
"generator": {
"date": "2024-07-02T15:03:50Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2024:2277-1",
"initial_release_date": "2024-07-02T15:03:50Z",
"revision_history": [
{
"date": "2024-07-02T15:03:50Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "git-2.43.0-150600.3.3.1.aarch64",
"product": {
"name": "git-2.43.0-150600.3.3.1.aarch64",
"product_id": "git-2.43.0-150600.3.3.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-arch-2.43.0-150600.3.3.1.aarch64",
"product": {
"name": "git-arch-2.43.0-150600.3.3.1.aarch64",
"product_id": "git-arch-2.43.0-150600.3.3.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-core-2.43.0-150600.3.3.1.aarch64",
"product": {
"name": "git-core-2.43.0-150600.3.3.1.aarch64",
"product_id": "git-core-2.43.0-150600.3.3.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-2.43.0-150600.3.3.1.aarch64",
"product": {
"name": "git-credential-libsecret-2.43.0-150600.3.3.1.aarch64",
"product_id": "git-credential-libsecret-2.43.0-150600.3.3.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-cvs-2.43.0-150600.3.3.1.aarch64",
"product": {
"name": "git-cvs-2.43.0-150600.3.3.1.aarch64",
"product_id": "git-cvs-2.43.0-150600.3.3.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-daemon-2.43.0-150600.3.3.1.aarch64",
"product": {
"name": "git-daemon-2.43.0-150600.3.3.1.aarch64",
"product_id": "git-daemon-2.43.0-150600.3.3.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-email-2.43.0-150600.3.3.1.aarch64",
"product": {
"name": "git-email-2.43.0-150600.3.3.1.aarch64",
"product_id": "git-email-2.43.0-150600.3.3.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-gui-2.43.0-150600.3.3.1.aarch64",
"product": {
"name": "git-gui-2.43.0-150600.3.3.1.aarch64",
"product_id": "git-gui-2.43.0-150600.3.3.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-p4-2.43.0-150600.3.3.1.aarch64",
"product": {
"name": "git-p4-2.43.0-150600.3.3.1.aarch64",
"product_id": "git-p4-2.43.0-150600.3.3.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-svn-2.43.0-150600.3.3.1.aarch64",
"product": {
"name": "git-svn-2.43.0-150600.3.3.1.aarch64",
"product_id": "git-svn-2.43.0-150600.3.3.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-web-2.43.0-150600.3.3.1.aarch64",
"product": {
"name": "git-web-2.43.0-150600.3.3.1.aarch64",
"product_id": "git-web-2.43.0-150600.3.3.1.aarch64"
}
},
{
"category": "product_version",
"name": "gitk-2.43.0-150600.3.3.1.aarch64",
"product": {
"name": "gitk-2.43.0-150600.3.3.1.aarch64",
"product_id": "gitk-2.43.0-150600.3.3.1.aarch64"
}
},
{
"category": "product_version",
"name": "perl-Git-2.43.0-150600.3.3.1.aarch64",
"product": {
"name": "perl-Git-2.43.0-150600.3.3.1.aarch64",
"product_id": "perl-Git-2.43.0-150600.3.3.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "git-2.43.0-150600.3.3.1.i586",
"product": {
"name": "git-2.43.0-150600.3.3.1.i586",
"product_id": "git-2.43.0-150600.3.3.1.i586"
}
},
{
"category": "product_version",
"name": "git-arch-2.43.0-150600.3.3.1.i586",
"product": {
"name": "git-arch-2.43.0-150600.3.3.1.i586",
"product_id": "git-arch-2.43.0-150600.3.3.1.i586"
}
},
{
"category": "product_version",
"name": "git-core-2.43.0-150600.3.3.1.i586",
"product": {
"name": "git-core-2.43.0-150600.3.3.1.i586",
"product_id": "git-core-2.43.0-150600.3.3.1.i586"
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-2.43.0-150600.3.3.1.i586",
"product": {
"name": "git-credential-libsecret-2.43.0-150600.3.3.1.i586",
"product_id": "git-credential-libsecret-2.43.0-150600.3.3.1.i586"
}
},
{
"category": "product_version",
"name": "git-cvs-2.43.0-150600.3.3.1.i586",
"product": {
"name": "git-cvs-2.43.0-150600.3.3.1.i586",
"product_id": "git-cvs-2.43.0-150600.3.3.1.i586"
}
},
{
"category": "product_version",
"name": "git-daemon-2.43.0-150600.3.3.1.i586",
"product": {
"name": "git-daemon-2.43.0-150600.3.3.1.i586",
"product_id": "git-daemon-2.43.0-150600.3.3.1.i586"
}
},
{
"category": "product_version",
"name": "git-email-2.43.0-150600.3.3.1.i586",
"product": {
"name": "git-email-2.43.0-150600.3.3.1.i586",
"product_id": "git-email-2.43.0-150600.3.3.1.i586"
}
},
{
"category": "product_version",
"name": "git-gui-2.43.0-150600.3.3.1.i586",
"product": {
"name": "git-gui-2.43.0-150600.3.3.1.i586",
"product_id": "git-gui-2.43.0-150600.3.3.1.i586"
}
},
{
"category": "product_version",
"name": "git-p4-2.43.0-150600.3.3.1.i586",
"product": {
"name": "git-p4-2.43.0-150600.3.3.1.i586",
"product_id": "git-p4-2.43.0-150600.3.3.1.i586"
}
},
{
"category": "product_version",
"name": "git-svn-2.43.0-150600.3.3.1.i586",
"product": {
"name": "git-svn-2.43.0-150600.3.3.1.i586",
"product_id": "git-svn-2.43.0-150600.3.3.1.i586"
}
},
{
"category": "product_version",
"name": "git-web-2.43.0-150600.3.3.1.i586",
"product": {
"name": "git-web-2.43.0-150600.3.3.1.i586",
"product_id": "git-web-2.43.0-150600.3.3.1.i586"
}
},
{
"category": "product_version",
"name": "gitk-2.43.0-150600.3.3.1.i586",
"product": {
"name": "gitk-2.43.0-150600.3.3.1.i586",
"product_id": "gitk-2.43.0-150600.3.3.1.i586"
}
},
{
"category": "product_version",
"name": "perl-Git-2.43.0-150600.3.3.1.i586",
"product": {
"name": "perl-Git-2.43.0-150600.3.3.1.i586",
"product_id": "perl-Git-2.43.0-150600.3.3.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "git-doc-2.43.0-150600.3.3.1.noarch",
"product": {
"name": "git-doc-2.43.0-150600.3.3.1.noarch",
"product_id": "git-doc-2.43.0-150600.3.3.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "git-2.43.0-150600.3.3.1.ppc64le",
"product": {
"name": "git-2.43.0-150600.3.3.1.ppc64le",
"product_id": "git-2.43.0-150600.3.3.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-arch-2.43.0-150600.3.3.1.ppc64le",
"product": {
"name": "git-arch-2.43.0-150600.3.3.1.ppc64le",
"product_id": "git-arch-2.43.0-150600.3.3.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-core-2.43.0-150600.3.3.1.ppc64le",
"product": {
"name": "git-core-2.43.0-150600.3.3.1.ppc64le",
"product_id": "git-core-2.43.0-150600.3.3.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-2.43.0-150600.3.3.1.ppc64le",
"product": {
"name": "git-credential-libsecret-2.43.0-150600.3.3.1.ppc64le",
"product_id": "git-credential-libsecret-2.43.0-150600.3.3.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-cvs-2.43.0-150600.3.3.1.ppc64le",
"product": {
"name": "git-cvs-2.43.0-150600.3.3.1.ppc64le",
"product_id": "git-cvs-2.43.0-150600.3.3.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-daemon-2.43.0-150600.3.3.1.ppc64le",
"product": {
"name": "git-daemon-2.43.0-150600.3.3.1.ppc64le",
"product_id": "git-daemon-2.43.0-150600.3.3.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-email-2.43.0-150600.3.3.1.ppc64le",
"product": {
"name": "git-email-2.43.0-150600.3.3.1.ppc64le",
"product_id": "git-email-2.43.0-150600.3.3.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-gui-2.43.0-150600.3.3.1.ppc64le",
"product": {
"name": "git-gui-2.43.0-150600.3.3.1.ppc64le",
"product_id": "git-gui-2.43.0-150600.3.3.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-p4-2.43.0-150600.3.3.1.ppc64le",
"product": {
"name": "git-p4-2.43.0-150600.3.3.1.ppc64le",
"product_id": "git-p4-2.43.0-150600.3.3.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-svn-2.43.0-150600.3.3.1.ppc64le",
"product": {
"name": "git-svn-2.43.0-150600.3.3.1.ppc64le",
"product_id": "git-svn-2.43.0-150600.3.3.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-web-2.43.0-150600.3.3.1.ppc64le",
"product": {
"name": "git-web-2.43.0-150600.3.3.1.ppc64le",
"product_id": "git-web-2.43.0-150600.3.3.1.ppc64le"
}
},
{
"category": "product_version",
"name": "gitk-2.43.0-150600.3.3.1.ppc64le",
"product": {
"name": "gitk-2.43.0-150600.3.3.1.ppc64le",
"product_id": "gitk-2.43.0-150600.3.3.1.ppc64le"
}
},
{
"category": "product_version",
"name": "perl-Git-2.43.0-150600.3.3.1.ppc64le",
"product": {
"name": "perl-Git-2.43.0-150600.3.3.1.ppc64le",
"product_id": "perl-Git-2.43.0-150600.3.3.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "git-2.43.0-150600.3.3.1.s390x",
"product": {
"name": "git-2.43.0-150600.3.3.1.s390x",
"product_id": "git-2.43.0-150600.3.3.1.s390x"
}
},
{
"category": "product_version",
"name": "git-arch-2.43.0-150600.3.3.1.s390x",
"product": {
"name": "git-arch-2.43.0-150600.3.3.1.s390x",
"product_id": "git-arch-2.43.0-150600.3.3.1.s390x"
}
},
{
"category": "product_version",
"name": "git-core-2.43.0-150600.3.3.1.s390x",
"product": {
"name": "git-core-2.43.0-150600.3.3.1.s390x",
"product_id": "git-core-2.43.0-150600.3.3.1.s390x"
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-2.43.0-150600.3.3.1.s390x",
"product": {
"name": "git-credential-libsecret-2.43.0-150600.3.3.1.s390x",
"product_id": "git-credential-libsecret-2.43.0-150600.3.3.1.s390x"
}
},
{
"category": "product_version",
"name": "git-cvs-2.43.0-150600.3.3.1.s390x",
"product": {
"name": "git-cvs-2.43.0-150600.3.3.1.s390x",
"product_id": "git-cvs-2.43.0-150600.3.3.1.s390x"
}
},
{
"category": "product_version",
"name": "git-daemon-2.43.0-150600.3.3.1.s390x",
"product": {
"name": "git-daemon-2.43.0-150600.3.3.1.s390x",
"product_id": "git-daemon-2.43.0-150600.3.3.1.s390x"
}
},
{
"category": "product_version",
"name": "git-email-2.43.0-150600.3.3.1.s390x",
"product": {
"name": "git-email-2.43.0-150600.3.3.1.s390x",
"product_id": "git-email-2.43.0-150600.3.3.1.s390x"
}
},
{
"category": "product_version",
"name": "git-gui-2.43.0-150600.3.3.1.s390x",
"product": {
"name": "git-gui-2.43.0-150600.3.3.1.s390x",
"product_id": "git-gui-2.43.0-150600.3.3.1.s390x"
}
},
{
"category": "product_version",
"name": "git-p4-2.43.0-150600.3.3.1.s390x",
"product": {
"name": "git-p4-2.43.0-150600.3.3.1.s390x",
"product_id": "git-p4-2.43.0-150600.3.3.1.s390x"
}
},
{
"category": "product_version",
"name": "git-svn-2.43.0-150600.3.3.1.s390x",
"product": {
"name": "git-svn-2.43.0-150600.3.3.1.s390x",
"product_id": "git-svn-2.43.0-150600.3.3.1.s390x"
}
},
{
"category": "product_version",
"name": "git-web-2.43.0-150600.3.3.1.s390x",
"product": {
"name": "git-web-2.43.0-150600.3.3.1.s390x",
"product_id": "git-web-2.43.0-150600.3.3.1.s390x"
}
},
{
"category": "product_version",
"name": "gitk-2.43.0-150600.3.3.1.s390x",
"product": {
"name": "gitk-2.43.0-150600.3.3.1.s390x",
"product_id": "gitk-2.43.0-150600.3.3.1.s390x"
}
},
{
"category": "product_version",
"name": "perl-Git-2.43.0-150600.3.3.1.s390x",
"product": {
"name": "perl-Git-2.43.0-150600.3.3.1.s390x",
"product_id": "perl-Git-2.43.0-150600.3.3.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "git-2.43.0-150600.3.3.1.x86_64",
"product": {
"name": "git-2.43.0-150600.3.3.1.x86_64",
"product_id": "git-2.43.0-150600.3.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-arch-2.43.0-150600.3.3.1.x86_64",
"product": {
"name": "git-arch-2.43.0-150600.3.3.1.x86_64",
"product_id": "git-arch-2.43.0-150600.3.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-core-2.43.0-150600.3.3.1.x86_64",
"product": {
"name": "git-core-2.43.0-150600.3.3.1.x86_64",
"product_id": "git-core-2.43.0-150600.3.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-2.43.0-150600.3.3.1.x86_64",
"product": {
"name": "git-credential-libsecret-2.43.0-150600.3.3.1.x86_64",
"product_id": "git-credential-libsecret-2.43.0-150600.3.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-cvs-2.43.0-150600.3.3.1.x86_64",
"product": {
"name": "git-cvs-2.43.0-150600.3.3.1.x86_64",
"product_id": "git-cvs-2.43.0-150600.3.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-daemon-2.43.0-150600.3.3.1.x86_64",
"product": {
"name": "git-daemon-2.43.0-150600.3.3.1.x86_64",
"product_id": "git-daemon-2.43.0-150600.3.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-email-2.43.0-150600.3.3.1.x86_64",
"product": {
"name": "git-email-2.43.0-150600.3.3.1.x86_64",
"product_id": "git-email-2.43.0-150600.3.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-gui-2.43.0-150600.3.3.1.x86_64",
"product": {
"name": "git-gui-2.43.0-150600.3.3.1.x86_64",
"product_id": "git-gui-2.43.0-150600.3.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-p4-2.43.0-150600.3.3.1.x86_64",
"product": {
"name": "git-p4-2.43.0-150600.3.3.1.x86_64",
"product_id": "git-p4-2.43.0-150600.3.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-svn-2.43.0-150600.3.3.1.x86_64",
"product": {
"name": "git-svn-2.43.0-150600.3.3.1.x86_64",
"product_id": "git-svn-2.43.0-150600.3.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-web-2.43.0-150600.3.3.1.x86_64",
"product": {
"name": "git-web-2.43.0-150600.3.3.1.x86_64",
"product_id": "git-web-2.43.0-150600.3.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "gitk-2.43.0-150600.3.3.1.x86_64",
"product": {
"name": "gitk-2.43.0-150600.3.3.1.x86_64",
"product_id": "gitk-2.43.0-150600.3.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "perl-Git-2.43.0-150600.3.3.1.x86_64",
"product": {
"name": "perl-Git-2.43.0-150600.3.3.1.x86_64",
"product_id": "perl-Git-2.43.0-150600.3.3.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product": {
"name": "SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-basesystem:15:sp6"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product": {
"name": "SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-development-tools:15:sp6"
}
}
},
{
"category": "product_name",
"name": "openSUSE Leap 15.6",
"product": {
"name": "openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap:15.6"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.43.0-150600.3.3.1.aarch64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.43.0-150600.3.3.1.aarch64"
},
"product_reference": "git-core-2.43.0-150600.3.3.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.43.0-150600.3.3.1.ppc64le as component of SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.43.0-150600.3.3.1.ppc64le"
},
"product_reference": "git-core-2.43.0-150600.3.3.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.43.0-150600.3.3.1.s390x as component of SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.43.0-150600.3.3.1.s390x"
},
"product_reference": "git-core-2.43.0-150600.3.3.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.43.0-150600.3.3.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.43.0-150600.3.3.1.x86_64"
},
"product_reference": "git-core-2.43.0-150600.3.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.43.0-150600.3.3.1.aarch64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.43.0-150600.3.3.1.aarch64"
},
"product_reference": "git-2.43.0-150600.3.3.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.43.0-150600.3.3.1.ppc64le as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.43.0-150600.3.3.1.ppc64le"
},
"product_reference": "git-2.43.0-150600.3.3.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.43.0-150600.3.3.1.s390x as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.43.0-150600.3.3.1.s390x"
},
"product_reference": "git-2.43.0-150600.3.3.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.43.0-150600.3.3.1.x86_64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.43.0-150600.3.3.1.x86_64"
},
"product_reference": "git-2.43.0-150600.3.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-arch-2.43.0-150600.3.3.1.aarch64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.43.0-150600.3.3.1.aarch64"
},
"product_reference": "git-arch-2.43.0-150600.3.3.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-arch-2.43.0-150600.3.3.1.ppc64le as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.43.0-150600.3.3.1.ppc64le"
},
"product_reference": "git-arch-2.43.0-150600.3.3.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-arch-2.43.0-150600.3.3.1.s390x as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.43.0-150600.3.3.1.s390x"
},
"product_reference": "git-arch-2.43.0-150600.3.3.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-arch-2.43.0-150600.3.3.1.x86_64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.43.0-150600.3.3.1.x86_64"
},
"product_reference": "git-arch-2.43.0-150600.3.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.43.0-150600.3.3.1.aarch64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.43.0-150600.3.3.1.aarch64"
},
"product_reference": "git-cvs-2.43.0-150600.3.3.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.43.0-150600.3.3.1.ppc64le as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.43.0-150600.3.3.1.ppc64le"
},
"product_reference": "git-cvs-2.43.0-150600.3.3.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.43.0-150600.3.3.1.s390x as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.43.0-150600.3.3.1.s390x"
},
"product_reference": "git-cvs-2.43.0-150600.3.3.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.43.0-150600.3.3.1.x86_64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.43.0-150600.3.3.1.x86_64"
},
"product_reference": "git-cvs-2.43.0-150600.3.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.43.0-150600.3.3.1.aarch64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.43.0-150600.3.3.1.aarch64"
},
"product_reference": "git-daemon-2.43.0-150600.3.3.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.43.0-150600.3.3.1.ppc64le as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.43.0-150600.3.3.1.ppc64le"
},
"product_reference": "git-daemon-2.43.0-150600.3.3.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.43.0-150600.3.3.1.s390x as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.43.0-150600.3.3.1.s390x"
},
"product_reference": "git-daemon-2.43.0-150600.3.3.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.43.0-150600.3.3.1.x86_64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.43.0-150600.3.3.1.x86_64"
},
"product_reference": "git-daemon-2.43.0-150600.3.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-doc-2.43.0-150600.3.3.1.noarch as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:git-doc-2.43.0-150600.3.3.1.noarch"
},
"product_reference": "git-doc-2.43.0-150600.3.3.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.43.0-150600.3.3.1.aarch64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.43.0-150600.3.3.1.aarch64"
},
"product_reference": "git-email-2.43.0-150600.3.3.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.43.0-150600.3.3.1.ppc64le as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.43.0-150600.3.3.1.ppc64le"
},
"product_reference": "git-email-2.43.0-150600.3.3.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.43.0-150600.3.3.1.s390x as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.43.0-150600.3.3.1.s390x"
},
"product_reference": "git-email-2.43.0-150600.3.3.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.43.0-150600.3.3.1.x86_64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.43.0-150600.3.3.1.x86_64"
},
"product_reference": "git-email-2.43.0-150600.3.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.43.0-150600.3.3.1.aarch64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.43.0-150600.3.3.1.aarch64"
},
"product_reference": "git-gui-2.43.0-150600.3.3.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.43.0-150600.3.3.1.ppc64le as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.43.0-150600.3.3.1.ppc64le"
},
"product_reference": "git-gui-2.43.0-150600.3.3.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.43.0-150600.3.3.1.s390x as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.43.0-150600.3.3.1.s390x"
},
"product_reference": "git-gui-2.43.0-150600.3.3.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.43.0-150600.3.3.1.x86_64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.43.0-150600.3.3.1.x86_64"
},
"product_reference": "git-gui-2.43.0-150600.3.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.43.0-150600.3.3.1.aarch64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.43.0-150600.3.3.1.aarch64"
},
"product_reference": "git-svn-2.43.0-150600.3.3.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.43.0-150600.3.3.1.ppc64le as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.43.0-150600.3.3.1.ppc64le"
},
"product_reference": "git-svn-2.43.0-150600.3.3.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.43.0-150600.3.3.1.s390x as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.43.0-150600.3.3.1.s390x"
},
"product_reference": "git-svn-2.43.0-150600.3.3.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.43.0-150600.3.3.1.x86_64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.43.0-150600.3.3.1.x86_64"
},
"product_reference": "git-svn-2.43.0-150600.3.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.43.0-150600.3.3.1.aarch64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.43.0-150600.3.3.1.aarch64"
},
"product_reference": "git-web-2.43.0-150600.3.3.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.43.0-150600.3.3.1.ppc64le as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.43.0-150600.3.3.1.ppc64le"
},
"product_reference": "git-web-2.43.0-150600.3.3.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.43.0-150600.3.3.1.s390x as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.43.0-150600.3.3.1.s390x"
},
"product_reference": "git-web-2.43.0-150600.3.3.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.43.0-150600.3.3.1.x86_64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.43.0-150600.3.3.1.x86_64"
},
"product_reference": "git-web-2.43.0-150600.3.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.43.0-150600.3.3.1.aarch64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.43.0-150600.3.3.1.aarch64"
},
"product_reference": "gitk-2.43.0-150600.3.3.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.43.0-150600.3.3.1.ppc64le as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.43.0-150600.3.3.1.ppc64le"
},
"product_reference": "gitk-2.43.0-150600.3.3.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.43.0-150600.3.3.1.s390x as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.43.0-150600.3.3.1.s390x"
},
"product_reference": "gitk-2.43.0-150600.3.3.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.43.0-150600.3.3.1.x86_64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.43.0-150600.3.3.1.x86_64"
},
"product_reference": "gitk-2.43.0-150600.3.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.43.0-150600.3.3.1.aarch64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.43.0-150600.3.3.1.aarch64"
},
"product_reference": "perl-Git-2.43.0-150600.3.3.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.43.0-150600.3.3.1.ppc64le as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.43.0-150600.3.3.1.ppc64le"
},
"product_reference": "perl-Git-2.43.0-150600.3.3.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.43.0-150600.3.3.1.s390x as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.43.0-150600.3.3.1.s390x"
},
"product_reference": "perl-Git-2.43.0-150600.3.3.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.43.0-150600.3.3.1.x86_64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.43.0-150600.3.3.1.x86_64"
},
"product_reference": "perl-Git-2.43.0-150600.3.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.43.0-150600.3.3.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:git-2.43.0-150600.3.3.1.aarch64"
},
"product_reference": "git-2.43.0-150600.3.3.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.43.0-150600.3.3.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:git-2.43.0-150600.3.3.1.ppc64le"
},
"product_reference": "git-2.43.0-150600.3.3.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.43.0-150600.3.3.1.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:git-2.43.0-150600.3.3.1.s390x"
},
"product_reference": "git-2.43.0-150600.3.3.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.43.0-150600.3.3.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:git-2.43.0-150600.3.3.1.x86_64"
},
"product_reference": "git-2.43.0-150600.3.3.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-arch-2.43.0-150600.3.3.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:git-arch-2.43.0-150600.3.3.1.aarch64"
},
"product_reference": "git-arch-2.43.0-150600.3.3.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-arch-2.43.0-150600.3.3.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:git-arch-2.43.0-150600.3.3.1.ppc64le"
},
"product_reference": "git-arch-2.43.0-150600.3.3.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-arch-2.43.0-150600.3.3.1.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:git-arch-2.43.0-150600.3.3.1.s390x"
},
"product_reference": "git-arch-2.43.0-150600.3.3.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-arch-2.43.0-150600.3.3.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:git-arch-2.43.0-150600.3.3.1.x86_64"
},
"product_reference": "git-arch-2.43.0-150600.3.3.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.43.0-150600.3.3.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:git-core-2.43.0-150600.3.3.1.aarch64"
},
"product_reference": "git-core-2.43.0-150600.3.3.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.43.0-150600.3.3.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:git-core-2.43.0-150600.3.3.1.ppc64le"
},
"product_reference": "git-core-2.43.0-150600.3.3.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.43.0-150600.3.3.1.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:git-core-2.43.0-150600.3.3.1.s390x"
},
"product_reference": "git-core-2.43.0-150600.3.3.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.43.0-150600.3.3.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:git-core-2.43.0-150600.3.3.1.x86_64"
},
"product_reference": "git-core-2.43.0-150600.3.3.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-2.43.0-150600.3.3.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:git-credential-libsecret-2.43.0-150600.3.3.1.aarch64"
},
"product_reference": "git-credential-libsecret-2.43.0-150600.3.3.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-2.43.0-150600.3.3.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:git-credential-libsecret-2.43.0-150600.3.3.1.ppc64le"
},
"product_reference": "git-credential-libsecret-2.43.0-150600.3.3.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-2.43.0-150600.3.3.1.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:git-credential-libsecret-2.43.0-150600.3.3.1.s390x"
},
"product_reference": "git-credential-libsecret-2.43.0-150600.3.3.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-2.43.0-150600.3.3.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:git-credential-libsecret-2.43.0-150600.3.3.1.x86_64"
},
"product_reference": "git-credential-libsecret-2.43.0-150600.3.3.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.43.0-150600.3.3.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:git-cvs-2.43.0-150600.3.3.1.aarch64"
},
"product_reference": "git-cvs-2.43.0-150600.3.3.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.43.0-150600.3.3.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:git-cvs-2.43.0-150600.3.3.1.ppc64le"
},
"product_reference": "git-cvs-2.43.0-150600.3.3.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.43.0-150600.3.3.1.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:git-cvs-2.43.0-150600.3.3.1.s390x"
},
"product_reference": "git-cvs-2.43.0-150600.3.3.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.43.0-150600.3.3.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:git-cvs-2.43.0-150600.3.3.1.x86_64"
},
"product_reference": "git-cvs-2.43.0-150600.3.3.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.43.0-150600.3.3.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:git-daemon-2.43.0-150600.3.3.1.aarch64"
},
"product_reference": "git-daemon-2.43.0-150600.3.3.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.43.0-150600.3.3.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:git-daemon-2.43.0-150600.3.3.1.ppc64le"
},
"product_reference": "git-daemon-2.43.0-150600.3.3.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.43.0-150600.3.3.1.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:git-daemon-2.43.0-150600.3.3.1.s390x"
},
"product_reference": "git-daemon-2.43.0-150600.3.3.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.43.0-150600.3.3.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:git-daemon-2.43.0-150600.3.3.1.x86_64"
},
"product_reference": "git-daemon-2.43.0-150600.3.3.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-doc-2.43.0-150600.3.3.1.noarch as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:git-doc-2.43.0-150600.3.3.1.noarch"
},
"product_reference": "git-doc-2.43.0-150600.3.3.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.43.0-150600.3.3.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:git-email-2.43.0-150600.3.3.1.aarch64"
},
"product_reference": "git-email-2.43.0-150600.3.3.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.43.0-150600.3.3.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:git-email-2.43.0-150600.3.3.1.ppc64le"
},
"product_reference": "git-email-2.43.0-150600.3.3.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.43.0-150600.3.3.1.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:git-email-2.43.0-150600.3.3.1.s390x"
},
"product_reference": "git-email-2.43.0-150600.3.3.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.43.0-150600.3.3.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:git-email-2.43.0-150600.3.3.1.x86_64"
},
"product_reference": "git-email-2.43.0-150600.3.3.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.43.0-150600.3.3.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:git-gui-2.43.0-150600.3.3.1.aarch64"
},
"product_reference": "git-gui-2.43.0-150600.3.3.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.43.0-150600.3.3.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:git-gui-2.43.0-150600.3.3.1.ppc64le"
},
"product_reference": "git-gui-2.43.0-150600.3.3.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.43.0-150600.3.3.1.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:git-gui-2.43.0-150600.3.3.1.s390x"
},
"product_reference": "git-gui-2.43.0-150600.3.3.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.43.0-150600.3.3.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:git-gui-2.43.0-150600.3.3.1.x86_64"
},
"product_reference": "git-gui-2.43.0-150600.3.3.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-p4-2.43.0-150600.3.3.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:git-p4-2.43.0-150600.3.3.1.aarch64"
},
"product_reference": "git-p4-2.43.0-150600.3.3.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-p4-2.43.0-150600.3.3.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:git-p4-2.43.0-150600.3.3.1.ppc64le"
},
"product_reference": "git-p4-2.43.0-150600.3.3.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-p4-2.43.0-150600.3.3.1.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:git-p4-2.43.0-150600.3.3.1.s390x"
},
"product_reference": "git-p4-2.43.0-150600.3.3.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-p4-2.43.0-150600.3.3.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:git-p4-2.43.0-150600.3.3.1.x86_64"
},
"product_reference": "git-p4-2.43.0-150600.3.3.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.43.0-150600.3.3.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:git-svn-2.43.0-150600.3.3.1.aarch64"
},
"product_reference": "git-svn-2.43.0-150600.3.3.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.43.0-150600.3.3.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:git-svn-2.43.0-150600.3.3.1.ppc64le"
},
"product_reference": "git-svn-2.43.0-150600.3.3.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.43.0-150600.3.3.1.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:git-svn-2.43.0-150600.3.3.1.s390x"
},
"product_reference": "git-svn-2.43.0-150600.3.3.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.43.0-150600.3.3.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:git-svn-2.43.0-150600.3.3.1.x86_64"
},
"product_reference": "git-svn-2.43.0-150600.3.3.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.43.0-150600.3.3.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:git-web-2.43.0-150600.3.3.1.aarch64"
},
"product_reference": "git-web-2.43.0-150600.3.3.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.43.0-150600.3.3.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:git-web-2.43.0-150600.3.3.1.ppc64le"
},
"product_reference": "git-web-2.43.0-150600.3.3.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.43.0-150600.3.3.1.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:git-web-2.43.0-150600.3.3.1.s390x"
},
"product_reference": "git-web-2.43.0-150600.3.3.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.43.0-150600.3.3.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:git-web-2.43.0-150600.3.3.1.x86_64"
},
"product_reference": "git-web-2.43.0-150600.3.3.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.43.0-150600.3.3.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:gitk-2.43.0-150600.3.3.1.aarch64"
},
"product_reference": "gitk-2.43.0-150600.3.3.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.43.0-150600.3.3.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:gitk-2.43.0-150600.3.3.1.ppc64le"
},
"product_reference": "gitk-2.43.0-150600.3.3.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.43.0-150600.3.3.1.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:gitk-2.43.0-150600.3.3.1.s390x"
},
"product_reference": "gitk-2.43.0-150600.3.3.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.43.0-150600.3.3.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:gitk-2.43.0-150600.3.3.1.x86_64"
},
"product_reference": "gitk-2.43.0-150600.3.3.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.43.0-150600.3.3.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:perl-Git-2.43.0-150600.3.3.1.aarch64"
},
"product_reference": "perl-Git-2.43.0-150600.3.3.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.43.0-150600.3.3.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:perl-Git-2.43.0-150600.3.3.1.ppc64le"
},
"product_reference": "perl-Git-2.43.0-150600.3.3.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.43.0-150600.3.3.1.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:perl-Git-2.43.0-150600.3.3.1.s390x"
},
"product_reference": "perl-Git-2.43.0-150600.3.3.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.43.0-150600.3.3.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:perl-Git-2.43.0-150600.3.3.1.x86_64"
},
"product_reference": "perl-Git-2.43.0-150600.3.3.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-32002",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-32002"
}
],
"notes": [
{
"category": "general",
"text": "Git is a revision control system. Prior to versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4, repositories with submodules can be crafted in a way that exploits a bug in Git whereby it can be fooled into writing files not into the submodule\u0027s worktree but into a `.git/` directory. This allows writing a hook that will be executed while the clone operation is still running, giving the user no opportunity to inspect the code that is being executed. The problem has been patched in versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4. If symbolic link support is disabled in Git (e.g. via `git config --global core.symlinks false`), the described attack won\u0027t work. As always, it is best to avoid cloning repositories from untrusted sources.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-doc-2.43.0-150600.3.3.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-arch-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-arch-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-arch-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-arch-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-core-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-core-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-core-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-core-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-credential-libsecret-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-credential-libsecret-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-credential-libsecret-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-credential-libsecret-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-cvs-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-cvs-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-cvs-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-cvs-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-daemon-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-daemon-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-daemon-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-daemon-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-doc-2.43.0-150600.3.3.1.noarch",
"openSUSE Leap 15.6:git-email-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-email-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-email-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-email-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-gui-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-gui-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-gui-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-gui-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-p4-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-p4-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-p4-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-p4-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-svn-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-svn-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-svn-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-svn-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-web-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-web-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-web-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-web-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:gitk-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:gitk-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:gitk-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:gitk-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:perl-Git-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:perl-Git-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:perl-Git-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:perl-Git-2.43.0-150600.3.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-32002",
"url": "https://www.suse.com/security/cve/CVE-2024-32002"
},
{
"category": "external",
"summary": "SUSE Bug 1224168 for CVE-2024-32002",
"url": "https://bugzilla.suse.com/1224168"
},
{
"category": "external",
"summary": "SUSE Bug 1224170 for CVE-2024-32002",
"url": "https://bugzilla.suse.com/1224170"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-doc-2.43.0-150600.3.3.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-arch-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-arch-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-arch-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-arch-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-core-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-core-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-core-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-core-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-credential-libsecret-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-credential-libsecret-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-credential-libsecret-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-credential-libsecret-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-cvs-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-cvs-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-cvs-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-cvs-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-daemon-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-daemon-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-daemon-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-daemon-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-doc-2.43.0-150600.3.3.1.noarch",
"openSUSE Leap 15.6:git-email-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-email-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-email-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-email-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-gui-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-gui-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-gui-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-gui-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-p4-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-p4-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-p4-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-p4-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-svn-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-svn-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-svn-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-svn-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-web-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-web-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-web-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-web-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:gitk-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:gitk-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:gitk-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:gitk-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:perl-Git-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:perl-Git-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:perl-Git-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:perl-Git-2.43.0-150600.3.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-doc-2.43.0-150600.3.3.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-arch-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-arch-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-arch-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-arch-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-core-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-core-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-core-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-core-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-credential-libsecret-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-credential-libsecret-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-credential-libsecret-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-credential-libsecret-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-cvs-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-cvs-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-cvs-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-cvs-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-daemon-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-daemon-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-daemon-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-daemon-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-doc-2.43.0-150600.3.3.1.noarch",
"openSUSE Leap 15.6:git-email-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-email-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-email-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-email-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-gui-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-gui-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-gui-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-gui-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-p4-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-p4-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-p4-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-p4-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-svn-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-svn-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-svn-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-svn-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-web-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-web-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-web-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-web-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:gitk-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:gitk-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:gitk-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:gitk-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:perl-Git-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:perl-Git-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:perl-Git-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:perl-Git-2.43.0-150600.3.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-02T15:03:50Z",
"details": "important"
}
],
"title": "CVE-2024-32002"
},
{
"cve": "CVE-2024-32004",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-32004"
}
],
"notes": [
{
"category": "general",
"text": "Git is a revision control system. Prior to versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4, an attacker can prepare a local repository in such a way that, when cloned, will execute arbitrary code during the operation. The problem has been patched in versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4. As a workaround, avoid cloning repositories from untrusted sources.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-doc-2.43.0-150600.3.3.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-arch-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-arch-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-arch-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-arch-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-core-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-core-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-core-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-core-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-credential-libsecret-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-credential-libsecret-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-credential-libsecret-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-credential-libsecret-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-cvs-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-cvs-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-cvs-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-cvs-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-daemon-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-daemon-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-daemon-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-daemon-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-doc-2.43.0-150600.3.3.1.noarch",
"openSUSE Leap 15.6:git-email-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-email-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-email-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-email-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-gui-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-gui-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-gui-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-gui-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-p4-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-p4-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-p4-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-p4-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-svn-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-svn-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-svn-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-svn-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-web-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-web-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-web-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-web-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:gitk-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:gitk-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:gitk-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:gitk-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:perl-Git-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:perl-Git-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:perl-Git-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:perl-Git-2.43.0-150600.3.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-32004",
"url": "https://www.suse.com/security/cve/CVE-2024-32004"
},
{
"category": "external",
"summary": "SUSE Bug 1224170 for CVE-2024-32004",
"url": "https://bugzilla.suse.com/1224170"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-doc-2.43.0-150600.3.3.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-arch-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-arch-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-arch-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-arch-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-core-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-core-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-core-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-core-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-credential-libsecret-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-credential-libsecret-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-credential-libsecret-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-credential-libsecret-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-cvs-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-cvs-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-cvs-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-cvs-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-daemon-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-daemon-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-daemon-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-daemon-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-doc-2.43.0-150600.3.3.1.noarch",
"openSUSE Leap 15.6:git-email-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-email-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-email-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-email-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-gui-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-gui-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-gui-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-gui-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-p4-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-p4-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-p4-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-p4-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-svn-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-svn-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-svn-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-svn-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-web-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-web-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-web-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-web-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:gitk-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:gitk-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:gitk-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:gitk-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:perl-Git-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:perl-Git-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:perl-Git-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:perl-Git-2.43.0-150600.3.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-doc-2.43.0-150600.3.3.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-arch-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-arch-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-arch-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-arch-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-core-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-core-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-core-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-core-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-credential-libsecret-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-credential-libsecret-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-credential-libsecret-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-credential-libsecret-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-cvs-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-cvs-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-cvs-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-cvs-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-daemon-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-daemon-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-daemon-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-daemon-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-doc-2.43.0-150600.3.3.1.noarch",
"openSUSE Leap 15.6:git-email-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-email-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-email-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-email-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-gui-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-gui-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-gui-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-gui-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-p4-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-p4-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-p4-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-p4-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-svn-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-svn-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-svn-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-svn-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-web-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-web-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-web-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-web-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:gitk-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:gitk-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:gitk-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:gitk-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:perl-Git-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:perl-Git-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:perl-Git-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:perl-Git-2.43.0-150600.3.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-02T15:03:50Z",
"details": "important"
}
],
"title": "CVE-2024-32004"
},
{
"cve": "CVE-2024-32020",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-32020"
}
],
"notes": [
{
"category": "general",
"text": "Git is a revision control system. Prior to versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4, local clones may end up hardlinking files into the target repository\u0027s object database when source and target repository reside on the same disk. If the source repository is owned by a different user, then those hardlinked files may be rewritten at any point in time by the untrusted user. Cloning local repositories will cause Git to either copy or hardlink files of the source repository into the target repository. This significantly speeds up such local clones compared to doing a \"proper\" clone and saves both disk space and compute time. When cloning a repository located on the same disk that is owned by a different user than the current user we also end up creating such hardlinks. These files will continue to be owned and controlled by the potentially-untrusted user and can be rewritten by them at will in the future. The problem has been patched in versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-doc-2.43.0-150600.3.3.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-arch-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-arch-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-arch-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-arch-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-core-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-core-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-core-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-core-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-credential-libsecret-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-credential-libsecret-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-credential-libsecret-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-credential-libsecret-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-cvs-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-cvs-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-cvs-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-cvs-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-daemon-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-daemon-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-daemon-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-daemon-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-doc-2.43.0-150600.3.3.1.noarch",
"openSUSE Leap 15.6:git-email-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-email-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-email-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-email-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-gui-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-gui-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-gui-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-gui-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-p4-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-p4-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-p4-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-p4-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-svn-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-svn-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-svn-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-svn-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-web-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-web-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-web-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-web-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:gitk-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:gitk-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:gitk-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:gitk-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:perl-Git-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:perl-Git-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:perl-Git-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:perl-Git-2.43.0-150600.3.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-32020",
"url": "https://www.suse.com/security/cve/CVE-2024-32020"
},
{
"category": "external",
"summary": "SUSE Bug 1224171 for CVE-2024-32020",
"url": "https://bugzilla.suse.com/1224171"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-doc-2.43.0-150600.3.3.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-arch-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-arch-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-arch-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-arch-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-core-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-core-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-core-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-core-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-credential-libsecret-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-credential-libsecret-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-credential-libsecret-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-credential-libsecret-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-cvs-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-cvs-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-cvs-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-cvs-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-daemon-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-daemon-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-daemon-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-daemon-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-doc-2.43.0-150600.3.3.1.noarch",
"openSUSE Leap 15.6:git-email-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-email-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-email-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-email-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-gui-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-gui-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-gui-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-gui-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-p4-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-p4-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-p4-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-p4-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-svn-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-svn-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-svn-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-svn-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-web-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-web-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-web-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-web-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:gitk-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:gitk-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:gitk-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:gitk-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:perl-Git-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:perl-Git-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:perl-Git-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:perl-Git-2.43.0-150600.3.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.9,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-doc-2.43.0-150600.3.3.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-arch-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-arch-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-arch-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-arch-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-core-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-core-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-core-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-core-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-credential-libsecret-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-credential-libsecret-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-credential-libsecret-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-credential-libsecret-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-cvs-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-cvs-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-cvs-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-cvs-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-daemon-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-daemon-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-daemon-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-daemon-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-doc-2.43.0-150600.3.3.1.noarch",
"openSUSE Leap 15.6:git-email-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-email-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-email-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-email-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-gui-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-gui-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-gui-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-gui-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-p4-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-p4-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-p4-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-p4-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-svn-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-svn-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-svn-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-svn-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-web-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-web-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-web-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-web-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:gitk-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:gitk-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:gitk-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:gitk-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:perl-Git-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:perl-Git-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:perl-Git-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:perl-Git-2.43.0-150600.3.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-02T15:03:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-32020"
},
{
"cve": "CVE-2024-32021",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-32021"
}
],
"notes": [
{
"category": "general",
"text": "Git is a revision control system. Prior to versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4, when cloning a local source repository that contains symlinks via the filesystem, Git may create hardlinks to arbitrary user-readable files on the same filesystem as the target repository in the `objects/` directory. Cloning a local repository over the filesystem may creating hardlinks to arbitrary user-owned files on the same filesystem in the target Git repository\u0027s `objects/` directory. When cloning a repository over the filesystem (without explicitly specifying the `file://` protocol or `--no-local`), the optimizations for local cloning\nwill be used, which include attempting to hard link the object files instead of copying them. While the code includes checks against symbolic links in the source repository, which were added during the fix for CVE-2022-39253, these checks can still be raced because the hard link operation ultimately follows symlinks. If the object on the filesystem appears as a file during the check, and then a symlink during the operation, this will allow the adversary to bypass the check and create hardlinks in the destination objects directory to arbitrary, user-readable files. The problem has been patched in versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-doc-2.43.0-150600.3.3.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-arch-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-arch-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-arch-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-arch-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-core-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-core-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-core-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-core-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-credential-libsecret-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-credential-libsecret-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-credential-libsecret-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-credential-libsecret-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-cvs-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-cvs-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-cvs-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-cvs-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-daemon-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-daemon-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-daemon-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-daemon-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-doc-2.43.0-150600.3.3.1.noarch",
"openSUSE Leap 15.6:git-email-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-email-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-email-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-email-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-gui-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-gui-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-gui-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-gui-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-p4-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-p4-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-p4-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-p4-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-svn-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-svn-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-svn-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-svn-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-web-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-web-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-web-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-web-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:gitk-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:gitk-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:gitk-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:gitk-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:perl-Git-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:perl-Git-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:perl-Git-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:perl-Git-2.43.0-150600.3.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-32021",
"url": "https://www.suse.com/security/cve/CVE-2024-32021"
},
{
"category": "external",
"summary": "SUSE Bug 1224172 for CVE-2024-32021",
"url": "https://bugzilla.suse.com/1224172"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-doc-2.43.0-150600.3.3.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-arch-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-arch-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-arch-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-arch-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-core-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-core-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-core-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-core-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-credential-libsecret-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-credential-libsecret-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-credential-libsecret-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-credential-libsecret-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-cvs-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-cvs-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-cvs-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-cvs-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-daemon-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-daemon-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-daemon-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-daemon-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-doc-2.43.0-150600.3.3.1.noarch",
"openSUSE Leap 15.6:git-email-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-email-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-email-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-email-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-gui-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-gui-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-gui-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-gui-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-p4-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-p4-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-p4-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-p4-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-svn-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-svn-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-svn-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-svn-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-web-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-web-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-web-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-web-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:gitk-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:gitk-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:gitk-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:gitk-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:perl-Git-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:perl-Git-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:perl-Git-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:perl-Git-2.43.0-150600.3.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.9,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-doc-2.43.0-150600.3.3.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-arch-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-arch-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-arch-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-arch-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-core-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-core-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-core-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-core-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-credential-libsecret-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-credential-libsecret-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-credential-libsecret-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-credential-libsecret-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-cvs-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-cvs-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-cvs-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-cvs-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-daemon-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-daemon-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-daemon-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-daemon-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-doc-2.43.0-150600.3.3.1.noarch",
"openSUSE Leap 15.6:git-email-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-email-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-email-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-email-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-gui-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-gui-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-gui-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-gui-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-p4-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-p4-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-p4-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-p4-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-svn-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-svn-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-svn-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-svn-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-web-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-web-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-web-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-web-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:gitk-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:gitk-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:gitk-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:gitk-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:perl-Git-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:perl-Git-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:perl-Git-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:perl-Git-2.43.0-150600.3.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-02T15:03:50Z",
"details": "moderate"
}
],
"title": "CVE-2024-32021"
},
{
"cve": "CVE-2024-32465",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-32465"
}
],
"notes": [
{
"category": "general",
"text": "Git is a revision control system. The Git project recommends to avoid working in untrusted repositories, and instead to clone it first with `git clone --no-local` to obtain a clean copy. Git has specific protections to make that a safe operation even with an untrusted source repository, but vulnerabilities allow those protections to be bypassed. In the context of cloning local repositories owned by other users, this vulnerability has been covered in CVE-2024-32004. But there are circumstances where the fixes for CVE-2024-32004 are not enough: For example, when obtaining a `.zip` file containing a full copy of a Git repository, it should not be trusted by default to be safe, as e.g. hooks could be configured to run within the context of that repository. The problem has been patched in versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4. As a workaround, avoid using Git in repositories that have been obtained via archives from untrusted sources.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-doc-2.43.0-150600.3.3.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-arch-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-arch-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-arch-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-arch-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-core-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-core-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-core-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-core-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-credential-libsecret-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-credential-libsecret-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-credential-libsecret-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-credential-libsecret-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-cvs-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-cvs-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-cvs-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-cvs-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-daemon-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-daemon-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-daemon-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-daemon-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-doc-2.43.0-150600.3.3.1.noarch",
"openSUSE Leap 15.6:git-email-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-email-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-email-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-email-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-gui-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-gui-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-gui-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-gui-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-p4-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-p4-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-p4-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-p4-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-svn-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-svn-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-svn-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-svn-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-web-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-web-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-web-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-web-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:gitk-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:gitk-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:gitk-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:gitk-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:perl-Git-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:perl-Git-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:perl-Git-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:perl-Git-2.43.0-150600.3.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-32465",
"url": "https://www.suse.com/security/cve/CVE-2024-32465"
},
{
"category": "external",
"summary": "SUSE Bug 1224170 for CVE-2024-32465",
"url": "https://bugzilla.suse.com/1224170"
},
{
"category": "external",
"summary": "SUSE Bug 1224173 for CVE-2024-32465",
"url": "https://bugzilla.suse.com/1224173"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-doc-2.43.0-150600.3.3.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-arch-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-arch-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-arch-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-arch-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-core-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-core-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-core-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-core-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-credential-libsecret-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-credential-libsecret-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-credential-libsecret-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-credential-libsecret-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-cvs-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-cvs-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-cvs-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-cvs-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-daemon-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-daemon-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-daemon-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-daemon-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-doc-2.43.0-150600.3.3.1.noarch",
"openSUSE Leap 15.6:git-email-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-email-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-email-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-email-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-gui-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-gui-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-gui-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-gui-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-p4-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-p4-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-p4-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-p4-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-svn-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-svn-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-svn-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-svn-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-web-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-web-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-web-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-web-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:gitk-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:gitk-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:gitk-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:gitk-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:perl-Git-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:perl-Git-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:perl-Git-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:perl-Git-2.43.0-150600.3.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-doc-2.43.0-150600.3.3.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.43.0-150600.3.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.43.0-150600.3.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.43.0-150600.3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.43.0-150600.3.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-arch-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-arch-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-arch-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-arch-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-core-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-core-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-core-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-core-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-credential-libsecret-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-credential-libsecret-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-credential-libsecret-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-credential-libsecret-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-cvs-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-cvs-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-cvs-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-cvs-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-daemon-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-daemon-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-daemon-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-daemon-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-doc-2.43.0-150600.3.3.1.noarch",
"openSUSE Leap 15.6:git-email-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-email-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-email-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-email-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-gui-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-gui-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-gui-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-gui-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-p4-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-p4-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-p4-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-p4-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-svn-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-svn-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-svn-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-svn-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:git-web-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:git-web-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:git-web-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:git-web-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:gitk-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:gitk-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:gitk-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:gitk-2.43.0-150600.3.3.1.x86_64",
"openSUSE Leap 15.6:perl-Git-2.43.0-150600.3.3.1.aarch64",
"openSUSE Leap 15.6:perl-Git-2.43.0-150600.3.3.1.ppc64le",
"openSUSE Leap 15.6:perl-Git-2.43.0-150600.3.3.1.s390x",
"openSUSE Leap 15.6:perl-Git-2.43.0-150600.3.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-02T15:03:50Z",
"details": "important"
}
],
"title": "CVE-2024-32465"
}
]
}
SUSE-SU-2024:1854-1
Vulnerability from csaf_suse - Published: 2024-05-30 12:11 - Updated: 2024-05-30 12:11Summary
Security update for git
Notes
Title of the patch
Security update for git
Description of the patch
This update for git fixes the following issues:
- CVE-2024-32002: Fixed case confusion with recursive clones on case-insensitive filesystems that support symbolic links (bsc#1224168)
- CVE-2024-32004: Fixed arbitrary code execution during local clones (bsc#1224170)
- CVE-2024-32020: Fixed file overwriting vulnerability during local clones (bsc#1224171)
- CVE-2024-32021: Fixed issue where git created hardlinks to arbitrary user-readable files (bsc#1224172)
- CVE-2024-32465: Fixed arbitrary code execution during clone operations (bsc#1224173)
Patchnames
SUSE-2024-1854,SUSE-SLE-Product-HPC-15-SP2-LTSS-2024-1854,SUSE-SLE-Product-SLES-15-SP2-LTSS-2024-1854,SUSE-SLE-Product-SLES_SAP-15-SP2-2024-1854
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for git",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for git fixes the following issues:\n\n- CVE-2024-32002: Fixed case confusion with recursive clones on case-insensitive filesystems that support symbolic links (bsc#1224168)\n- CVE-2024-32004: Fixed arbitrary code execution during local clones (bsc#1224170)\n- CVE-2024-32020: Fixed file overwriting vulnerability during local clones (bsc#1224171)\n- CVE-2024-32021: Fixed issue where git created hardlinks to arbitrary user-readable files (bsc#1224172)\n- CVE-2024-32465: Fixed arbitrary code execution during clone operations (bsc#1224173)\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2024-1854,SUSE-SLE-Product-HPC-15-SP2-LTSS-2024-1854,SUSE-SLE-Product-SLES-15-SP2-LTSS-2024-1854,SUSE-SLE-Product-SLES_SAP-15-SP2-2024-1854",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2024_1854-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2024:1854-1",
"url": "https://www.suse.com/support/update/announcement/2024/suse-su-20241854-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2024:1854-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2024-August/019262.html"
},
{
"category": "self",
"summary": "SUSE Bug 1224168",
"url": "https://bugzilla.suse.com/1224168"
},
{
"category": "self",
"summary": "SUSE Bug 1224170",
"url": "https://bugzilla.suse.com/1224170"
},
{
"category": "self",
"summary": "SUSE Bug 1224171",
"url": "https://bugzilla.suse.com/1224171"
},
{
"category": "self",
"summary": "SUSE Bug 1224172",
"url": "https://bugzilla.suse.com/1224172"
},
{
"category": "self",
"summary": "SUSE Bug 1224173",
"url": "https://bugzilla.suse.com/1224173"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-32002 page",
"url": "https://www.suse.com/security/cve/CVE-2024-32002/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-32004 page",
"url": "https://www.suse.com/security/cve/CVE-2024-32004/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-32020 page",
"url": "https://www.suse.com/security/cve/CVE-2024-32020/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-32021 page",
"url": "https://www.suse.com/security/cve/CVE-2024-32021/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-32465 page",
"url": "https://www.suse.com/security/cve/CVE-2024-32465/"
}
],
"title": "Security update for git",
"tracking": {
"current_release_date": "2024-05-30T12:11:40Z",
"generator": {
"date": "2024-05-30T12:11:40Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2024:1854-1",
"initial_release_date": "2024-05-30T12:11:40Z",
"revision_history": [
{
"date": "2024-05-30T12:11:40Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "git-2.26.2-150000.56.1.aarch64",
"product": {
"name": "git-2.26.2-150000.56.1.aarch64",
"product_id": "git-2.26.2-150000.56.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-arch-2.26.2-150000.56.1.aarch64",
"product": {
"name": "git-arch-2.26.2-150000.56.1.aarch64",
"product_id": "git-arch-2.26.2-150000.56.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-core-2.26.2-150000.56.1.aarch64",
"product": {
"name": "git-core-2.26.2-150000.56.1.aarch64",
"product_id": "git-core-2.26.2-150000.56.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-credential-gnome-keyring-2.26.2-150000.56.1.aarch64",
"product": {
"name": "git-credential-gnome-keyring-2.26.2-150000.56.1.aarch64",
"product_id": "git-credential-gnome-keyring-2.26.2-150000.56.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-2.26.2-150000.56.1.aarch64",
"product": {
"name": "git-credential-libsecret-2.26.2-150000.56.1.aarch64",
"product_id": "git-credential-libsecret-2.26.2-150000.56.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-cvs-2.26.2-150000.56.1.aarch64",
"product": {
"name": "git-cvs-2.26.2-150000.56.1.aarch64",
"product_id": "git-cvs-2.26.2-150000.56.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-daemon-2.26.2-150000.56.1.aarch64",
"product": {
"name": "git-daemon-2.26.2-150000.56.1.aarch64",
"product_id": "git-daemon-2.26.2-150000.56.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-email-2.26.2-150000.56.1.aarch64",
"product": {
"name": "git-email-2.26.2-150000.56.1.aarch64",
"product_id": "git-email-2.26.2-150000.56.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-gui-2.26.2-150000.56.1.aarch64",
"product": {
"name": "git-gui-2.26.2-150000.56.1.aarch64",
"product_id": "git-gui-2.26.2-150000.56.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-p4-2.26.2-150000.56.1.aarch64",
"product": {
"name": "git-p4-2.26.2-150000.56.1.aarch64",
"product_id": "git-p4-2.26.2-150000.56.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-svn-2.26.2-150000.56.1.aarch64",
"product": {
"name": "git-svn-2.26.2-150000.56.1.aarch64",
"product_id": "git-svn-2.26.2-150000.56.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-web-2.26.2-150000.56.1.aarch64",
"product": {
"name": "git-web-2.26.2-150000.56.1.aarch64",
"product_id": "git-web-2.26.2-150000.56.1.aarch64"
}
},
{
"category": "product_version",
"name": "gitk-2.26.2-150000.56.1.aarch64",
"product": {
"name": "gitk-2.26.2-150000.56.1.aarch64",
"product_id": "gitk-2.26.2-150000.56.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "git-2.26.2-150000.56.1.i586",
"product": {
"name": "git-2.26.2-150000.56.1.i586",
"product_id": "git-2.26.2-150000.56.1.i586"
}
},
{
"category": "product_version",
"name": "git-arch-2.26.2-150000.56.1.i586",
"product": {
"name": "git-arch-2.26.2-150000.56.1.i586",
"product_id": "git-arch-2.26.2-150000.56.1.i586"
}
},
{
"category": "product_version",
"name": "git-core-2.26.2-150000.56.1.i586",
"product": {
"name": "git-core-2.26.2-150000.56.1.i586",
"product_id": "git-core-2.26.2-150000.56.1.i586"
}
},
{
"category": "product_version",
"name": "git-credential-gnome-keyring-2.26.2-150000.56.1.i586",
"product": {
"name": "git-credential-gnome-keyring-2.26.2-150000.56.1.i586",
"product_id": "git-credential-gnome-keyring-2.26.2-150000.56.1.i586"
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-2.26.2-150000.56.1.i586",
"product": {
"name": "git-credential-libsecret-2.26.2-150000.56.1.i586",
"product_id": "git-credential-libsecret-2.26.2-150000.56.1.i586"
}
},
{
"category": "product_version",
"name": "git-cvs-2.26.2-150000.56.1.i586",
"product": {
"name": "git-cvs-2.26.2-150000.56.1.i586",
"product_id": "git-cvs-2.26.2-150000.56.1.i586"
}
},
{
"category": "product_version",
"name": "git-daemon-2.26.2-150000.56.1.i586",
"product": {
"name": "git-daemon-2.26.2-150000.56.1.i586",
"product_id": "git-daemon-2.26.2-150000.56.1.i586"
}
},
{
"category": "product_version",
"name": "git-email-2.26.2-150000.56.1.i586",
"product": {
"name": "git-email-2.26.2-150000.56.1.i586",
"product_id": "git-email-2.26.2-150000.56.1.i586"
}
},
{
"category": "product_version",
"name": "git-gui-2.26.2-150000.56.1.i586",
"product": {
"name": "git-gui-2.26.2-150000.56.1.i586",
"product_id": "git-gui-2.26.2-150000.56.1.i586"
}
},
{
"category": "product_version",
"name": "git-p4-2.26.2-150000.56.1.i586",
"product": {
"name": "git-p4-2.26.2-150000.56.1.i586",
"product_id": "git-p4-2.26.2-150000.56.1.i586"
}
},
{
"category": "product_version",
"name": "git-svn-2.26.2-150000.56.1.i586",
"product": {
"name": "git-svn-2.26.2-150000.56.1.i586",
"product_id": "git-svn-2.26.2-150000.56.1.i586"
}
},
{
"category": "product_version",
"name": "git-web-2.26.2-150000.56.1.i586",
"product": {
"name": "git-web-2.26.2-150000.56.1.i586",
"product_id": "git-web-2.26.2-150000.56.1.i586"
}
},
{
"category": "product_version",
"name": "gitk-2.26.2-150000.56.1.i586",
"product": {
"name": "gitk-2.26.2-150000.56.1.i586",
"product_id": "gitk-2.26.2-150000.56.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "git-doc-2.26.2-150000.56.1.noarch",
"product": {
"name": "git-doc-2.26.2-150000.56.1.noarch",
"product_id": "git-doc-2.26.2-150000.56.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "git-2.26.2-150000.56.1.ppc64le",
"product": {
"name": "git-2.26.2-150000.56.1.ppc64le",
"product_id": "git-2.26.2-150000.56.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-arch-2.26.2-150000.56.1.ppc64le",
"product": {
"name": "git-arch-2.26.2-150000.56.1.ppc64le",
"product_id": "git-arch-2.26.2-150000.56.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-core-2.26.2-150000.56.1.ppc64le",
"product": {
"name": "git-core-2.26.2-150000.56.1.ppc64le",
"product_id": "git-core-2.26.2-150000.56.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-credential-gnome-keyring-2.26.2-150000.56.1.ppc64le",
"product": {
"name": "git-credential-gnome-keyring-2.26.2-150000.56.1.ppc64le",
"product_id": "git-credential-gnome-keyring-2.26.2-150000.56.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-2.26.2-150000.56.1.ppc64le",
"product": {
"name": "git-credential-libsecret-2.26.2-150000.56.1.ppc64le",
"product_id": "git-credential-libsecret-2.26.2-150000.56.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-cvs-2.26.2-150000.56.1.ppc64le",
"product": {
"name": "git-cvs-2.26.2-150000.56.1.ppc64le",
"product_id": "git-cvs-2.26.2-150000.56.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-daemon-2.26.2-150000.56.1.ppc64le",
"product": {
"name": "git-daemon-2.26.2-150000.56.1.ppc64le",
"product_id": "git-daemon-2.26.2-150000.56.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-email-2.26.2-150000.56.1.ppc64le",
"product": {
"name": "git-email-2.26.2-150000.56.1.ppc64le",
"product_id": "git-email-2.26.2-150000.56.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-gui-2.26.2-150000.56.1.ppc64le",
"product": {
"name": "git-gui-2.26.2-150000.56.1.ppc64le",
"product_id": "git-gui-2.26.2-150000.56.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-p4-2.26.2-150000.56.1.ppc64le",
"product": {
"name": "git-p4-2.26.2-150000.56.1.ppc64le",
"product_id": "git-p4-2.26.2-150000.56.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-svn-2.26.2-150000.56.1.ppc64le",
"product": {
"name": "git-svn-2.26.2-150000.56.1.ppc64le",
"product_id": "git-svn-2.26.2-150000.56.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-web-2.26.2-150000.56.1.ppc64le",
"product": {
"name": "git-web-2.26.2-150000.56.1.ppc64le",
"product_id": "git-web-2.26.2-150000.56.1.ppc64le"
}
},
{
"category": "product_version",
"name": "gitk-2.26.2-150000.56.1.ppc64le",
"product": {
"name": "gitk-2.26.2-150000.56.1.ppc64le",
"product_id": "gitk-2.26.2-150000.56.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "git-2.26.2-150000.56.1.s390x",
"product": {
"name": "git-2.26.2-150000.56.1.s390x",
"product_id": "git-2.26.2-150000.56.1.s390x"
}
},
{
"category": "product_version",
"name": "git-arch-2.26.2-150000.56.1.s390x",
"product": {
"name": "git-arch-2.26.2-150000.56.1.s390x",
"product_id": "git-arch-2.26.2-150000.56.1.s390x"
}
},
{
"category": "product_version",
"name": "git-core-2.26.2-150000.56.1.s390x",
"product": {
"name": "git-core-2.26.2-150000.56.1.s390x",
"product_id": "git-core-2.26.2-150000.56.1.s390x"
}
},
{
"category": "product_version",
"name": "git-credential-gnome-keyring-2.26.2-150000.56.1.s390x",
"product": {
"name": "git-credential-gnome-keyring-2.26.2-150000.56.1.s390x",
"product_id": "git-credential-gnome-keyring-2.26.2-150000.56.1.s390x"
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-2.26.2-150000.56.1.s390x",
"product": {
"name": "git-credential-libsecret-2.26.2-150000.56.1.s390x",
"product_id": "git-credential-libsecret-2.26.2-150000.56.1.s390x"
}
},
{
"category": "product_version",
"name": "git-cvs-2.26.2-150000.56.1.s390x",
"product": {
"name": "git-cvs-2.26.2-150000.56.1.s390x",
"product_id": "git-cvs-2.26.2-150000.56.1.s390x"
}
},
{
"category": "product_version",
"name": "git-daemon-2.26.2-150000.56.1.s390x",
"product": {
"name": "git-daemon-2.26.2-150000.56.1.s390x",
"product_id": "git-daemon-2.26.2-150000.56.1.s390x"
}
},
{
"category": "product_version",
"name": "git-email-2.26.2-150000.56.1.s390x",
"product": {
"name": "git-email-2.26.2-150000.56.1.s390x",
"product_id": "git-email-2.26.2-150000.56.1.s390x"
}
},
{
"category": "product_version",
"name": "git-gui-2.26.2-150000.56.1.s390x",
"product": {
"name": "git-gui-2.26.2-150000.56.1.s390x",
"product_id": "git-gui-2.26.2-150000.56.1.s390x"
}
},
{
"category": "product_version",
"name": "git-p4-2.26.2-150000.56.1.s390x",
"product": {
"name": "git-p4-2.26.2-150000.56.1.s390x",
"product_id": "git-p4-2.26.2-150000.56.1.s390x"
}
},
{
"category": "product_version",
"name": "git-svn-2.26.2-150000.56.1.s390x",
"product": {
"name": "git-svn-2.26.2-150000.56.1.s390x",
"product_id": "git-svn-2.26.2-150000.56.1.s390x"
}
},
{
"category": "product_version",
"name": "git-web-2.26.2-150000.56.1.s390x",
"product": {
"name": "git-web-2.26.2-150000.56.1.s390x",
"product_id": "git-web-2.26.2-150000.56.1.s390x"
}
},
{
"category": "product_version",
"name": "gitk-2.26.2-150000.56.1.s390x",
"product": {
"name": "gitk-2.26.2-150000.56.1.s390x",
"product_id": "gitk-2.26.2-150000.56.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "git-2.26.2-150000.56.1.x86_64",
"product": {
"name": "git-2.26.2-150000.56.1.x86_64",
"product_id": "git-2.26.2-150000.56.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-arch-2.26.2-150000.56.1.x86_64",
"product": {
"name": "git-arch-2.26.2-150000.56.1.x86_64",
"product_id": "git-arch-2.26.2-150000.56.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-core-2.26.2-150000.56.1.x86_64",
"product": {
"name": "git-core-2.26.2-150000.56.1.x86_64",
"product_id": "git-core-2.26.2-150000.56.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-credential-gnome-keyring-2.26.2-150000.56.1.x86_64",
"product": {
"name": "git-credential-gnome-keyring-2.26.2-150000.56.1.x86_64",
"product_id": "git-credential-gnome-keyring-2.26.2-150000.56.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-2.26.2-150000.56.1.x86_64",
"product": {
"name": "git-credential-libsecret-2.26.2-150000.56.1.x86_64",
"product_id": "git-credential-libsecret-2.26.2-150000.56.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-cvs-2.26.2-150000.56.1.x86_64",
"product": {
"name": "git-cvs-2.26.2-150000.56.1.x86_64",
"product_id": "git-cvs-2.26.2-150000.56.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-daemon-2.26.2-150000.56.1.x86_64",
"product": {
"name": "git-daemon-2.26.2-150000.56.1.x86_64",
"product_id": "git-daemon-2.26.2-150000.56.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-email-2.26.2-150000.56.1.x86_64",
"product": {
"name": "git-email-2.26.2-150000.56.1.x86_64",
"product_id": "git-email-2.26.2-150000.56.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-gui-2.26.2-150000.56.1.x86_64",
"product": {
"name": "git-gui-2.26.2-150000.56.1.x86_64",
"product_id": "git-gui-2.26.2-150000.56.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-p4-2.26.2-150000.56.1.x86_64",
"product": {
"name": "git-p4-2.26.2-150000.56.1.x86_64",
"product_id": "git-p4-2.26.2-150000.56.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-svn-2.26.2-150000.56.1.x86_64",
"product": {
"name": "git-svn-2.26.2-150000.56.1.x86_64",
"product_id": "git-svn-2.26.2-150000.56.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-web-2.26.2-150000.56.1.x86_64",
"product": {
"name": "git-web-2.26.2-150000.56.1.x86_64",
"product_id": "git-web-2.26.2-150000.56.1.x86_64"
}
},
{
"category": "product_version",
"name": "gitk-2.26.2-150000.56.1.x86_64",
"product": {
"name": "gitk-2.26.2-150000.56.1.x86_64",
"product_id": "gitk-2.26.2-150000.56.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp2"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15 SP2-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:15:sp2"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP2",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:15:sp2"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.26.2-150000.56.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-2.26.2-150000.56.1.aarch64"
},
"product_reference": "git-2.26.2-150000.56.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.26.2-150000.56.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-2.26.2-150000.56.1.x86_64"
},
"product_reference": "git-2.26.2-150000.56.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-arch-2.26.2-150000.56.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-arch-2.26.2-150000.56.1.aarch64"
},
"product_reference": "git-arch-2.26.2-150000.56.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-arch-2.26.2-150000.56.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-arch-2.26.2-150000.56.1.x86_64"
},
"product_reference": "git-arch-2.26.2-150000.56.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.26.2-150000.56.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-core-2.26.2-150000.56.1.aarch64"
},
"product_reference": "git-core-2.26.2-150000.56.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.26.2-150000.56.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-core-2.26.2-150000.56.1.x86_64"
},
"product_reference": "git-core-2.26.2-150000.56.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.26.2-150000.56.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-cvs-2.26.2-150000.56.1.aarch64"
},
"product_reference": "git-cvs-2.26.2-150000.56.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.26.2-150000.56.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-cvs-2.26.2-150000.56.1.x86_64"
},
"product_reference": "git-cvs-2.26.2-150000.56.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.26.2-150000.56.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-daemon-2.26.2-150000.56.1.aarch64"
},
"product_reference": "git-daemon-2.26.2-150000.56.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.26.2-150000.56.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-daemon-2.26.2-150000.56.1.x86_64"
},
"product_reference": "git-daemon-2.26.2-150000.56.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-doc-2.26.2-150000.56.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-doc-2.26.2-150000.56.1.noarch"
},
"product_reference": "git-doc-2.26.2-150000.56.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.26.2-150000.56.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-email-2.26.2-150000.56.1.aarch64"
},
"product_reference": "git-email-2.26.2-150000.56.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.26.2-150000.56.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-email-2.26.2-150000.56.1.x86_64"
},
"product_reference": "git-email-2.26.2-150000.56.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.26.2-150000.56.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-gui-2.26.2-150000.56.1.aarch64"
},
"product_reference": "git-gui-2.26.2-150000.56.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.26.2-150000.56.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-gui-2.26.2-150000.56.1.x86_64"
},
"product_reference": "git-gui-2.26.2-150000.56.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.26.2-150000.56.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-svn-2.26.2-150000.56.1.aarch64"
},
"product_reference": "git-svn-2.26.2-150000.56.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.26.2-150000.56.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-svn-2.26.2-150000.56.1.x86_64"
},
"product_reference": "git-svn-2.26.2-150000.56.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.26.2-150000.56.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-web-2.26.2-150000.56.1.aarch64"
},
"product_reference": "git-web-2.26.2-150000.56.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.26.2-150000.56.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-web-2.26.2-150000.56.1.x86_64"
},
"product_reference": "git-web-2.26.2-150000.56.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.26.2-150000.56.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:gitk-2.26.2-150000.56.1.aarch64"
},
"product_reference": "gitk-2.26.2-150000.56.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.26.2-150000.56.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:gitk-2.26.2-150000.56.1.x86_64"
},
"product_reference": "gitk-2.26.2-150000.56.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.26.2-150000.56.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:git-2.26.2-150000.56.1.aarch64"
},
"product_reference": "git-2.26.2-150000.56.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.26.2-150000.56.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:git-2.26.2-150000.56.1.ppc64le"
},
"product_reference": "git-2.26.2-150000.56.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.26.2-150000.56.1.s390x as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:git-2.26.2-150000.56.1.s390x"
},
"product_reference": "git-2.26.2-150000.56.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.26.2-150000.56.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:git-2.26.2-150000.56.1.x86_64"
},
"product_reference": "git-2.26.2-150000.56.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-arch-2.26.2-150000.56.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:git-arch-2.26.2-150000.56.1.aarch64"
},
"product_reference": "git-arch-2.26.2-150000.56.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-arch-2.26.2-150000.56.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:git-arch-2.26.2-150000.56.1.ppc64le"
},
"product_reference": "git-arch-2.26.2-150000.56.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-arch-2.26.2-150000.56.1.s390x as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:git-arch-2.26.2-150000.56.1.s390x"
},
"product_reference": "git-arch-2.26.2-150000.56.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-arch-2.26.2-150000.56.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:git-arch-2.26.2-150000.56.1.x86_64"
},
"product_reference": "git-arch-2.26.2-150000.56.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.26.2-150000.56.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:git-core-2.26.2-150000.56.1.aarch64"
},
"product_reference": "git-core-2.26.2-150000.56.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.26.2-150000.56.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:git-core-2.26.2-150000.56.1.ppc64le"
},
"product_reference": "git-core-2.26.2-150000.56.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.26.2-150000.56.1.s390x as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:git-core-2.26.2-150000.56.1.s390x"
},
"product_reference": "git-core-2.26.2-150000.56.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.26.2-150000.56.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:git-core-2.26.2-150000.56.1.x86_64"
},
"product_reference": "git-core-2.26.2-150000.56.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.26.2-150000.56.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:git-cvs-2.26.2-150000.56.1.aarch64"
},
"product_reference": "git-cvs-2.26.2-150000.56.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.26.2-150000.56.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:git-cvs-2.26.2-150000.56.1.ppc64le"
},
"product_reference": "git-cvs-2.26.2-150000.56.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.26.2-150000.56.1.s390x as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:git-cvs-2.26.2-150000.56.1.s390x"
},
"product_reference": "git-cvs-2.26.2-150000.56.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.26.2-150000.56.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:git-cvs-2.26.2-150000.56.1.x86_64"
},
"product_reference": "git-cvs-2.26.2-150000.56.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.26.2-150000.56.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:git-daemon-2.26.2-150000.56.1.aarch64"
},
"product_reference": "git-daemon-2.26.2-150000.56.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.26.2-150000.56.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:git-daemon-2.26.2-150000.56.1.ppc64le"
},
"product_reference": "git-daemon-2.26.2-150000.56.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.26.2-150000.56.1.s390x as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:git-daemon-2.26.2-150000.56.1.s390x"
},
"product_reference": "git-daemon-2.26.2-150000.56.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.26.2-150000.56.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:git-daemon-2.26.2-150000.56.1.x86_64"
},
"product_reference": "git-daemon-2.26.2-150000.56.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-doc-2.26.2-150000.56.1.noarch as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:git-doc-2.26.2-150000.56.1.noarch"
},
"product_reference": "git-doc-2.26.2-150000.56.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.26.2-150000.56.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:git-email-2.26.2-150000.56.1.aarch64"
},
"product_reference": "git-email-2.26.2-150000.56.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.26.2-150000.56.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:git-email-2.26.2-150000.56.1.ppc64le"
},
"product_reference": "git-email-2.26.2-150000.56.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.26.2-150000.56.1.s390x as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:git-email-2.26.2-150000.56.1.s390x"
},
"product_reference": "git-email-2.26.2-150000.56.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.26.2-150000.56.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:git-email-2.26.2-150000.56.1.x86_64"
},
"product_reference": "git-email-2.26.2-150000.56.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.26.2-150000.56.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:git-gui-2.26.2-150000.56.1.aarch64"
},
"product_reference": "git-gui-2.26.2-150000.56.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.26.2-150000.56.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:git-gui-2.26.2-150000.56.1.ppc64le"
},
"product_reference": "git-gui-2.26.2-150000.56.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.26.2-150000.56.1.s390x as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:git-gui-2.26.2-150000.56.1.s390x"
},
"product_reference": "git-gui-2.26.2-150000.56.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.26.2-150000.56.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:git-gui-2.26.2-150000.56.1.x86_64"
},
"product_reference": "git-gui-2.26.2-150000.56.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.26.2-150000.56.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:git-svn-2.26.2-150000.56.1.aarch64"
},
"product_reference": "git-svn-2.26.2-150000.56.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.26.2-150000.56.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:git-svn-2.26.2-150000.56.1.ppc64le"
},
"product_reference": "git-svn-2.26.2-150000.56.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.26.2-150000.56.1.s390x as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:git-svn-2.26.2-150000.56.1.s390x"
},
"product_reference": "git-svn-2.26.2-150000.56.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.26.2-150000.56.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:git-svn-2.26.2-150000.56.1.x86_64"
},
"product_reference": "git-svn-2.26.2-150000.56.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.26.2-150000.56.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:git-web-2.26.2-150000.56.1.aarch64"
},
"product_reference": "git-web-2.26.2-150000.56.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.26.2-150000.56.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:git-web-2.26.2-150000.56.1.ppc64le"
},
"product_reference": "git-web-2.26.2-150000.56.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.26.2-150000.56.1.s390x as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:git-web-2.26.2-150000.56.1.s390x"
},
"product_reference": "git-web-2.26.2-150000.56.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.26.2-150000.56.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:git-web-2.26.2-150000.56.1.x86_64"
},
"product_reference": "git-web-2.26.2-150000.56.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.26.2-150000.56.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:gitk-2.26.2-150000.56.1.aarch64"
},
"product_reference": "gitk-2.26.2-150000.56.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.26.2-150000.56.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:gitk-2.26.2-150000.56.1.ppc64le"
},
"product_reference": "gitk-2.26.2-150000.56.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.26.2-150000.56.1.s390x as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:gitk-2.26.2-150000.56.1.s390x"
},
"product_reference": "gitk-2.26.2-150000.56.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.26.2-150000.56.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:gitk-2.26.2-150000.56.1.x86_64"
},
"product_reference": "gitk-2.26.2-150000.56.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.26.2-150000.56.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-2.26.2-150000.56.1.ppc64le"
},
"product_reference": "git-2.26.2-150000.56.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.26.2-150000.56.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-2.26.2-150000.56.1.x86_64"
},
"product_reference": "git-2.26.2-150000.56.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-arch-2.26.2-150000.56.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-arch-2.26.2-150000.56.1.ppc64le"
},
"product_reference": "git-arch-2.26.2-150000.56.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-arch-2.26.2-150000.56.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-arch-2.26.2-150000.56.1.x86_64"
},
"product_reference": "git-arch-2.26.2-150000.56.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.26.2-150000.56.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-core-2.26.2-150000.56.1.ppc64le"
},
"product_reference": "git-core-2.26.2-150000.56.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.26.2-150000.56.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-core-2.26.2-150000.56.1.x86_64"
},
"product_reference": "git-core-2.26.2-150000.56.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.26.2-150000.56.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-cvs-2.26.2-150000.56.1.ppc64le"
},
"product_reference": "git-cvs-2.26.2-150000.56.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.26.2-150000.56.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-cvs-2.26.2-150000.56.1.x86_64"
},
"product_reference": "git-cvs-2.26.2-150000.56.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.26.2-150000.56.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-daemon-2.26.2-150000.56.1.ppc64le"
},
"product_reference": "git-daemon-2.26.2-150000.56.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.26.2-150000.56.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-daemon-2.26.2-150000.56.1.x86_64"
},
"product_reference": "git-daemon-2.26.2-150000.56.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-doc-2.26.2-150000.56.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-doc-2.26.2-150000.56.1.noarch"
},
"product_reference": "git-doc-2.26.2-150000.56.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.26.2-150000.56.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-email-2.26.2-150000.56.1.ppc64le"
},
"product_reference": "git-email-2.26.2-150000.56.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.26.2-150000.56.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-email-2.26.2-150000.56.1.x86_64"
},
"product_reference": "git-email-2.26.2-150000.56.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.26.2-150000.56.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-gui-2.26.2-150000.56.1.ppc64le"
},
"product_reference": "git-gui-2.26.2-150000.56.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.26.2-150000.56.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-gui-2.26.2-150000.56.1.x86_64"
},
"product_reference": "git-gui-2.26.2-150000.56.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.26.2-150000.56.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-svn-2.26.2-150000.56.1.ppc64le"
},
"product_reference": "git-svn-2.26.2-150000.56.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.26.2-150000.56.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-svn-2.26.2-150000.56.1.x86_64"
},
"product_reference": "git-svn-2.26.2-150000.56.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.26.2-150000.56.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-web-2.26.2-150000.56.1.ppc64le"
},
"product_reference": "git-web-2.26.2-150000.56.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.26.2-150000.56.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-web-2.26.2-150000.56.1.x86_64"
},
"product_reference": "git-web-2.26.2-150000.56.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.26.2-150000.56.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2:gitk-2.26.2-150000.56.1.ppc64le"
},
"product_reference": "gitk-2.26.2-150000.56.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.26.2-150000.56.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2:gitk-2.26.2-150000.56.1.x86_64"
},
"product_reference": "gitk-2.26.2-150000.56.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP2"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-32002",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-32002"
}
],
"notes": [
{
"category": "general",
"text": "Git is a revision control system. Prior to versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4, repositories with submodules can be crafted in a way that exploits a bug in Git whereby it can be fooled into writing files not into the submodule\u0027s worktree but into a `.git/` directory. This allows writing a hook that will be executed while the clone operation is still running, giving the user no opportunity to inspect the code that is being executed. The problem has been patched in versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4. If symbolic link support is disabled in Git (e.g. via `git config --global core.symlinks false`), the described attack won\u0027t work. As always, it is best to avoid cloning repositories from untrusted sources.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-arch-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-arch-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-core-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-core-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-cvs-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-cvs-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-daemon-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-daemon-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-doc-2.26.2-150000.56.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-email-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-email-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-gui-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-gui-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-svn-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-svn-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-web-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-web-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:gitk-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:gitk-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-arch-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-arch-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-arch-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-arch-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-core-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-core-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-core-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-core-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-cvs-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-cvs-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-cvs-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-cvs-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-daemon-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-daemon-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-daemon-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-daemon-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-doc-2.26.2-150000.56.1.noarch",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-email-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-email-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-email-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-email-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-gui-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-gui-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-gui-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-gui-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-svn-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-svn-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-svn-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-svn-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-web-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-web-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-web-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-web-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:gitk-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:gitk-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:gitk-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:gitk-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-arch-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-arch-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-core-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-core-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-cvs-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-cvs-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-daemon-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-daemon-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-doc-2.26.2-150000.56.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-email-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-email-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-gui-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-gui-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-svn-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-svn-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-web-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-web-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:gitk-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:gitk-2.26.2-150000.56.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-32002",
"url": "https://www.suse.com/security/cve/CVE-2024-32002"
},
{
"category": "external",
"summary": "SUSE Bug 1224168 for CVE-2024-32002",
"url": "https://bugzilla.suse.com/1224168"
},
{
"category": "external",
"summary": "SUSE Bug 1224170 for CVE-2024-32002",
"url": "https://bugzilla.suse.com/1224170"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-arch-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-arch-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-core-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-core-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-cvs-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-cvs-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-daemon-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-daemon-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-doc-2.26.2-150000.56.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-email-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-email-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-gui-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-gui-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-svn-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-svn-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-web-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-web-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:gitk-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:gitk-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-arch-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-arch-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-arch-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-arch-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-core-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-core-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-core-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-core-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-cvs-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-cvs-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-cvs-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-cvs-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-daemon-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-daemon-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-daemon-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-daemon-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-doc-2.26.2-150000.56.1.noarch",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-email-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-email-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-email-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-email-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-gui-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-gui-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-gui-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-gui-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-svn-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-svn-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-svn-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-svn-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-web-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-web-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-web-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-web-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:gitk-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:gitk-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:gitk-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:gitk-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-arch-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-arch-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-core-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-core-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-cvs-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-cvs-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-daemon-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-daemon-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-doc-2.26.2-150000.56.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-email-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-email-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-gui-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-gui-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-svn-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-svn-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-web-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-web-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:gitk-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:gitk-2.26.2-150000.56.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-arch-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-arch-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-core-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-core-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-cvs-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-cvs-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-daemon-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-daemon-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-doc-2.26.2-150000.56.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-email-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-email-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-gui-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-gui-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-svn-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-svn-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-web-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-web-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:gitk-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:gitk-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-arch-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-arch-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-arch-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-arch-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-core-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-core-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-core-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-core-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-cvs-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-cvs-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-cvs-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-cvs-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-daemon-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-daemon-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-daemon-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-daemon-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-doc-2.26.2-150000.56.1.noarch",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-email-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-email-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-email-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-email-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-gui-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-gui-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-gui-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-gui-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-svn-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-svn-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-svn-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-svn-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-web-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-web-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-web-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-web-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:gitk-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:gitk-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:gitk-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:gitk-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-arch-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-arch-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-core-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-core-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-cvs-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-cvs-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-daemon-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-daemon-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-doc-2.26.2-150000.56.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-email-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-email-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-gui-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-gui-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-svn-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-svn-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-web-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-web-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:gitk-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:gitk-2.26.2-150000.56.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-05-30T12:11:40Z",
"details": "important"
}
],
"title": "CVE-2024-32002"
},
{
"cve": "CVE-2024-32004",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-32004"
}
],
"notes": [
{
"category": "general",
"text": "Git is a revision control system. Prior to versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4, an attacker can prepare a local repository in such a way that, when cloned, will execute arbitrary code during the operation. The problem has been patched in versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4. As a workaround, avoid cloning repositories from untrusted sources.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-arch-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-arch-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-core-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-core-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-cvs-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-cvs-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-daemon-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-daemon-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-doc-2.26.2-150000.56.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-email-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-email-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-gui-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-gui-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-svn-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-svn-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-web-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-web-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:gitk-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:gitk-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-arch-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-arch-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-arch-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-arch-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-core-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-core-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-core-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-core-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-cvs-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-cvs-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-cvs-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-cvs-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-daemon-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-daemon-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-daemon-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-daemon-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-doc-2.26.2-150000.56.1.noarch",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-email-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-email-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-email-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-email-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-gui-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-gui-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-gui-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-gui-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-svn-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-svn-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-svn-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-svn-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-web-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-web-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-web-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-web-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:gitk-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:gitk-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:gitk-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:gitk-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-arch-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-arch-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-core-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-core-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-cvs-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-cvs-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-daemon-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-daemon-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-doc-2.26.2-150000.56.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-email-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-email-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-gui-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-gui-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-svn-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-svn-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-web-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-web-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:gitk-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:gitk-2.26.2-150000.56.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-32004",
"url": "https://www.suse.com/security/cve/CVE-2024-32004"
},
{
"category": "external",
"summary": "SUSE Bug 1224170 for CVE-2024-32004",
"url": "https://bugzilla.suse.com/1224170"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-arch-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-arch-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-core-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-core-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-cvs-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-cvs-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-daemon-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-daemon-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-doc-2.26.2-150000.56.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-email-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-email-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-gui-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-gui-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-svn-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-svn-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-web-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-web-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:gitk-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:gitk-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-arch-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-arch-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-arch-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-arch-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-core-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-core-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-core-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-core-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-cvs-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-cvs-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-cvs-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-cvs-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-daemon-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-daemon-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-daemon-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-daemon-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-doc-2.26.2-150000.56.1.noarch",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-email-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-email-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-email-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-email-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-gui-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-gui-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-gui-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-gui-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-svn-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-svn-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-svn-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-svn-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-web-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-web-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-web-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-web-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:gitk-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:gitk-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:gitk-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:gitk-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-arch-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-arch-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-core-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-core-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-cvs-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-cvs-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-daemon-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-daemon-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-doc-2.26.2-150000.56.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-email-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-email-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-gui-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-gui-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-svn-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-svn-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-web-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-web-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:gitk-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:gitk-2.26.2-150000.56.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-arch-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-arch-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-core-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-core-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-cvs-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-cvs-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-daemon-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-daemon-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-doc-2.26.2-150000.56.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-email-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-email-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-gui-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-gui-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-svn-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-svn-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-web-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-web-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:gitk-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:gitk-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-arch-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-arch-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-arch-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-arch-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-core-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-core-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-core-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-core-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-cvs-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-cvs-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-cvs-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-cvs-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-daemon-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-daemon-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-daemon-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-daemon-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-doc-2.26.2-150000.56.1.noarch",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-email-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-email-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-email-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-email-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-gui-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-gui-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-gui-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-gui-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-svn-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-svn-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-svn-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-svn-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-web-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-web-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-web-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-web-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:gitk-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:gitk-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:gitk-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:gitk-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-arch-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-arch-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-core-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-core-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-cvs-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-cvs-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-daemon-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-daemon-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-doc-2.26.2-150000.56.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-email-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-email-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-gui-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-gui-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-svn-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-svn-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-web-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-web-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:gitk-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:gitk-2.26.2-150000.56.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-05-30T12:11:40Z",
"details": "important"
}
],
"title": "CVE-2024-32004"
},
{
"cve": "CVE-2024-32020",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-32020"
}
],
"notes": [
{
"category": "general",
"text": "Git is a revision control system. Prior to versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4, local clones may end up hardlinking files into the target repository\u0027s object database when source and target repository reside on the same disk. If the source repository is owned by a different user, then those hardlinked files may be rewritten at any point in time by the untrusted user. Cloning local repositories will cause Git to either copy or hardlink files of the source repository into the target repository. This significantly speeds up such local clones compared to doing a \"proper\" clone and saves both disk space and compute time. When cloning a repository located on the same disk that is owned by a different user than the current user we also end up creating such hardlinks. These files will continue to be owned and controlled by the potentially-untrusted user and can be rewritten by them at will in the future. The problem has been patched in versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-arch-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-arch-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-core-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-core-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-cvs-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-cvs-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-daemon-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-daemon-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-doc-2.26.2-150000.56.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-email-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-email-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-gui-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-gui-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-svn-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-svn-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-web-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-web-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:gitk-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:gitk-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-arch-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-arch-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-arch-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-arch-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-core-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-core-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-core-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-core-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-cvs-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-cvs-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-cvs-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-cvs-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-daemon-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-daemon-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-daemon-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-daemon-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-doc-2.26.2-150000.56.1.noarch",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-email-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-email-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-email-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-email-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-gui-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-gui-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-gui-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-gui-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-svn-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-svn-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-svn-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-svn-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-web-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-web-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-web-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-web-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:gitk-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:gitk-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:gitk-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:gitk-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-arch-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-arch-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-core-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-core-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-cvs-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-cvs-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-daemon-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-daemon-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-doc-2.26.2-150000.56.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-email-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-email-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-gui-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-gui-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-svn-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-svn-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-web-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-web-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:gitk-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:gitk-2.26.2-150000.56.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-32020",
"url": "https://www.suse.com/security/cve/CVE-2024-32020"
},
{
"category": "external",
"summary": "SUSE Bug 1224171 for CVE-2024-32020",
"url": "https://bugzilla.suse.com/1224171"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-arch-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-arch-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-core-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-core-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-cvs-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-cvs-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-daemon-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-daemon-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-doc-2.26.2-150000.56.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-email-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-email-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-gui-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-gui-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-svn-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-svn-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-web-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-web-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:gitk-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:gitk-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-arch-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-arch-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-arch-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-arch-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-core-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-core-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-core-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-core-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-cvs-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-cvs-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-cvs-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-cvs-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-daemon-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-daemon-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-daemon-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-daemon-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-doc-2.26.2-150000.56.1.noarch",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-email-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-email-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-email-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-email-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-gui-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-gui-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-gui-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-gui-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-svn-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-svn-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-svn-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-svn-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-web-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-web-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-web-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-web-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:gitk-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:gitk-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:gitk-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:gitk-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-arch-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-arch-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-core-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-core-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-cvs-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-cvs-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-daemon-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-daemon-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-doc-2.26.2-150000.56.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-email-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-email-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-gui-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-gui-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-svn-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-svn-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-web-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-web-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:gitk-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:gitk-2.26.2-150000.56.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.9,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-arch-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-arch-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-core-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-core-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-cvs-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-cvs-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-daemon-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-daemon-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-doc-2.26.2-150000.56.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-email-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-email-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-gui-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-gui-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-svn-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-svn-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-web-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-web-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:gitk-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:gitk-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-arch-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-arch-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-arch-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-arch-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-core-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-core-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-core-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-core-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-cvs-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-cvs-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-cvs-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-cvs-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-daemon-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-daemon-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-daemon-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-daemon-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-doc-2.26.2-150000.56.1.noarch",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-email-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-email-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-email-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-email-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-gui-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-gui-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-gui-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-gui-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-svn-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-svn-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-svn-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-svn-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-web-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-web-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-web-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-web-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:gitk-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:gitk-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:gitk-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:gitk-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-arch-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-arch-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-core-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-core-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-cvs-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-cvs-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-daemon-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-daemon-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-doc-2.26.2-150000.56.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-email-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-email-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-gui-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-gui-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-svn-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-svn-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-web-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-web-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:gitk-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:gitk-2.26.2-150000.56.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-05-30T12:11:40Z",
"details": "moderate"
}
],
"title": "CVE-2024-32020"
},
{
"cve": "CVE-2024-32021",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-32021"
}
],
"notes": [
{
"category": "general",
"text": "Git is a revision control system. Prior to versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4, when cloning a local source repository that contains symlinks via the filesystem, Git may create hardlinks to arbitrary user-readable files on the same filesystem as the target repository in the `objects/` directory. Cloning a local repository over the filesystem may creating hardlinks to arbitrary user-owned files on the same filesystem in the target Git repository\u0027s `objects/` directory. When cloning a repository over the filesystem (without explicitly specifying the `file://` protocol or `--no-local`), the optimizations for local cloning\nwill be used, which include attempting to hard link the object files instead of copying them. While the code includes checks against symbolic links in the source repository, which were added during the fix for CVE-2022-39253, these checks can still be raced because the hard link operation ultimately follows symlinks. If the object on the filesystem appears as a file during the check, and then a symlink during the operation, this will allow the adversary to bypass the check and create hardlinks in the destination objects directory to arbitrary, user-readable files. The problem has been patched in versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-arch-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-arch-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-core-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-core-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-cvs-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-cvs-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-daemon-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-daemon-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-doc-2.26.2-150000.56.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-email-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-email-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-gui-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-gui-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-svn-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-svn-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-web-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-web-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:gitk-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:gitk-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-arch-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-arch-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-arch-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-arch-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-core-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-core-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-core-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-core-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-cvs-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-cvs-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-cvs-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-cvs-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-daemon-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-daemon-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-daemon-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-daemon-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-doc-2.26.2-150000.56.1.noarch",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-email-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-email-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-email-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-email-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-gui-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-gui-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-gui-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-gui-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-svn-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-svn-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-svn-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-svn-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-web-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-web-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-web-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-web-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:gitk-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:gitk-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:gitk-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:gitk-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-arch-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-arch-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-core-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-core-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-cvs-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-cvs-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-daemon-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-daemon-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-doc-2.26.2-150000.56.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-email-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-email-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-gui-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-gui-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-svn-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-svn-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-web-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-web-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:gitk-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:gitk-2.26.2-150000.56.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-32021",
"url": "https://www.suse.com/security/cve/CVE-2024-32021"
},
{
"category": "external",
"summary": "SUSE Bug 1224172 for CVE-2024-32021",
"url": "https://bugzilla.suse.com/1224172"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-arch-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-arch-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-core-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-core-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-cvs-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-cvs-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-daemon-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-daemon-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-doc-2.26.2-150000.56.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-email-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-email-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-gui-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-gui-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-svn-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-svn-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-web-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-web-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:gitk-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:gitk-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-arch-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-arch-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-arch-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-arch-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-core-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-core-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-core-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-core-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-cvs-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-cvs-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-cvs-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-cvs-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-daemon-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-daemon-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-daemon-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-daemon-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-doc-2.26.2-150000.56.1.noarch",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-email-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-email-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-email-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-email-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-gui-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-gui-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-gui-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-gui-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-svn-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-svn-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-svn-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-svn-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-web-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-web-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-web-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-web-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:gitk-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:gitk-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:gitk-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:gitk-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-arch-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-arch-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-core-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-core-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-cvs-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-cvs-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-daemon-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-daemon-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-doc-2.26.2-150000.56.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-email-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-email-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-gui-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-gui-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-svn-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-svn-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-web-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-web-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:gitk-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:gitk-2.26.2-150000.56.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.9,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-arch-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-arch-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-core-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-core-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-cvs-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-cvs-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-daemon-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-daemon-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-doc-2.26.2-150000.56.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-email-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-email-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-gui-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-gui-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-svn-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-svn-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-web-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-web-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:gitk-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:gitk-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-arch-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-arch-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-arch-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-arch-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-core-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-core-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-core-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-core-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-cvs-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-cvs-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-cvs-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-cvs-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-daemon-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-daemon-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-daemon-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-daemon-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-doc-2.26.2-150000.56.1.noarch",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-email-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-email-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-email-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-email-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-gui-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-gui-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-gui-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-gui-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-svn-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-svn-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-svn-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-svn-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-web-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-web-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-web-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-web-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:gitk-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:gitk-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:gitk-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:gitk-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-arch-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-arch-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-core-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-core-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-cvs-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-cvs-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-daemon-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-daemon-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-doc-2.26.2-150000.56.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-email-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-email-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-gui-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-gui-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-svn-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-svn-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-web-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-web-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:gitk-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:gitk-2.26.2-150000.56.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-05-30T12:11:40Z",
"details": "moderate"
}
],
"title": "CVE-2024-32021"
},
{
"cve": "CVE-2024-32465",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-32465"
}
],
"notes": [
{
"category": "general",
"text": "Git is a revision control system. The Git project recommends to avoid working in untrusted repositories, and instead to clone it first with `git clone --no-local` to obtain a clean copy. Git has specific protections to make that a safe operation even with an untrusted source repository, but vulnerabilities allow those protections to be bypassed. In the context of cloning local repositories owned by other users, this vulnerability has been covered in CVE-2024-32004. But there are circumstances where the fixes for CVE-2024-32004 are not enough: For example, when obtaining a `.zip` file containing a full copy of a Git repository, it should not be trusted by default to be safe, as e.g. hooks could be configured to run within the context of that repository. The problem has been patched in versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4. As a workaround, avoid using Git in repositories that have been obtained via archives from untrusted sources.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-arch-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-arch-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-core-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-core-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-cvs-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-cvs-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-daemon-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-daemon-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-doc-2.26.2-150000.56.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-email-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-email-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-gui-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-gui-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-svn-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-svn-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-web-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-web-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:gitk-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:gitk-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-arch-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-arch-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-arch-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-arch-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-core-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-core-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-core-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-core-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-cvs-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-cvs-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-cvs-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-cvs-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-daemon-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-daemon-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-daemon-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-daemon-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-doc-2.26.2-150000.56.1.noarch",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-email-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-email-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-email-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-email-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-gui-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-gui-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-gui-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-gui-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-svn-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-svn-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-svn-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-svn-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-web-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-web-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-web-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-web-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:gitk-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:gitk-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:gitk-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:gitk-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-arch-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-arch-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-core-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-core-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-cvs-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-cvs-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-daemon-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-daemon-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-doc-2.26.2-150000.56.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-email-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-email-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-gui-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-gui-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-svn-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-svn-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-web-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-web-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:gitk-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:gitk-2.26.2-150000.56.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-32465",
"url": "https://www.suse.com/security/cve/CVE-2024-32465"
},
{
"category": "external",
"summary": "SUSE Bug 1224170 for CVE-2024-32465",
"url": "https://bugzilla.suse.com/1224170"
},
{
"category": "external",
"summary": "SUSE Bug 1224173 for CVE-2024-32465",
"url": "https://bugzilla.suse.com/1224173"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-arch-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-arch-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-core-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-core-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-cvs-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-cvs-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-daemon-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-daemon-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-doc-2.26.2-150000.56.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-email-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-email-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-gui-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-gui-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-svn-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-svn-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-web-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-web-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:gitk-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:gitk-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-arch-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-arch-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-arch-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-arch-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-core-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-core-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-core-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-core-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-cvs-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-cvs-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-cvs-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-cvs-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-daemon-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-daemon-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-daemon-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-daemon-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-doc-2.26.2-150000.56.1.noarch",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-email-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-email-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-email-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-email-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-gui-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-gui-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-gui-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-gui-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-svn-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-svn-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-svn-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-svn-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-web-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-web-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-web-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-web-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:gitk-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:gitk-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:gitk-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:gitk-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-arch-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-arch-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-core-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-core-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-cvs-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-cvs-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-daemon-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-daemon-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-doc-2.26.2-150000.56.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-email-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-email-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-gui-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-gui-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-svn-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-svn-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-web-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-web-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:gitk-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:gitk-2.26.2-150000.56.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-arch-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-arch-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-core-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-core-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-cvs-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-cvs-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-daemon-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-daemon-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-doc-2.26.2-150000.56.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-email-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-email-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-gui-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-gui-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-svn-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-svn-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-web-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:git-web-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:gitk-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:gitk-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-arch-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-arch-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-arch-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-arch-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-core-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-core-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-core-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-core-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-cvs-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-cvs-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-cvs-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-cvs-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-daemon-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-daemon-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-daemon-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-daemon-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-doc-2.26.2-150000.56.1.noarch",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-email-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-email-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-email-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-email-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-gui-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-gui-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-gui-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-gui-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-svn-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-svn-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-svn-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-svn-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-web-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-web-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-web-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:git-web-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:gitk-2.26.2-150000.56.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:gitk-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:gitk-2.26.2-150000.56.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:gitk-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-arch-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-arch-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-core-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-core-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-cvs-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-cvs-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-daemon-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-daemon-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-doc-2.26.2-150000.56.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-email-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-email-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-gui-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-gui-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-svn-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-svn-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-web-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:git-web-2.26.2-150000.56.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:gitk-2.26.2-150000.56.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:gitk-2.26.2-150000.56.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-05-30T12:11:40Z",
"details": "important"
}
],
"title": "CVE-2024-32465"
}
]
}
SUSE-SU-2025:20049-1
Vulnerability from csaf_suse - Published: 2025-02-03 08:55 - Updated: 2025-02-03 08:55Summary
Security update for git
Notes
Title of the patch
Security update for git
Description of the patch
This update for git fixes the following issues:
git was updated to 2.45.1:
* CVE-2024-32002: recursive clones on case-insensitive
filesystems that support symbolic links are susceptible to case
confusion (bsc#1224168)
* CVE-2024-32004: arbitrary code execution during local clones
(bsc#1224170)
* CVE-2024-32020: file overwriting vulnerability during local
clones (bsc#1224171)
* CVE-2024-32021: git may create hardlinks to arbitrary user-
readable files (bsc#1224172)
* CVE-2024-32465: arbitrary code execution during clone operations
(bsc#1224173)
Update to 2.45.0:
* Improved efficiency managing repositories with many references
("git init --ref-format=reftable")
* "git checkout -p" and friends learned that that "@" is a
synonym for "HEAD"
* cli improvements handling refs
* Expanded a number of commands and options, UI improvements
* status.showUntrackedFiles now accepts "true"
* git-cherry-pick(1) now automatically drops redundant commits
with new --empty option
* The userdiff patterns for C# has been updated.
Update to 2.44.0:
* "git checkout -B <branch>" now longer allows switching to a
branch that is in use on another worktree. The users need to
use "--ignore-other-worktrees" option.
* Faster server-side rebases with git replay
* Faster pack generation with multi-pack reuse
* rebase auto-squashing now works in non-interactive mode
* pathspec now understands attr, e.g. ':(attr:~binary) for
selecting non-binaries, or builtin_objectmode for selecting
items by file mode or other properties
* Many other cli UI and internal improvements and extensions
- Do not replace apparmor configuration, fixes bsc#1216545
Update to 2.43.2:
* https://raw.githubusercontent.com/git/git/master/Documentation/RelNotes/2.43.2.txt
* Update to a new feature recently added, "git show-ref --exists".
* Rename detection logic ignored the final line of a file if it
is an incomplete line.
* "git diff --no-rename A B" did not disable rename detection but
did not trigger an error from the command line parser.
* "git diff --no-index file1 file2" segfaulted while invoking the
external diff driver, which has been corrected.
* A failed "git tag -s" did not necessarily result in an error
depending on the crypto backend, which has been corrected.
* "git stash" sometimes was silent even when it failed due to
unwritable index file, which has been corrected.
* Recent conversion to allow more than 0/1 in GIT_FLUSH broke the
mechanism by flipping what yes/no means by mistake, which has
been corrected.
Update to 2.43.1:
* https://raw.githubusercontent.com/git/git/master/Documentation/RelNotes/2.43.1.txt
- gitweb AppArmor profile: allow reading etc/gitweb-common.conf
(bsc#1218664)
- git moved to /usr/libexec/git/git, update AppArmor profile
accordingly (bsc#1218588)
Update to 2.43.0:
* The "--rfc" option of "git format-patch" used to be a valid way to
override an earlier "--subject-prefix=<something>" on the command
line and replace it with "[RFC PATCH]", but from this release, it
merely prefixes the string "RFC " in front of the given subject
prefix. If you are negatively affected by this change, please use
"--subject-prefix=PATCH --rfc" as a replacement.
* In Git 2.42, "git rev-list --stdin" learned to take non-revisions
(like "--not") from the standard input, but the way such a "--not" was
handled was quite confusing, which has been rethought. The updated
rule is that "--not" given from the command line only affects revs
given from the command line that comes but not revs read from the
standard input, and "--not" read from the standard input affects
revs given from the standard input and not revs given from the
command line.
* A message written in olden time prevented a branch from getting
checked out, saying it is already checked out elsewhere. But these
days, we treat a branch that is being bisected or rebased just like
a branch that is checked out and protect it from getting modified
with the same codepath. The message has been rephrased to say that
the branch is "in use" to avoid confusion.
* Hourly and other schedules of "git maintenance" jobs are randomly
distributed now.
* "git cmd -h" learned to signal which options can be negated by
listing such options like "--[no-]opt".
* The way authentication related data other than passwords (e.g.,
oauth token and password expiration data) are stored in libsecret
keyrings has been rethought.
* Update the libsecret and wincred credential helpers to correctly
match which credential to erase; they erased the wrong entry in
some cases.
* Git GUI updates.
* "git format-patch" learned a new "--description-file" option that
lets cover letter description to be fed; this can be used on
detached HEAD where there is no branch description available, and
also can override the branch description if there is one.
* Use of the "--max-pack-size" option to allow multiple packfiles to
be created is now supported even when we are sending unreachable
objects to cruft packs.
* "git format-patch --rfc --subject-prefix=<foo>" used to ignore the
"--subject-prefix" option and used "[RFC PATCH]"; now we will add
"RFC" prefix to whatever subject prefix is specified.
* "git log --format" has been taught the %(decorate) placeholder for
further customization over what the "--decorate" option offers.
* The default log message created by "git revert", when reverting a
commit that records a revert, has been tweaked, to encourage people
to describe complex "revert of revert of revert" situations better in
their own words.
* The command-line completion support (in contrib/) learned to
complete "git commit --trailer=" for possible trailer keys.
* "git update-index" learned the "--show-index-version" option to
inspect the index format version used by the on-disk index file.
* "git diff" learned the "diff.statNameWidth" configuration variable,
to give the default width for the name part in the "--stat" output.
* "git range-diff --notes=foo" compared "log --notes=foo --notes" of
the two ranges, instead of using just the specified notes tree,
which has been corrected to use only the specified notes tree.
* The command line completion script (in contrib/) can be told to
complete aliases by including ": git <cmd> ;" in the alias to tell
it that the alias should be completed in a similar way to how "git
<cmd>" is completed. The parsing code for the alias has been
loosened to allow ';' without an extra space before it.
* "git for-each-ref" and friends learned to apply mailmap to
authorname and other fields in a more flexible way than using
separate placeholder letters like %a[eElL] every time we want to
come up with small variants.
* "git repack" machinery learned to pay attention to the "--filter="
option.
* "git repack" learned the "--max-cruft-size" option to prevent cruft
packs from growing without bounds.
* "git merge-tree" learned to take strategy backend specific options
via the "-X" option, like "git merge" does.
* "git log" and friends learned the "--dd" option that is a
short-hand for "--diff-merges=first-parent -p".
* The attribute subsystem learned to honor the "attr.tree"
configuration variable that specifies which tree to read the
.gitattributes files from.
* "git merge-file" learns a mode to read three variants of the
contents to be merged from blob objects.
* see https://raw.githubusercontent.com/git/git/master/Documentation/RelNotes/2.43.0.txt
Update 2.42.1:
* Fix "git diff" exit code handling
Patchnames
SUSE-SLE-Micro-6.0-48
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for git",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for git fixes the following issues:\n\ngit was updated to 2.45.1:\n\n * CVE-2024-32002: recursive clones on case-insensitive\n filesystems that support symbolic links are susceptible to case\n confusion (bsc#1224168)\n * CVE-2024-32004: arbitrary code execution during local clones\n (bsc#1224170)\n * CVE-2024-32020: file overwriting vulnerability during local\n clones (bsc#1224171)\n * CVE-2024-32021: git may create hardlinks to arbitrary user-\n readable files (bsc#1224172)\n * CVE-2024-32465: arbitrary code execution during clone operations\n (bsc#1224173)\n\nUpdate to 2.45.0:\n\n * Improved efficiency managing repositories with many references\n (\"git init --ref-format=reftable\")\n * \"git checkout -p\" and friends learned that that \"@\" is a\n synonym for \"HEAD\"\n * cli improvements handling refs\n * Expanded a number of commands and options, UI improvements\n * status.showUntrackedFiles now accepts \"true\"\n * git-cherry-pick(1) now automatically drops redundant commits\n with new --empty option\n * The userdiff patterns for C# has been updated.\n\nUpdate to 2.44.0:\n\n * \"git checkout -B \u003cbranch\u003e\" now longer allows switching to a\n branch that is in use on another worktree. The users need to\n use \"--ignore-other-worktrees\" option.\n * Faster server-side rebases with git replay\n * Faster pack generation with multi-pack reuse\n * rebase auto-squashing now works in non-interactive mode\n * pathspec now understands attr, e.g. \u0027:(attr:~binary) for\n selecting non-binaries, or builtin_objectmode for selecting\n items by file mode or other properties\n * Many other cli UI and internal improvements and extensions\n\n- Do not replace apparmor configuration, fixes bsc#1216545\n\nUpdate to 2.43.2:\n\n * https://raw.githubusercontent.com/git/git/master/Documentation/RelNotes/2.43.2.txt\n * Update to a new feature recently added, \"git show-ref --exists\".\n * Rename detection logic ignored the final line of a file if it\n is an incomplete line.\n * \"git diff --no-rename A B\" did not disable rename detection but\n did not trigger an error from the command line parser.\n * \"git diff --no-index file1 file2\" segfaulted while invoking the\n external diff driver, which has been corrected.\n * A failed \"git tag -s\" did not necessarily result in an error\n depending on the crypto backend, which has been corrected.\n * \"git stash\" sometimes was silent even when it failed due to\n unwritable index file, which has been corrected.\n * Recent conversion to allow more than 0/1 in GIT_FLUSH broke the\n mechanism by flipping what yes/no means by mistake, which has\n been corrected.\n\nUpdate to 2.43.1:\n\n * https://raw.githubusercontent.com/git/git/master/Documentation/RelNotes/2.43.1.txt\n\n- gitweb AppArmor profile: allow reading etc/gitweb-common.conf\n (bsc#1218664)\n\n- git moved to /usr/libexec/git/git, update AppArmor profile\n accordingly (bsc#1218588)\n\nUpdate to 2.43.0:\n\n * The \"--rfc\" option of \"git format-patch\" used to be a valid way to\n override an earlier \"--subject-prefix=\u003csomething\u003e\" on the command\n line and replace it with \"[RFC PATCH]\", but from this release, it\n merely prefixes the string \"RFC \" in front of the given subject\n prefix. If you are negatively affected by this change, please use\n \"--subject-prefix=PATCH --rfc\" as a replacement.\n * In Git 2.42, \"git rev-list --stdin\" learned to take non-revisions\n (like \"--not\") from the standard input, but the way such a \"--not\" was\n handled was quite confusing, which has been rethought. The updated\n rule is that \"--not\" given from the command line only affects revs\n given from the command line that comes but not revs read from the\n standard input, and \"--not\" read from the standard input affects\n revs given from the standard input and not revs given from the\n command line.\n * A message written in olden time prevented a branch from getting\n checked out, saying it is already checked out elsewhere. But these\n days, we treat a branch that is being bisected or rebased just like\n a branch that is checked out and protect it from getting modified\n with the same codepath. The message has been rephrased to say that\n the branch is \"in use\" to avoid confusion.\n * Hourly and other schedules of \"git maintenance\" jobs are randomly\n distributed now.\n * \"git cmd -h\" learned to signal which options can be negated by\n listing such options like \"--[no-]opt\".\n * The way authentication related data other than passwords (e.g.,\n oauth token and password expiration data) are stored in libsecret\n keyrings has been rethought.\n * Update the libsecret and wincred credential helpers to correctly\n match which credential to erase; they erased the wrong entry in\n some cases.\n * Git GUI updates.\n * \"git format-patch\" learned a new \"--description-file\" option that\n lets cover letter description to be fed; this can be used on\n detached HEAD where there is no branch description available, and\n also can override the branch description if there is one.\n * Use of the \"--max-pack-size\" option to allow multiple packfiles to\n be created is now supported even when we are sending unreachable\n objects to cruft packs.\n * \"git format-patch --rfc --subject-prefix=\u003cfoo\u003e\" used to ignore the\n \"--subject-prefix\" option and used \"[RFC PATCH]\"; now we will add\n \"RFC\" prefix to whatever subject prefix is specified.\n * \"git log --format\" has been taught the %(decorate) placeholder for\n further customization over what the \"--decorate\" option offers.\n * The default log message created by \"git revert\", when reverting a\n commit that records a revert, has been tweaked, to encourage people\n to describe complex \"revert of revert of revert\" situations better in\n their own words.\n * The command-line completion support (in contrib/) learned to\n complete \"git commit --trailer=\" for possible trailer keys.\n * \"git update-index\" learned the \"--show-index-version\" option to\n inspect the index format version used by the on-disk index file.\n * \"git diff\" learned the \"diff.statNameWidth\" configuration variable,\n to give the default width for the name part in the \"--stat\" output.\n * \"git range-diff --notes=foo\" compared \"log --notes=foo --notes\" of\n the two ranges, instead of using just the specified notes tree,\n which has been corrected to use only the specified notes tree.\n * The command line completion script (in contrib/) can be told to\n complete aliases by including \": git \u003ccmd\u003e ;\" in the alias to tell\n it that the alias should be completed in a similar way to how \"git\n \u003ccmd\u003e\" is completed. The parsing code for the alias has been\n loosened to allow \u0027;\u0027 without an extra space before it.\n * \"git for-each-ref\" and friends learned to apply mailmap to\n authorname and other fields in a more flexible way than using\n separate placeholder letters like %a[eElL] every time we want to\n come up with small variants.\n * \"git repack\" machinery learned to pay attention to the \"--filter=\"\n option.\n * \"git repack\" learned the \"--max-cruft-size\" option to prevent cruft\n packs from growing without bounds.\n * \"git merge-tree\" learned to take strategy backend specific options\n via the \"-X\" option, like \"git merge\" does.\n * \"git log\" and friends learned the \"--dd\" option that is a\n short-hand for \"--diff-merges=first-parent -p\".\n * The attribute subsystem learned to honor the \"attr.tree\"\n configuration variable that specifies which tree to read the\n .gitattributes files from.\n * \"git merge-file\" learns a mode to read three variants of the\n contents to be merged from blob objects.\n * see https://raw.githubusercontent.com/git/git/master/Documentation/RelNotes/2.43.0.txt\n\nUpdate 2.42.1:\n\n * Fix \"git diff\" exit code handling\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-SLE-Micro-6.0-48",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2025_20049-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2025:20049-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-202520049-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2025:20049-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-June/021288.html"
},
{
"category": "self",
"summary": "SUSE Bug 1042640",
"url": "https://bugzilla.suse.com/1042640"
},
{
"category": "self",
"summary": "SUSE Bug 1061041",
"url": "https://bugzilla.suse.com/1061041"
},
{
"category": "self",
"summary": "SUSE Bug 1069468",
"url": "https://bugzilla.suse.com/1069468"
},
{
"category": "self",
"summary": "SUSE Bug 1082023",
"url": "https://bugzilla.suse.com/1082023"
},
{
"category": "self",
"summary": "SUSE Bug 1216545",
"url": "https://bugzilla.suse.com/1216545"
},
{
"category": "self",
"summary": "SUSE Bug 1218588",
"url": "https://bugzilla.suse.com/1218588"
},
{
"category": "self",
"summary": "SUSE Bug 1218664",
"url": "https://bugzilla.suse.com/1218664"
},
{
"category": "self",
"summary": "SUSE Bug 1224168",
"url": "https://bugzilla.suse.com/1224168"
},
{
"category": "self",
"summary": "SUSE Bug 1224170",
"url": "https://bugzilla.suse.com/1224170"
},
{
"category": "self",
"summary": "SUSE Bug 1224171",
"url": "https://bugzilla.suse.com/1224171"
},
{
"category": "self",
"summary": "SUSE Bug 1224172",
"url": "https://bugzilla.suse.com/1224172"
},
{
"category": "self",
"summary": "SUSE Bug 1224173",
"url": "https://bugzilla.suse.com/1224173"
},
{
"category": "self",
"summary": "SUSE Bug 779536",
"url": "https://bugzilla.suse.com/779536"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2005-4900 page",
"url": "https://www.suse.com/security/cve/CVE-2005-4900/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-14867 page",
"url": "https://www.suse.com/security/cve/CVE-2017-14867/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-32002 page",
"url": "https://www.suse.com/security/cve/CVE-2024-32002/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-32004 page",
"url": "https://www.suse.com/security/cve/CVE-2024-32004/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-32020 page",
"url": "https://www.suse.com/security/cve/CVE-2024-32020/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-32021 page",
"url": "https://www.suse.com/security/cve/CVE-2024-32021/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-32465 page",
"url": "https://www.suse.com/security/cve/CVE-2024-32465/"
}
],
"title": "Security update for git",
"tracking": {
"current_release_date": "2025-02-03T08:55:36Z",
"generator": {
"date": "2025-02-03T08:55:36Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2025:20049-1",
"initial_release_date": "2025-02-03T08:55:36Z",
"revision_history": [
{
"date": "2025-02-03T08:55:36Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "git-2.45.1-1.1.aarch64",
"product": {
"name": "git-2.45.1-1.1.aarch64",
"product_id": "git-2.45.1-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-core-2.45.1-1.1.aarch64",
"product": {
"name": "git-core-2.45.1-1.1.aarch64",
"product_id": "git-core-2.45.1-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "perl-Git-2.45.1-1.1.aarch64",
"product": {
"name": "perl-Git-2.45.1-1.1.aarch64",
"product_id": "perl-Git-2.45.1-1.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "git-2.45.1-1.1.s390x",
"product": {
"name": "git-2.45.1-1.1.s390x",
"product_id": "git-2.45.1-1.1.s390x"
}
},
{
"category": "product_version",
"name": "git-core-2.45.1-1.1.s390x",
"product": {
"name": "git-core-2.45.1-1.1.s390x",
"product_id": "git-core-2.45.1-1.1.s390x"
}
},
{
"category": "product_version",
"name": "perl-Git-2.45.1-1.1.s390x",
"product": {
"name": "perl-Git-2.45.1-1.1.s390x",
"product_id": "perl-Git-2.45.1-1.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "git-2.45.1-1.1.x86_64",
"product": {
"name": "git-2.45.1-1.1.x86_64",
"product_id": "git-2.45.1-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-core-2.45.1-1.1.x86_64",
"product": {
"name": "git-core-2.45.1-1.1.x86_64",
"product_id": "git-core-2.45.1-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "perl-Git-2.45.1-1.1.x86_64",
"product": {
"name": "perl-Git-2.45.1-1.1.x86_64",
"product_id": "perl-Git-2.45.1-1.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Micro 6.0",
"product": {
"name": "SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sl-micro:6.0"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.45.1-1.1.aarch64 as component of SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0:git-2.45.1-1.1.aarch64"
},
"product_reference": "git-2.45.1-1.1.aarch64",
"relates_to_product_reference": "SUSE Linux Micro 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.45.1-1.1.s390x as component of SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0:git-2.45.1-1.1.s390x"
},
"product_reference": "git-2.45.1-1.1.s390x",
"relates_to_product_reference": "SUSE Linux Micro 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.45.1-1.1.x86_64 as component of SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0:git-2.45.1-1.1.x86_64"
},
"product_reference": "git-2.45.1-1.1.x86_64",
"relates_to_product_reference": "SUSE Linux Micro 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.45.1-1.1.aarch64 as component of SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0:git-core-2.45.1-1.1.aarch64"
},
"product_reference": "git-core-2.45.1-1.1.aarch64",
"relates_to_product_reference": "SUSE Linux Micro 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.45.1-1.1.s390x as component of SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0:git-core-2.45.1-1.1.s390x"
},
"product_reference": "git-core-2.45.1-1.1.s390x",
"relates_to_product_reference": "SUSE Linux Micro 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.45.1-1.1.x86_64 as component of SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0:git-core-2.45.1-1.1.x86_64"
},
"product_reference": "git-core-2.45.1-1.1.x86_64",
"relates_to_product_reference": "SUSE Linux Micro 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.45.1-1.1.aarch64 as component of SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0:perl-Git-2.45.1-1.1.aarch64"
},
"product_reference": "perl-Git-2.45.1-1.1.aarch64",
"relates_to_product_reference": "SUSE Linux Micro 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.45.1-1.1.s390x as component of SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0:perl-Git-2.45.1-1.1.s390x"
},
"product_reference": "perl-Git-2.45.1-1.1.s390x",
"relates_to_product_reference": "SUSE Linux Micro 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.45.1-1.1.x86_64 as component of SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0:perl-Git-2.45.1-1.1.x86_64"
},
"product_reference": "perl-Git-2.45.1-1.1.x86_64",
"relates_to_product_reference": "SUSE Linux Micro 6.0"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2005-4900",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2005-4900"
}
],
"notes": [
{
"category": "general",
"text": "SHA-1 is not collision resistant, which makes it easier for context-dependent attackers to conduct spoofing attacks, as demonstrated by attacks on the use of SHA-1 in TLS 1.2. NOTE: this CVE exists to provide a common identifier for referencing this SHA-1 issue; the existence of an identifier is not, by itself, a technology recommendation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:git-2.45.1-1.1.aarch64",
"SUSE Linux Micro 6.0:git-2.45.1-1.1.s390x",
"SUSE Linux Micro 6.0:git-2.45.1-1.1.x86_64",
"SUSE Linux Micro 6.0:git-core-2.45.1-1.1.aarch64",
"SUSE Linux Micro 6.0:git-core-2.45.1-1.1.s390x",
"SUSE Linux Micro 6.0:git-core-2.45.1-1.1.x86_64",
"SUSE Linux Micro 6.0:perl-Git-2.45.1-1.1.aarch64",
"SUSE Linux Micro 6.0:perl-Git-2.45.1-1.1.s390x",
"SUSE Linux Micro 6.0:perl-Git-2.45.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2005-4900",
"url": "https://www.suse.com/security/cve/CVE-2005-4900"
},
{
"category": "external",
"summary": "SUSE Bug 1026646 for CVE-2005-4900",
"url": "https://bugzilla.suse.com/1026646"
},
{
"category": "external",
"summary": "SUSE Bug 1026936 for CVE-2005-4900",
"url": "https://bugzilla.suse.com/1026936"
},
{
"category": "external",
"summary": "SUSE Bug 1042640 for CVE-2005-4900",
"url": "https://bugzilla.suse.com/1042640"
},
{
"category": "external",
"summary": "SUSE Bug 1150998 for CVE-2005-4900",
"url": "https://bugzilla.suse.com/1150998"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:git-2.45.1-1.1.aarch64",
"SUSE Linux Micro 6.0:git-2.45.1-1.1.s390x",
"SUSE Linux Micro 6.0:git-2.45.1-1.1.x86_64",
"SUSE Linux Micro 6.0:git-core-2.45.1-1.1.aarch64",
"SUSE Linux Micro 6.0:git-core-2.45.1-1.1.s390x",
"SUSE Linux Micro 6.0:git-core-2.45.1-1.1.x86_64",
"SUSE Linux Micro 6.0:perl-Git-2.45.1-1.1.aarch64",
"SUSE Linux Micro 6.0:perl-Git-2.45.1-1.1.s390x",
"SUSE Linux Micro 6.0:perl-Git-2.45.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"SUSE Linux Micro 6.0:git-2.45.1-1.1.aarch64",
"SUSE Linux Micro 6.0:git-2.45.1-1.1.s390x",
"SUSE Linux Micro 6.0:git-2.45.1-1.1.x86_64",
"SUSE Linux Micro 6.0:git-core-2.45.1-1.1.aarch64",
"SUSE Linux Micro 6.0:git-core-2.45.1-1.1.s390x",
"SUSE Linux Micro 6.0:git-core-2.45.1-1.1.x86_64",
"SUSE Linux Micro 6.0:perl-Git-2.45.1-1.1.aarch64",
"SUSE Linux Micro 6.0:perl-Git-2.45.1-1.1.s390x",
"SUSE Linux Micro 6.0:perl-Git-2.45.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T08:55:36Z",
"details": "moderate"
}
],
"title": "CVE-2005-4900"
},
{
"cve": "CVE-2017-14867",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-14867"
}
],
"notes": [
{
"category": "general",
"text": "Git before 2.10.5, 2.11.x before 2.11.4, 2.12.x before 2.12.5, 2.13.x before 2.13.6, and 2.14.x before 2.14.2 uses unsafe Perl scripts to support subcommands such as cvsserver, which allows attackers to execute arbitrary OS commands via shell metacharacters in a module name. The vulnerable code is reachable via git-shell even without CVS support.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:git-2.45.1-1.1.aarch64",
"SUSE Linux Micro 6.0:git-2.45.1-1.1.s390x",
"SUSE Linux Micro 6.0:git-2.45.1-1.1.x86_64",
"SUSE Linux Micro 6.0:git-core-2.45.1-1.1.aarch64",
"SUSE Linux Micro 6.0:git-core-2.45.1-1.1.s390x",
"SUSE Linux Micro 6.0:git-core-2.45.1-1.1.x86_64",
"SUSE Linux Micro 6.0:perl-Git-2.45.1-1.1.aarch64",
"SUSE Linux Micro 6.0:perl-Git-2.45.1-1.1.s390x",
"SUSE Linux Micro 6.0:perl-Git-2.45.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-14867",
"url": "https://www.suse.com/security/cve/CVE-2017-14867"
},
{
"category": "external",
"summary": "SUSE Bug 1060377 for CVE-2017-14867",
"url": "https://bugzilla.suse.com/1060377"
},
{
"category": "external",
"summary": "SUSE Bug 1060378 for CVE-2017-14867",
"url": "https://bugzilla.suse.com/1060378"
},
{
"category": "external",
"summary": "SUSE Bug 1061041 for CVE-2017-14867",
"url": "https://bugzilla.suse.com/1061041"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:git-2.45.1-1.1.aarch64",
"SUSE Linux Micro 6.0:git-2.45.1-1.1.s390x",
"SUSE Linux Micro 6.0:git-2.45.1-1.1.x86_64",
"SUSE Linux Micro 6.0:git-core-2.45.1-1.1.aarch64",
"SUSE Linux Micro 6.0:git-core-2.45.1-1.1.s390x",
"SUSE Linux Micro 6.0:git-core-2.45.1-1.1.x86_64",
"SUSE Linux Micro 6.0:perl-Git-2.45.1-1.1.aarch64",
"SUSE Linux Micro 6.0:perl-Git-2.45.1-1.1.s390x",
"SUSE Linux Micro 6.0:perl-Git-2.45.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Micro 6.0:git-2.45.1-1.1.aarch64",
"SUSE Linux Micro 6.0:git-2.45.1-1.1.s390x",
"SUSE Linux Micro 6.0:git-2.45.1-1.1.x86_64",
"SUSE Linux Micro 6.0:git-core-2.45.1-1.1.aarch64",
"SUSE Linux Micro 6.0:git-core-2.45.1-1.1.s390x",
"SUSE Linux Micro 6.0:git-core-2.45.1-1.1.x86_64",
"SUSE Linux Micro 6.0:perl-Git-2.45.1-1.1.aarch64",
"SUSE Linux Micro 6.0:perl-Git-2.45.1-1.1.s390x",
"SUSE Linux Micro 6.0:perl-Git-2.45.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T08:55:36Z",
"details": "important"
}
],
"title": "CVE-2017-14867"
},
{
"cve": "CVE-2024-32002",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-32002"
}
],
"notes": [
{
"category": "general",
"text": "Git is a revision control system. Prior to versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4, repositories with submodules can be crafted in a way that exploits a bug in Git whereby it can be fooled into writing files not into the submodule\u0027s worktree but into a `.git/` directory. This allows writing a hook that will be executed while the clone operation is still running, giving the user no opportunity to inspect the code that is being executed. The problem has been patched in versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4. If symbolic link support is disabled in Git (e.g. via `git config --global core.symlinks false`), the described attack won\u0027t work. As always, it is best to avoid cloning repositories from untrusted sources.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:git-2.45.1-1.1.aarch64",
"SUSE Linux Micro 6.0:git-2.45.1-1.1.s390x",
"SUSE Linux Micro 6.0:git-2.45.1-1.1.x86_64",
"SUSE Linux Micro 6.0:git-core-2.45.1-1.1.aarch64",
"SUSE Linux Micro 6.0:git-core-2.45.1-1.1.s390x",
"SUSE Linux Micro 6.0:git-core-2.45.1-1.1.x86_64",
"SUSE Linux Micro 6.0:perl-Git-2.45.1-1.1.aarch64",
"SUSE Linux Micro 6.0:perl-Git-2.45.1-1.1.s390x",
"SUSE Linux Micro 6.0:perl-Git-2.45.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-32002",
"url": "https://www.suse.com/security/cve/CVE-2024-32002"
},
{
"category": "external",
"summary": "SUSE Bug 1224168 for CVE-2024-32002",
"url": "https://bugzilla.suse.com/1224168"
},
{
"category": "external",
"summary": "SUSE Bug 1224170 for CVE-2024-32002",
"url": "https://bugzilla.suse.com/1224170"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:git-2.45.1-1.1.aarch64",
"SUSE Linux Micro 6.0:git-2.45.1-1.1.s390x",
"SUSE Linux Micro 6.0:git-2.45.1-1.1.x86_64",
"SUSE Linux Micro 6.0:git-core-2.45.1-1.1.aarch64",
"SUSE Linux Micro 6.0:git-core-2.45.1-1.1.s390x",
"SUSE Linux Micro 6.0:git-core-2.45.1-1.1.x86_64",
"SUSE Linux Micro 6.0:perl-Git-2.45.1-1.1.aarch64",
"SUSE Linux Micro 6.0:perl-Git-2.45.1-1.1.s390x",
"SUSE Linux Micro 6.0:perl-Git-2.45.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:git-2.45.1-1.1.aarch64",
"SUSE Linux Micro 6.0:git-2.45.1-1.1.s390x",
"SUSE Linux Micro 6.0:git-2.45.1-1.1.x86_64",
"SUSE Linux Micro 6.0:git-core-2.45.1-1.1.aarch64",
"SUSE Linux Micro 6.0:git-core-2.45.1-1.1.s390x",
"SUSE Linux Micro 6.0:git-core-2.45.1-1.1.x86_64",
"SUSE Linux Micro 6.0:perl-Git-2.45.1-1.1.aarch64",
"SUSE Linux Micro 6.0:perl-Git-2.45.1-1.1.s390x",
"SUSE Linux Micro 6.0:perl-Git-2.45.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T08:55:36Z",
"details": "important"
}
],
"title": "CVE-2024-32002"
},
{
"cve": "CVE-2024-32004",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-32004"
}
],
"notes": [
{
"category": "general",
"text": "Git is a revision control system. Prior to versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4, an attacker can prepare a local repository in such a way that, when cloned, will execute arbitrary code during the operation. The problem has been patched in versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4. As a workaround, avoid cloning repositories from untrusted sources.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:git-2.45.1-1.1.aarch64",
"SUSE Linux Micro 6.0:git-2.45.1-1.1.s390x",
"SUSE Linux Micro 6.0:git-2.45.1-1.1.x86_64",
"SUSE Linux Micro 6.0:git-core-2.45.1-1.1.aarch64",
"SUSE Linux Micro 6.0:git-core-2.45.1-1.1.s390x",
"SUSE Linux Micro 6.0:git-core-2.45.1-1.1.x86_64",
"SUSE Linux Micro 6.0:perl-Git-2.45.1-1.1.aarch64",
"SUSE Linux Micro 6.0:perl-Git-2.45.1-1.1.s390x",
"SUSE Linux Micro 6.0:perl-Git-2.45.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-32004",
"url": "https://www.suse.com/security/cve/CVE-2024-32004"
},
{
"category": "external",
"summary": "SUSE Bug 1224170 for CVE-2024-32004",
"url": "https://bugzilla.suse.com/1224170"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:git-2.45.1-1.1.aarch64",
"SUSE Linux Micro 6.0:git-2.45.1-1.1.s390x",
"SUSE Linux Micro 6.0:git-2.45.1-1.1.x86_64",
"SUSE Linux Micro 6.0:git-core-2.45.1-1.1.aarch64",
"SUSE Linux Micro 6.0:git-core-2.45.1-1.1.s390x",
"SUSE Linux Micro 6.0:git-core-2.45.1-1.1.x86_64",
"SUSE Linux Micro 6.0:perl-Git-2.45.1-1.1.aarch64",
"SUSE Linux Micro 6.0:perl-Git-2.45.1-1.1.s390x",
"SUSE Linux Micro 6.0:perl-Git-2.45.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:git-2.45.1-1.1.aarch64",
"SUSE Linux Micro 6.0:git-2.45.1-1.1.s390x",
"SUSE Linux Micro 6.0:git-2.45.1-1.1.x86_64",
"SUSE Linux Micro 6.0:git-core-2.45.1-1.1.aarch64",
"SUSE Linux Micro 6.0:git-core-2.45.1-1.1.s390x",
"SUSE Linux Micro 6.0:git-core-2.45.1-1.1.x86_64",
"SUSE Linux Micro 6.0:perl-Git-2.45.1-1.1.aarch64",
"SUSE Linux Micro 6.0:perl-Git-2.45.1-1.1.s390x",
"SUSE Linux Micro 6.0:perl-Git-2.45.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T08:55:36Z",
"details": "important"
}
],
"title": "CVE-2024-32004"
},
{
"cve": "CVE-2024-32020",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-32020"
}
],
"notes": [
{
"category": "general",
"text": "Git is a revision control system. Prior to versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4, local clones may end up hardlinking files into the target repository\u0027s object database when source and target repository reside on the same disk. If the source repository is owned by a different user, then those hardlinked files may be rewritten at any point in time by the untrusted user. Cloning local repositories will cause Git to either copy or hardlink files of the source repository into the target repository. This significantly speeds up such local clones compared to doing a \"proper\" clone and saves both disk space and compute time. When cloning a repository located on the same disk that is owned by a different user than the current user we also end up creating such hardlinks. These files will continue to be owned and controlled by the potentially-untrusted user and can be rewritten by them at will in the future. The problem has been patched in versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:git-2.45.1-1.1.aarch64",
"SUSE Linux Micro 6.0:git-2.45.1-1.1.s390x",
"SUSE Linux Micro 6.0:git-2.45.1-1.1.x86_64",
"SUSE Linux Micro 6.0:git-core-2.45.1-1.1.aarch64",
"SUSE Linux Micro 6.0:git-core-2.45.1-1.1.s390x",
"SUSE Linux Micro 6.0:git-core-2.45.1-1.1.x86_64",
"SUSE Linux Micro 6.0:perl-Git-2.45.1-1.1.aarch64",
"SUSE Linux Micro 6.0:perl-Git-2.45.1-1.1.s390x",
"SUSE Linux Micro 6.0:perl-Git-2.45.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-32020",
"url": "https://www.suse.com/security/cve/CVE-2024-32020"
},
{
"category": "external",
"summary": "SUSE Bug 1224171 for CVE-2024-32020",
"url": "https://bugzilla.suse.com/1224171"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:git-2.45.1-1.1.aarch64",
"SUSE Linux Micro 6.0:git-2.45.1-1.1.s390x",
"SUSE Linux Micro 6.0:git-2.45.1-1.1.x86_64",
"SUSE Linux Micro 6.0:git-core-2.45.1-1.1.aarch64",
"SUSE Linux Micro 6.0:git-core-2.45.1-1.1.s390x",
"SUSE Linux Micro 6.0:git-core-2.45.1-1.1.x86_64",
"SUSE Linux Micro 6.0:perl-Git-2.45.1-1.1.aarch64",
"SUSE Linux Micro 6.0:perl-Git-2.45.1-1.1.s390x",
"SUSE Linux Micro 6.0:perl-Git-2.45.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.9,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:git-2.45.1-1.1.aarch64",
"SUSE Linux Micro 6.0:git-2.45.1-1.1.s390x",
"SUSE Linux Micro 6.0:git-2.45.1-1.1.x86_64",
"SUSE Linux Micro 6.0:git-core-2.45.1-1.1.aarch64",
"SUSE Linux Micro 6.0:git-core-2.45.1-1.1.s390x",
"SUSE Linux Micro 6.0:git-core-2.45.1-1.1.x86_64",
"SUSE Linux Micro 6.0:perl-Git-2.45.1-1.1.aarch64",
"SUSE Linux Micro 6.0:perl-Git-2.45.1-1.1.s390x",
"SUSE Linux Micro 6.0:perl-Git-2.45.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T08:55:36Z",
"details": "moderate"
}
],
"title": "CVE-2024-32020"
},
{
"cve": "CVE-2024-32021",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-32021"
}
],
"notes": [
{
"category": "general",
"text": "Git is a revision control system. Prior to versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4, when cloning a local source repository that contains symlinks via the filesystem, Git may create hardlinks to arbitrary user-readable files on the same filesystem as the target repository in the `objects/` directory. Cloning a local repository over the filesystem may creating hardlinks to arbitrary user-owned files on the same filesystem in the target Git repository\u0027s `objects/` directory. When cloning a repository over the filesystem (without explicitly specifying the `file://` protocol or `--no-local`), the optimizations for local cloning\nwill be used, which include attempting to hard link the object files instead of copying them. While the code includes checks against symbolic links in the source repository, which were added during the fix for CVE-2022-39253, these checks can still be raced because the hard link operation ultimately follows symlinks. If the object on the filesystem appears as a file during the check, and then a symlink during the operation, this will allow the adversary to bypass the check and create hardlinks in the destination objects directory to arbitrary, user-readable files. The problem has been patched in versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:git-2.45.1-1.1.aarch64",
"SUSE Linux Micro 6.0:git-2.45.1-1.1.s390x",
"SUSE Linux Micro 6.0:git-2.45.1-1.1.x86_64",
"SUSE Linux Micro 6.0:git-core-2.45.1-1.1.aarch64",
"SUSE Linux Micro 6.0:git-core-2.45.1-1.1.s390x",
"SUSE Linux Micro 6.0:git-core-2.45.1-1.1.x86_64",
"SUSE Linux Micro 6.0:perl-Git-2.45.1-1.1.aarch64",
"SUSE Linux Micro 6.0:perl-Git-2.45.1-1.1.s390x",
"SUSE Linux Micro 6.0:perl-Git-2.45.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-32021",
"url": "https://www.suse.com/security/cve/CVE-2024-32021"
},
{
"category": "external",
"summary": "SUSE Bug 1224172 for CVE-2024-32021",
"url": "https://bugzilla.suse.com/1224172"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:git-2.45.1-1.1.aarch64",
"SUSE Linux Micro 6.0:git-2.45.1-1.1.s390x",
"SUSE Linux Micro 6.0:git-2.45.1-1.1.x86_64",
"SUSE Linux Micro 6.0:git-core-2.45.1-1.1.aarch64",
"SUSE Linux Micro 6.0:git-core-2.45.1-1.1.s390x",
"SUSE Linux Micro 6.0:git-core-2.45.1-1.1.x86_64",
"SUSE Linux Micro 6.0:perl-Git-2.45.1-1.1.aarch64",
"SUSE Linux Micro 6.0:perl-Git-2.45.1-1.1.s390x",
"SUSE Linux Micro 6.0:perl-Git-2.45.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.9,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:git-2.45.1-1.1.aarch64",
"SUSE Linux Micro 6.0:git-2.45.1-1.1.s390x",
"SUSE Linux Micro 6.0:git-2.45.1-1.1.x86_64",
"SUSE Linux Micro 6.0:git-core-2.45.1-1.1.aarch64",
"SUSE Linux Micro 6.0:git-core-2.45.1-1.1.s390x",
"SUSE Linux Micro 6.0:git-core-2.45.1-1.1.x86_64",
"SUSE Linux Micro 6.0:perl-Git-2.45.1-1.1.aarch64",
"SUSE Linux Micro 6.0:perl-Git-2.45.1-1.1.s390x",
"SUSE Linux Micro 6.0:perl-Git-2.45.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T08:55:36Z",
"details": "moderate"
}
],
"title": "CVE-2024-32021"
},
{
"cve": "CVE-2024-32465",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-32465"
}
],
"notes": [
{
"category": "general",
"text": "Git is a revision control system. The Git project recommends to avoid working in untrusted repositories, and instead to clone it first with `git clone --no-local` to obtain a clean copy. Git has specific protections to make that a safe operation even with an untrusted source repository, but vulnerabilities allow those protections to be bypassed. In the context of cloning local repositories owned by other users, this vulnerability has been covered in CVE-2024-32004. But there are circumstances where the fixes for CVE-2024-32004 are not enough: For example, when obtaining a `.zip` file containing a full copy of a Git repository, it should not be trusted by default to be safe, as e.g. hooks could be configured to run within the context of that repository. The problem has been patched in versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4. As a workaround, avoid using Git in repositories that have been obtained via archives from untrusted sources.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:git-2.45.1-1.1.aarch64",
"SUSE Linux Micro 6.0:git-2.45.1-1.1.s390x",
"SUSE Linux Micro 6.0:git-2.45.1-1.1.x86_64",
"SUSE Linux Micro 6.0:git-core-2.45.1-1.1.aarch64",
"SUSE Linux Micro 6.0:git-core-2.45.1-1.1.s390x",
"SUSE Linux Micro 6.0:git-core-2.45.1-1.1.x86_64",
"SUSE Linux Micro 6.0:perl-Git-2.45.1-1.1.aarch64",
"SUSE Linux Micro 6.0:perl-Git-2.45.1-1.1.s390x",
"SUSE Linux Micro 6.0:perl-Git-2.45.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-32465",
"url": "https://www.suse.com/security/cve/CVE-2024-32465"
},
{
"category": "external",
"summary": "SUSE Bug 1224170 for CVE-2024-32465",
"url": "https://bugzilla.suse.com/1224170"
},
{
"category": "external",
"summary": "SUSE Bug 1224173 for CVE-2024-32465",
"url": "https://bugzilla.suse.com/1224173"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:git-2.45.1-1.1.aarch64",
"SUSE Linux Micro 6.0:git-2.45.1-1.1.s390x",
"SUSE Linux Micro 6.0:git-2.45.1-1.1.x86_64",
"SUSE Linux Micro 6.0:git-core-2.45.1-1.1.aarch64",
"SUSE Linux Micro 6.0:git-core-2.45.1-1.1.s390x",
"SUSE Linux Micro 6.0:git-core-2.45.1-1.1.x86_64",
"SUSE Linux Micro 6.0:perl-Git-2.45.1-1.1.aarch64",
"SUSE Linux Micro 6.0:perl-Git-2.45.1-1.1.s390x",
"SUSE Linux Micro 6.0:perl-Git-2.45.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:git-2.45.1-1.1.aarch64",
"SUSE Linux Micro 6.0:git-2.45.1-1.1.s390x",
"SUSE Linux Micro 6.0:git-2.45.1-1.1.x86_64",
"SUSE Linux Micro 6.0:git-core-2.45.1-1.1.aarch64",
"SUSE Linux Micro 6.0:git-core-2.45.1-1.1.s390x",
"SUSE Linux Micro 6.0:git-core-2.45.1-1.1.x86_64",
"SUSE Linux Micro 6.0:perl-Git-2.45.1-1.1.aarch64",
"SUSE Linux Micro 6.0:perl-Git-2.45.1-1.1.s390x",
"SUSE Linux Micro 6.0:perl-Git-2.45.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-02-03T08:55:36Z",
"details": "important"
}
],
"title": "CVE-2024-32465"
}
]
}
SUSE-SU-2025:0197-1
Vulnerability from csaf_suse - Published: 2025-01-21 10:03 - Updated: 2025-01-21 10:03Summary
Security update for git
Notes
Title of the patch
Security update for git
Description of the patch
This update for git fixes the following issues:
- CVE-2024-32002: Fix recursive clones on case-insensitive filesystems that support symbolic links are susceptible to case confusion. (bsc#1224168)
- CVE-2024-32004: Fixed arbitrary code execution during local clones. (bsc#1224170)
- CVE-2024-32020: Fix file overwriting vulnerability during local clones. (bsc#1224171)
- CVE-2024-32021: Git may create hardlinks to arbitrary user-readable files. (bsc#1224172)
- CVE-2024-32465: Fixed arbitrary code execution during clone operations. (bsc#1224173)
- CVE-2024-50349: Passwords for trusted sites could be sent to untrusted sites (bsc#1235600).
- CVE-2024-52006: Carriage Returns via the credential protocol to credential helpers (bsc#1235601).
Patchnames
SUSE-2025-197,SUSE-SLE-SERVER-12-SP5-LTSS-2025-197,SUSE-SLE-SERVER-12-SP5-LTSS-EXTENDED-SECURITY-2025-197
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for git",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for git fixes the following issues:\n\n- CVE-2024-32002: Fix recursive clones on case-insensitive filesystems that support symbolic links are susceptible to case confusion. (bsc#1224168)\n- CVE-2024-32004: Fixed arbitrary code execution during local clones. (bsc#1224170)\n- CVE-2024-32020: Fix file overwriting vulnerability during local clones. (bsc#1224171)\n- CVE-2024-32021: Git may create hardlinks to arbitrary user-readable files. (bsc#1224172)\n- CVE-2024-32465: Fixed arbitrary code execution during clone operations. (bsc#1224173)\n- CVE-2024-50349: Passwords for trusted sites could be sent to untrusted sites (bsc#1235600).\n- CVE-2024-52006: Carriage Returns via the credential protocol to credential helpers (bsc#1235601).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2025-197,SUSE-SLE-SERVER-12-SP5-LTSS-2025-197,SUSE-SLE-SERVER-12-SP5-LTSS-EXTENDED-SECURITY-2025-197",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2025_0197-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2025:0197-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250197-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2025:0197-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-January/020179.html"
},
{
"category": "self",
"summary": "SUSE Bug 1224168",
"url": "https://bugzilla.suse.com/1224168"
},
{
"category": "self",
"summary": "SUSE Bug 1224170",
"url": "https://bugzilla.suse.com/1224170"
},
{
"category": "self",
"summary": "SUSE Bug 1224171",
"url": "https://bugzilla.suse.com/1224171"
},
{
"category": "self",
"summary": "SUSE Bug 1224172",
"url": "https://bugzilla.suse.com/1224172"
},
{
"category": "self",
"summary": "SUSE Bug 1224173",
"url": "https://bugzilla.suse.com/1224173"
},
{
"category": "self",
"summary": "SUSE Bug 1235600",
"url": "https://bugzilla.suse.com/1235600"
},
{
"category": "self",
"summary": "SUSE Bug 1235601",
"url": "https://bugzilla.suse.com/1235601"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-32002 page",
"url": "https://www.suse.com/security/cve/CVE-2024-32002/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-32004 page",
"url": "https://www.suse.com/security/cve/CVE-2024-32004/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-32020 page",
"url": "https://www.suse.com/security/cve/CVE-2024-32020/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-32021 page",
"url": "https://www.suse.com/security/cve/CVE-2024-32021/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-32465 page",
"url": "https://www.suse.com/security/cve/CVE-2024-32465/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50349 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50349/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-52006 page",
"url": "https://www.suse.com/security/cve/CVE-2024-52006/"
}
],
"title": "Security update for git",
"tracking": {
"current_release_date": "2025-01-21T10:03:35Z",
"generator": {
"date": "2025-01-21T10:03:35Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2025:0197-1",
"initial_release_date": "2025-01-21T10:03:35Z",
"revision_history": [
{
"date": "2025-01-21T10:03:35Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "git-2.26.2-27.78.1.aarch64",
"product": {
"name": "git-2.26.2-27.78.1.aarch64",
"product_id": "git-2.26.2-27.78.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-arch-2.26.2-27.78.1.aarch64",
"product": {
"name": "git-arch-2.26.2-27.78.1.aarch64",
"product_id": "git-arch-2.26.2-27.78.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-core-2.26.2-27.78.1.aarch64",
"product": {
"name": "git-core-2.26.2-27.78.1.aarch64",
"product_id": "git-core-2.26.2-27.78.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-credential-gnome-keyring-2.26.2-27.78.1.aarch64",
"product": {
"name": "git-credential-gnome-keyring-2.26.2-27.78.1.aarch64",
"product_id": "git-credential-gnome-keyring-2.26.2-27.78.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-2.26.2-27.78.1.aarch64",
"product": {
"name": "git-credential-libsecret-2.26.2-27.78.1.aarch64",
"product_id": "git-credential-libsecret-2.26.2-27.78.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-cvs-2.26.2-27.78.1.aarch64",
"product": {
"name": "git-cvs-2.26.2-27.78.1.aarch64",
"product_id": "git-cvs-2.26.2-27.78.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-daemon-2.26.2-27.78.1.aarch64",
"product": {
"name": "git-daemon-2.26.2-27.78.1.aarch64",
"product_id": "git-daemon-2.26.2-27.78.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-email-2.26.2-27.78.1.aarch64",
"product": {
"name": "git-email-2.26.2-27.78.1.aarch64",
"product_id": "git-email-2.26.2-27.78.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-gui-2.26.2-27.78.1.aarch64",
"product": {
"name": "git-gui-2.26.2-27.78.1.aarch64",
"product_id": "git-gui-2.26.2-27.78.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-p4-2.26.2-27.78.1.aarch64",
"product": {
"name": "git-p4-2.26.2-27.78.1.aarch64",
"product_id": "git-p4-2.26.2-27.78.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-svn-2.26.2-27.78.1.aarch64",
"product": {
"name": "git-svn-2.26.2-27.78.1.aarch64",
"product_id": "git-svn-2.26.2-27.78.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-web-2.26.2-27.78.1.aarch64",
"product": {
"name": "git-web-2.26.2-27.78.1.aarch64",
"product_id": "git-web-2.26.2-27.78.1.aarch64"
}
},
{
"category": "product_version",
"name": "gitk-2.26.2-27.78.1.aarch64",
"product": {
"name": "gitk-2.26.2-27.78.1.aarch64",
"product_id": "gitk-2.26.2-27.78.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "git-2.26.2-27.78.1.i586",
"product": {
"name": "git-2.26.2-27.78.1.i586",
"product_id": "git-2.26.2-27.78.1.i586"
}
},
{
"category": "product_version",
"name": "git-arch-2.26.2-27.78.1.i586",
"product": {
"name": "git-arch-2.26.2-27.78.1.i586",
"product_id": "git-arch-2.26.2-27.78.1.i586"
}
},
{
"category": "product_version",
"name": "git-core-2.26.2-27.78.1.i586",
"product": {
"name": "git-core-2.26.2-27.78.1.i586",
"product_id": "git-core-2.26.2-27.78.1.i586"
}
},
{
"category": "product_version",
"name": "git-credential-gnome-keyring-2.26.2-27.78.1.i586",
"product": {
"name": "git-credential-gnome-keyring-2.26.2-27.78.1.i586",
"product_id": "git-credential-gnome-keyring-2.26.2-27.78.1.i586"
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-2.26.2-27.78.1.i586",
"product": {
"name": "git-credential-libsecret-2.26.2-27.78.1.i586",
"product_id": "git-credential-libsecret-2.26.2-27.78.1.i586"
}
},
{
"category": "product_version",
"name": "git-cvs-2.26.2-27.78.1.i586",
"product": {
"name": "git-cvs-2.26.2-27.78.1.i586",
"product_id": "git-cvs-2.26.2-27.78.1.i586"
}
},
{
"category": "product_version",
"name": "git-daemon-2.26.2-27.78.1.i586",
"product": {
"name": "git-daemon-2.26.2-27.78.1.i586",
"product_id": "git-daemon-2.26.2-27.78.1.i586"
}
},
{
"category": "product_version",
"name": "git-email-2.26.2-27.78.1.i586",
"product": {
"name": "git-email-2.26.2-27.78.1.i586",
"product_id": "git-email-2.26.2-27.78.1.i586"
}
},
{
"category": "product_version",
"name": "git-gui-2.26.2-27.78.1.i586",
"product": {
"name": "git-gui-2.26.2-27.78.1.i586",
"product_id": "git-gui-2.26.2-27.78.1.i586"
}
},
{
"category": "product_version",
"name": "git-p4-2.26.2-27.78.1.i586",
"product": {
"name": "git-p4-2.26.2-27.78.1.i586",
"product_id": "git-p4-2.26.2-27.78.1.i586"
}
},
{
"category": "product_version",
"name": "git-svn-2.26.2-27.78.1.i586",
"product": {
"name": "git-svn-2.26.2-27.78.1.i586",
"product_id": "git-svn-2.26.2-27.78.1.i586"
}
},
{
"category": "product_version",
"name": "git-web-2.26.2-27.78.1.i586",
"product": {
"name": "git-web-2.26.2-27.78.1.i586",
"product_id": "git-web-2.26.2-27.78.1.i586"
}
},
{
"category": "product_version",
"name": "gitk-2.26.2-27.78.1.i586",
"product": {
"name": "gitk-2.26.2-27.78.1.i586",
"product_id": "gitk-2.26.2-27.78.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "git-doc-2.26.2-27.78.1.noarch",
"product": {
"name": "git-doc-2.26.2-27.78.1.noarch",
"product_id": "git-doc-2.26.2-27.78.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "git-2.26.2-27.78.1.ppc64le",
"product": {
"name": "git-2.26.2-27.78.1.ppc64le",
"product_id": "git-2.26.2-27.78.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-arch-2.26.2-27.78.1.ppc64le",
"product": {
"name": "git-arch-2.26.2-27.78.1.ppc64le",
"product_id": "git-arch-2.26.2-27.78.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-core-2.26.2-27.78.1.ppc64le",
"product": {
"name": "git-core-2.26.2-27.78.1.ppc64le",
"product_id": "git-core-2.26.2-27.78.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-credential-gnome-keyring-2.26.2-27.78.1.ppc64le",
"product": {
"name": "git-credential-gnome-keyring-2.26.2-27.78.1.ppc64le",
"product_id": "git-credential-gnome-keyring-2.26.2-27.78.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-2.26.2-27.78.1.ppc64le",
"product": {
"name": "git-credential-libsecret-2.26.2-27.78.1.ppc64le",
"product_id": "git-credential-libsecret-2.26.2-27.78.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-cvs-2.26.2-27.78.1.ppc64le",
"product": {
"name": "git-cvs-2.26.2-27.78.1.ppc64le",
"product_id": "git-cvs-2.26.2-27.78.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-daemon-2.26.2-27.78.1.ppc64le",
"product": {
"name": "git-daemon-2.26.2-27.78.1.ppc64le",
"product_id": "git-daemon-2.26.2-27.78.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-email-2.26.2-27.78.1.ppc64le",
"product": {
"name": "git-email-2.26.2-27.78.1.ppc64le",
"product_id": "git-email-2.26.2-27.78.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-gui-2.26.2-27.78.1.ppc64le",
"product": {
"name": "git-gui-2.26.2-27.78.1.ppc64le",
"product_id": "git-gui-2.26.2-27.78.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-p4-2.26.2-27.78.1.ppc64le",
"product": {
"name": "git-p4-2.26.2-27.78.1.ppc64le",
"product_id": "git-p4-2.26.2-27.78.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-svn-2.26.2-27.78.1.ppc64le",
"product": {
"name": "git-svn-2.26.2-27.78.1.ppc64le",
"product_id": "git-svn-2.26.2-27.78.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-web-2.26.2-27.78.1.ppc64le",
"product": {
"name": "git-web-2.26.2-27.78.1.ppc64le",
"product_id": "git-web-2.26.2-27.78.1.ppc64le"
}
},
{
"category": "product_version",
"name": "gitk-2.26.2-27.78.1.ppc64le",
"product": {
"name": "gitk-2.26.2-27.78.1.ppc64le",
"product_id": "gitk-2.26.2-27.78.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "git-2.26.2-27.78.1.s390",
"product": {
"name": "git-2.26.2-27.78.1.s390",
"product_id": "git-2.26.2-27.78.1.s390"
}
},
{
"category": "product_version",
"name": "git-arch-2.26.2-27.78.1.s390",
"product": {
"name": "git-arch-2.26.2-27.78.1.s390",
"product_id": "git-arch-2.26.2-27.78.1.s390"
}
},
{
"category": "product_version",
"name": "git-core-2.26.2-27.78.1.s390",
"product": {
"name": "git-core-2.26.2-27.78.1.s390",
"product_id": "git-core-2.26.2-27.78.1.s390"
}
},
{
"category": "product_version",
"name": "git-credential-gnome-keyring-2.26.2-27.78.1.s390",
"product": {
"name": "git-credential-gnome-keyring-2.26.2-27.78.1.s390",
"product_id": "git-credential-gnome-keyring-2.26.2-27.78.1.s390"
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-2.26.2-27.78.1.s390",
"product": {
"name": "git-credential-libsecret-2.26.2-27.78.1.s390",
"product_id": "git-credential-libsecret-2.26.2-27.78.1.s390"
}
},
{
"category": "product_version",
"name": "git-cvs-2.26.2-27.78.1.s390",
"product": {
"name": "git-cvs-2.26.2-27.78.1.s390",
"product_id": "git-cvs-2.26.2-27.78.1.s390"
}
},
{
"category": "product_version",
"name": "git-daemon-2.26.2-27.78.1.s390",
"product": {
"name": "git-daemon-2.26.2-27.78.1.s390",
"product_id": "git-daemon-2.26.2-27.78.1.s390"
}
},
{
"category": "product_version",
"name": "git-email-2.26.2-27.78.1.s390",
"product": {
"name": "git-email-2.26.2-27.78.1.s390",
"product_id": "git-email-2.26.2-27.78.1.s390"
}
},
{
"category": "product_version",
"name": "git-gui-2.26.2-27.78.1.s390",
"product": {
"name": "git-gui-2.26.2-27.78.1.s390",
"product_id": "git-gui-2.26.2-27.78.1.s390"
}
},
{
"category": "product_version",
"name": "git-p4-2.26.2-27.78.1.s390",
"product": {
"name": "git-p4-2.26.2-27.78.1.s390",
"product_id": "git-p4-2.26.2-27.78.1.s390"
}
},
{
"category": "product_version",
"name": "git-svn-2.26.2-27.78.1.s390",
"product": {
"name": "git-svn-2.26.2-27.78.1.s390",
"product_id": "git-svn-2.26.2-27.78.1.s390"
}
},
{
"category": "product_version",
"name": "git-web-2.26.2-27.78.1.s390",
"product": {
"name": "git-web-2.26.2-27.78.1.s390",
"product_id": "git-web-2.26.2-27.78.1.s390"
}
},
{
"category": "product_version",
"name": "gitk-2.26.2-27.78.1.s390",
"product": {
"name": "gitk-2.26.2-27.78.1.s390",
"product_id": "gitk-2.26.2-27.78.1.s390"
}
}
],
"category": "architecture",
"name": "s390"
},
{
"branches": [
{
"category": "product_version",
"name": "git-2.26.2-27.78.1.s390x",
"product": {
"name": "git-2.26.2-27.78.1.s390x",
"product_id": "git-2.26.2-27.78.1.s390x"
}
},
{
"category": "product_version",
"name": "git-arch-2.26.2-27.78.1.s390x",
"product": {
"name": "git-arch-2.26.2-27.78.1.s390x",
"product_id": "git-arch-2.26.2-27.78.1.s390x"
}
},
{
"category": "product_version",
"name": "git-core-2.26.2-27.78.1.s390x",
"product": {
"name": "git-core-2.26.2-27.78.1.s390x",
"product_id": "git-core-2.26.2-27.78.1.s390x"
}
},
{
"category": "product_version",
"name": "git-credential-gnome-keyring-2.26.2-27.78.1.s390x",
"product": {
"name": "git-credential-gnome-keyring-2.26.2-27.78.1.s390x",
"product_id": "git-credential-gnome-keyring-2.26.2-27.78.1.s390x"
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-2.26.2-27.78.1.s390x",
"product": {
"name": "git-credential-libsecret-2.26.2-27.78.1.s390x",
"product_id": "git-credential-libsecret-2.26.2-27.78.1.s390x"
}
},
{
"category": "product_version",
"name": "git-cvs-2.26.2-27.78.1.s390x",
"product": {
"name": "git-cvs-2.26.2-27.78.1.s390x",
"product_id": "git-cvs-2.26.2-27.78.1.s390x"
}
},
{
"category": "product_version",
"name": "git-daemon-2.26.2-27.78.1.s390x",
"product": {
"name": "git-daemon-2.26.2-27.78.1.s390x",
"product_id": "git-daemon-2.26.2-27.78.1.s390x"
}
},
{
"category": "product_version",
"name": "git-email-2.26.2-27.78.1.s390x",
"product": {
"name": "git-email-2.26.2-27.78.1.s390x",
"product_id": "git-email-2.26.2-27.78.1.s390x"
}
},
{
"category": "product_version",
"name": "git-gui-2.26.2-27.78.1.s390x",
"product": {
"name": "git-gui-2.26.2-27.78.1.s390x",
"product_id": "git-gui-2.26.2-27.78.1.s390x"
}
},
{
"category": "product_version",
"name": "git-p4-2.26.2-27.78.1.s390x",
"product": {
"name": "git-p4-2.26.2-27.78.1.s390x",
"product_id": "git-p4-2.26.2-27.78.1.s390x"
}
},
{
"category": "product_version",
"name": "git-svn-2.26.2-27.78.1.s390x",
"product": {
"name": "git-svn-2.26.2-27.78.1.s390x",
"product_id": "git-svn-2.26.2-27.78.1.s390x"
}
},
{
"category": "product_version",
"name": "git-web-2.26.2-27.78.1.s390x",
"product": {
"name": "git-web-2.26.2-27.78.1.s390x",
"product_id": "git-web-2.26.2-27.78.1.s390x"
}
},
{
"category": "product_version",
"name": "gitk-2.26.2-27.78.1.s390x",
"product": {
"name": "gitk-2.26.2-27.78.1.s390x",
"product_id": "gitk-2.26.2-27.78.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "git-2.26.2-27.78.1.x86_64",
"product": {
"name": "git-2.26.2-27.78.1.x86_64",
"product_id": "git-2.26.2-27.78.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-arch-2.26.2-27.78.1.x86_64",
"product": {
"name": "git-arch-2.26.2-27.78.1.x86_64",
"product_id": "git-arch-2.26.2-27.78.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-core-2.26.2-27.78.1.x86_64",
"product": {
"name": "git-core-2.26.2-27.78.1.x86_64",
"product_id": "git-core-2.26.2-27.78.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-credential-gnome-keyring-2.26.2-27.78.1.x86_64",
"product": {
"name": "git-credential-gnome-keyring-2.26.2-27.78.1.x86_64",
"product_id": "git-credential-gnome-keyring-2.26.2-27.78.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-2.26.2-27.78.1.x86_64",
"product": {
"name": "git-credential-libsecret-2.26.2-27.78.1.x86_64",
"product_id": "git-credential-libsecret-2.26.2-27.78.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-cvs-2.26.2-27.78.1.x86_64",
"product": {
"name": "git-cvs-2.26.2-27.78.1.x86_64",
"product_id": "git-cvs-2.26.2-27.78.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-daemon-2.26.2-27.78.1.x86_64",
"product": {
"name": "git-daemon-2.26.2-27.78.1.x86_64",
"product_id": "git-daemon-2.26.2-27.78.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-email-2.26.2-27.78.1.x86_64",
"product": {
"name": "git-email-2.26.2-27.78.1.x86_64",
"product_id": "git-email-2.26.2-27.78.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-gui-2.26.2-27.78.1.x86_64",
"product": {
"name": "git-gui-2.26.2-27.78.1.x86_64",
"product_id": "git-gui-2.26.2-27.78.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-p4-2.26.2-27.78.1.x86_64",
"product": {
"name": "git-p4-2.26.2-27.78.1.x86_64",
"product_id": "git-p4-2.26.2-27.78.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-svn-2.26.2-27.78.1.x86_64",
"product": {
"name": "git-svn-2.26.2-27.78.1.x86_64",
"product_id": "git-svn-2.26.2-27.78.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-web-2.26.2-27.78.1.x86_64",
"product": {
"name": "git-web-2.26.2-27.78.1.x86_64",
"product_id": "git-web-2.26.2-27.78.1.x86_64"
}
},
{
"category": "product_version",
"name": "gitk-2.26.2-27.78.1.x86_64",
"product": {
"name": "gitk-2.26.2-27.78.1.x86_64",
"product_id": "gitk-2.26.2-27.78.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12 SP5-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:12:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5",
"product": {
"name": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5",
"product_id": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss-extended-security:12:sp5"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.26.2-27.78.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.78.1.aarch64"
},
"product_reference": "git-2.26.2-27.78.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.26.2-27.78.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.78.1.ppc64le"
},
"product_reference": "git-2.26.2-27.78.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.26.2-27.78.1.s390x as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.78.1.s390x"
},
"product_reference": "git-2.26.2-27.78.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.26.2-27.78.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.78.1.x86_64"
},
"product_reference": "git-2.26.2-27.78.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.26.2-27.78.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.78.1.aarch64"
},
"product_reference": "git-core-2.26.2-27.78.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.26.2-27.78.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.78.1.ppc64le"
},
"product_reference": "git-core-2.26.2-27.78.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.26.2-27.78.1.s390x as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.78.1.s390x"
},
"product_reference": "git-core-2.26.2-27.78.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.26.2-27.78.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.78.1.x86_64"
},
"product_reference": "git-core-2.26.2-27.78.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.26.2-27.78.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.78.1.aarch64"
},
"product_reference": "git-cvs-2.26.2-27.78.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.26.2-27.78.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.78.1.ppc64le"
},
"product_reference": "git-cvs-2.26.2-27.78.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.26.2-27.78.1.s390x as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.78.1.s390x"
},
"product_reference": "git-cvs-2.26.2-27.78.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.26.2-27.78.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.78.1.x86_64"
},
"product_reference": "git-cvs-2.26.2-27.78.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.26.2-27.78.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.78.1.aarch64"
},
"product_reference": "git-daemon-2.26.2-27.78.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.26.2-27.78.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.78.1.ppc64le"
},
"product_reference": "git-daemon-2.26.2-27.78.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.26.2-27.78.1.s390x as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.78.1.s390x"
},
"product_reference": "git-daemon-2.26.2-27.78.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.26.2-27.78.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.78.1.x86_64"
},
"product_reference": "git-daemon-2.26.2-27.78.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.26.2-27.78.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.78.1.aarch64"
},
"product_reference": "git-email-2.26.2-27.78.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.26.2-27.78.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.78.1.ppc64le"
},
"product_reference": "git-email-2.26.2-27.78.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.26.2-27.78.1.s390x as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.78.1.s390x"
},
"product_reference": "git-email-2.26.2-27.78.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.26.2-27.78.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.78.1.x86_64"
},
"product_reference": "git-email-2.26.2-27.78.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.26.2-27.78.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.78.1.aarch64"
},
"product_reference": "git-gui-2.26.2-27.78.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.26.2-27.78.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.78.1.ppc64le"
},
"product_reference": "git-gui-2.26.2-27.78.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.26.2-27.78.1.s390x as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.78.1.s390x"
},
"product_reference": "git-gui-2.26.2-27.78.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.26.2-27.78.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.78.1.x86_64"
},
"product_reference": "git-gui-2.26.2-27.78.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.26.2-27.78.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.78.1.aarch64"
},
"product_reference": "git-svn-2.26.2-27.78.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.26.2-27.78.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.78.1.ppc64le"
},
"product_reference": "git-svn-2.26.2-27.78.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.26.2-27.78.1.s390x as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.78.1.s390x"
},
"product_reference": "git-svn-2.26.2-27.78.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.26.2-27.78.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.78.1.x86_64"
},
"product_reference": "git-svn-2.26.2-27.78.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.26.2-27.78.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.78.1.aarch64"
},
"product_reference": "git-web-2.26.2-27.78.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.26.2-27.78.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.78.1.ppc64le"
},
"product_reference": "git-web-2.26.2-27.78.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.26.2-27.78.1.s390x as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.78.1.s390x"
},
"product_reference": "git-web-2.26.2-27.78.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.26.2-27.78.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.78.1.x86_64"
},
"product_reference": "git-web-2.26.2-27.78.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.26.2-27.78.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.78.1.aarch64"
},
"product_reference": "gitk-2.26.2-27.78.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.26.2-27.78.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.78.1.ppc64le"
},
"product_reference": "gitk-2.26.2-27.78.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.26.2-27.78.1.s390x as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.78.1.s390x"
},
"product_reference": "gitk-2.26.2-27.78.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.26.2-27.78.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.78.1.x86_64"
},
"product_reference": "gitk-2.26.2-27.78.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.26.2-27.78.1.x86_64 as component of SUSE Linux Enterprise Server LTSS Extended Security 12 SP5",
"product_id": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-2.26.2-27.78.1.x86_64"
},
"product_reference": "git-2.26.2-27.78.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.26.2-27.78.1.x86_64 as component of SUSE Linux Enterprise Server LTSS Extended Security 12 SP5",
"product_id": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-core-2.26.2-27.78.1.x86_64"
},
"product_reference": "git-core-2.26.2-27.78.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.26.2-27.78.1.x86_64 as component of SUSE Linux Enterprise Server LTSS Extended Security 12 SP5",
"product_id": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-cvs-2.26.2-27.78.1.x86_64"
},
"product_reference": "git-cvs-2.26.2-27.78.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.26.2-27.78.1.x86_64 as component of SUSE Linux Enterprise Server LTSS Extended Security 12 SP5",
"product_id": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-daemon-2.26.2-27.78.1.x86_64"
},
"product_reference": "git-daemon-2.26.2-27.78.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.26.2-27.78.1.x86_64 as component of SUSE Linux Enterprise Server LTSS Extended Security 12 SP5",
"product_id": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-email-2.26.2-27.78.1.x86_64"
},
"product_reference": "git-email-2.26.2-27.78.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.26.2-27.78.1.x86_64 as component of SUSE Linux Enterprise Server LTSS Extended Security 12 SP5",
"product_id": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-gui-2.26.2-27.78.1.x86_64"
},
"product_reference": "git-gui-2.26.2-27.78.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.26.2-27.78.1.x86_64 as component of SUSE Linux Enterprise Server LTSS Extended Security 12 SP5",
"product_id": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-svn-2.26.2-27.78.1.x86_64"
},
"product_reference": "git-svn-2.26.2-27.78.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.26.2-27.78.1.x86_64 as component of SUSE Linux Enterprise Server LTSS Extended Security 12 SP5",
"product_id": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-web-2.26.2-27.78.1.x86_64"
},
"product_reference": "git-web-2.26.2-27.78.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.26.2-27.78.1.x86_64 as component of SUSE Linux Enterprise Server LTSS Extended Security 12 SP5",
"product_id": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gitk-2.26.2-27.78.1.x86_64"
},
"product_reference": "gitk-2.26.2-27.78.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-32002",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-32002"
}
],
"notes": [
{
"category": "general",
"text": "Git is a revision control system. Prior to versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4, repositories with submodules can be crafted in a way that exploits a bug in Git whereby it can be fooled into writing files not into the submodule\u0027s worktree but into a `.git/` directory. This allows writing a hook that will be executed while the clone operation is still running, giving the user no opportunity to inspect the code that is being executed. The problem has been patched in versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4. If symbolic link support is disabled in Git (e.g. via `git config --global core.symlinks false`), the described attack won\u0027t work. As always, it is best to avoid cloning repositories from untrusted sources.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-core-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-cvs-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-daemon-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-email-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-gui-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-svn-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-web-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gitk-2.26.2-27.78.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-32002",
"url": "https://www.suse.com/security/cve/CVE-2024-32002"
},
{
"category": "external",
"summary": "SUSE Bug 1224168 for CVE-2024-32002",
"url": "https://bugzilla.suse.com/1224168"
},
{
"category": "external",
"summary": "SUSE Bug 1224170 for CVE-2024-32002",
"url": "https://bugzilla.suse.com/1224170"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-core-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-cvs-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-daemon-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-email-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-gui-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-svn-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-web-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gitk-2.26.2-27.78.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-core-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-cvs-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-daemon-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-email-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-gui-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-svn-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-web-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gitk-2.26.2-27.78.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-21T10:03:35Z",
"details": "important"
}
],
"title": "CVE-2024-32002"
},
{
"cve": "CVE-2024-32004",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-32004"
}
],
"notes": [
{
"category": "general",
"text": "Git is a revision control system. Prior to versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4, an attacker can prepare a local repository in such a way that, when cloned, will execute arbitrary code during the operation. The problem has been patched in versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4. As a workaround, avoid cloning repositories from untrusted sources.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-core-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-cvs-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-daemon-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-email-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-gui-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-svn-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-web-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gitk-2.26.2-27.78.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-32004",
"url": "https://www.suse.com/security/cve/CVE-2024-32004"
},
{
"category": "external",
"summary": "SUSE Bug 1224170 for CVE-2024-32004",
"url": "https://bugzilla.suse.com/1224170"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-core-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-cvs-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-daemon-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-email-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-gui-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-svn-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-web-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gitk-2.26.2-27.78.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-core-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-cvs-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-daemon-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-email-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-gui-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-svn-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-web-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gitk-2.26.2-27.78.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-21T10:03:35Z",
"details": "important"
}
],
"title": "CVE-2024-32004"
},
{
"cve": "CVE-2024-32020",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-32020"
}
],
"notes": [
{
"category": "general",
"text": "Git is a revision control system. Prior to versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4, local clones may end up hardlinking files into the target repository\u0027s object database when source and target repository reside on the same disk. If the source repository is owned by a different user, then those hardlinked files may be rewritten at any point in time by the untrusted user. Cloning local repositories will cause Git to either copy or hardlink files of the source repository into the target repository. This significantly speeds up such local clones compared to doing a \"proper\" clone and saves both disk space and compute time. When cloning a repository located on the same disk that is owned by a different user than the current user we also end up creating such hardlinks. These files will continue to be owned and controlled by the potentially-untrusted user and can be rewritten by them at will in the future. The problem has been patched in versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-core-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-cvs-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-daemon-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-email-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-gui-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-svn-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-web-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gitk-2.26.2-27.78.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-32020",
"url": "https://www.suse.com/security/cve/CVE-2024-32020"
},
{
"category": "external",
"summary": "SUSE Bug 1224171 for CVE-2024-32020",
"url": "https://bugzilla.suse.com/1224171"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-core-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-cvs-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-daemon-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-email-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-gui-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-svn-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-web-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gitk-2.26.2-27.78.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.9,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-core-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-cvs-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-daemon-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-email-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-gui-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-svn-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-web-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gitk-2.26.2-27.78.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-21T10:03:35Z",
"details": "moderate"
}
],
"title": "CVE-2024-32020"
},
{
"cve": "CVE-2024-32021",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-32021"
}
],
"notes": [
{
"category": "general",
"text": "Git is a revision control system. Prior to versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4, when cloning a local source repository that contains symlinks via the filesystem, Git may create hardlinks to arbitrary user-readable files on the same filesystem as the target repository in the `objects/` directory. Cloning a local repository over the filesystem may creating hardlinks to arbitrary user-owned files on the same filesystem in the target Git repository\u0027s `objects/` directory. When cloning a repository over the filesystem (without explicitly specifying the `file://` protocol or `--no-local`), the optimizations for local cloning\nwill be used, which include attempting to hard link the object files instead of copying them. While the code includes checks against symbolic links in the source repository, which were added during the fix for CVE-2022-39253, these checks can still be raced because the hard link operation ultimately follows symlinks. If the object on the filesystem appears as a file during the check, and then a symlink during the operation, this will allow the adversary to bypass the check and create hardlinks in the destination objects directory to arbitrary, user-readable files. The problem has been patched in versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-core-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-cvs-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-daemon-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-email-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-gui-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-svn-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-web-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gitk-2.26.2-27.78.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-32021",
"url": "https://www.suse.com/security/cve/CVE-2024-32021"
},
{
"category": "external",
"summary": "SUSE Bug 1224172 for CVE-2024-32021",
"url": "https://bugzilla.suse.com/1224172"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-core-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-cvs-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-daemon-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-email-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-gui-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-svn-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-web-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gitk-2.26.2-27.78.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.9,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-core-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-cvs-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-daemon-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-email-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-gui-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-svn-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-web-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gitk-2.26.2-27.78.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-21T10:03:35Z",
"details": "moderate"
}
],
"title": "CVE-2024-32021"
},
{
"cve": "CVE-2024-32465",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-32465"
}
],
"notes": [
{
"category": "general",
"text": "Git is a revision control system. The Git project recommends to avoid working in untrusted repositories, and instead to clone it first with `git clone --no-local` to obtain a clean copy. Git has specific protections to make that a safe operation even with an untrusted source repository, but vulnerabilities allow those protections to be bypassed. In the context of cloning local repositories owned by other users, this vulnerability has been covered in CVE-2024-32004. But there are circumstances where the fixes for CVE-2024-32004 are not enough: For example, when obtaining a `.zip` file containing a full copy of a Git repository, it should not be trusted by default to be safe, as e.g. hooks could be configured to run within the context of that repository. The problem has been patched in versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4. As a workaround, avoid using Git in repositories that have been obtained via archives from untrusted sources.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-core-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-cvs-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-daemon-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-email-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-gui-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-svn-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-web-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gitk-2.26.2-27.78.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-32465",
"url": "https://www.suse.com/security/cve/CVE-2024-32465"
},
{
"category": "external",
"summary": "SUSE Bug 1224170 for CVE-2024-32465",
"url": "https://bugzilla.suse.com/1224170"
},
{
"category": "external",
"summary": "SUSE Bug 1224173 for CVE-2024-32465",
"url": "https://bugzilla.suse.com/1224173"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-core-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-cvs-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-daemon-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-email-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-gui-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-svn-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-web-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gitk-2.26.2-27.78.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-core-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-cvs-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-daemon-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-email-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-gui-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-svn-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-web-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gitk-2.26.2-27.78.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-21T10:03:35Z",
"details": "important"
}
],
"title": "CVE-2024-32465"
},
{
"cve": "CVE-2024-50349",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50349"
}
],
"notes": [
{
"category": "general",
"text": "Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full access to internals. When Git asks for credentials via a terminal prompt (i.e. without using any credential helper), it prints out the host name for which the user is expected to provide a username and/or a password. At this stage, any URL-encoded parts have been decoded already, and are printed verbatim. This allows attackers to craft URLs that contain ANSI escape sequences that the terminal interpret to confuse users e.g. into providing passwords for trusted Git hosting sites when in fact they are then sent to untrusted sites that are under the attacker\u0027s control. This issue has been patch via commits `7725b81` and `c903985` which are included in release versions v2.48.1, v2.47.2, v2.46.3, v2.45.3, v2.44.3, v2.43.6, v2.42.4, v2.41.3, and v2.40.4. Users are advised to upgrade. Users unable to upgrade should avoid cloning from untrusted URLs, especially recursive clones.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-core-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-cvs-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-daemon-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-email-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-gui-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-svn-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-web-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gitk-2.26.2-27.78.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50349",
"url": "https://www.suse.com/security/cve/CVE-2024-50349"
},
{
"category": "external",
"summary": "SUSE Bug 1235600 for CVE-2024-50349",
"url": "https://bugzilla.suse.com/1235600"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-core-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-cvs-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-daemon-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-email-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-gui-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-svn-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-web-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gitk-2.26.2-27.78.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.1,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-core-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-cvs-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-daemon-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-email-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-gui-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-svn-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-web-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gitk-2.26.2-27.78.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-21T10:03:35Z",
"details": "moderate"
}
],
"title": "CVE-2024-50349"
},
{
"cve": "CVE-2024-52006",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-52006"
}
],
"notes": [
{
"category": "general",
"text": "Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full access to internals. Git defines a line-based protocol that is used to exchange information between Git and Git credential helpers. Some ecosystems (most notably, .NET and node.js) interpret single Carriage Return characters as newlines, which renders the protections against CVE-2020-5260 incomplete for credential helpers that treat Carriage Returns in this way. This issue has been addressed in commit `b01b9b8` which is included in release versions v2.48.1, v2.47.2, v2.46.3, v2.45.3, v2.44.3, v2.43.6, v2.42.4, v2.41.3, and v2.40.4. Users are advised to upgrade. Users unable to upgrade should avoid cloning from untrusted URLs, especially recursive clones.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-core-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-cvs-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-daemon-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-email-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-gui-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-svn-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-web-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gitk-2.26.2-27.78.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-52006",
"url": "https://www.suse.com/security/cve/CVE-2024-52006"
},
{
"category": "external",
"summary": "SUSE Bug 1235601 for CVE-2024-52006",
"url": "https://bugzilla.suse.com/1235601"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-core-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-cvs-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-daemon-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-email-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-gui-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-svn-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-web-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gitk-2.26.2-27.78.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.78.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.78.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.78.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-core-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-cvs-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-daemon-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-email-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-gui-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-svn-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-web-2.26.2-27.78.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gitk-2.26.2-27.78.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-21T10:03:35Z",
"details": "moderate"
}
],
"title": "CVE-2024-52006"
}
]
}
RHSA-2024:4083
Vulnerability from csaf_redhat - Published: 2024-06-25 08:30 - Updated: 2025-11-21 19:04Summary
Red Hat Security Advisory: git security update
Notes
Topic
An update for git is now available for Red Hat Enterprise Linux 9.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Git is a distributed revision control system with a decentralized architecture. As opposed to centralized version control systems with a client-server model, Git ensures that each working copy of a Git repository is an exact copy with complete revision history. This not only allows the user to work on and contribute to projects without the need to have permission to push the changes to their official repositories, but also makes it possible for the user to work with no network connection.
Security Fix(es):
* git: Recursive clones RCE (CVE-2024-32002)
* git: RCE while cloning local repos (CVE-2024-32004)
* git: additional local RCE (CVE-2024-32465)
* git: insecure hardlinks (CVE-2024-32020)
* git: symlink bypass (CVE-2024-32021)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for git is now available for Red Hat Enterprise Linux 9.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Git is a distributed revision control system with a decentralized architecture. As opposed to centralized version control systems with a client-server model, Git ensures that each working copy of a Git repository is an exact copy with complete revision history. This not only allows the user to work on and contribute to projects without the need to have permission to push the changes to their official repositories, but also makes it possible for the user to work with no network connection.\n\nSecurity Fix(es):\n\n* git: Recursive clones RCE (CVE-2024-32002)\n\n* git: RCE while cloning local repos (CVE-2024-32004)\n\n* git: additional local RCE (CVE-2024-32465)\n\n* git: insecure hardlinks (CVE-2024-32020)\n\n* git: symlink bypass (CVE-2024-32021)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:4083",
"url": "https://access.redhat.com/errata/RHSA-2024:4083"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2280421",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280421"
},
{
"category": "external",
"summary": "2280428",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280428"
},
{
"category": "external",
"summary": "2280446",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280446"
},
{
"category": "external",
"summary": "2280466",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280466"
},
{
"category": "external",
"summary": "2280484",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280484"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_4083.json"
}
],
"title": "Red Hat Security Advisory: git security update",
"tracking": {
"current_release_date": "2025-11-21T19:04:31+00:00",
"generator": {
"date": "2025-11-21T19:04:31+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.12"
}
},
"id": "RHSA-2024:4083",
"initial_release_date": "2024-06-25T08:30:30+00:00",
"revision_history": [
{
"date": "2024-06-25T08:30:30+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-06-25T08:30:30+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-21T19:04:31+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream (v. 9)",
"product": {
"name": "Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:9::appstream"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "git-0:2.43.5-1.el9_4.src",
"product": {
"name": "git-0:2.43.5-1.el9_4.src",
"product_id": "git-0:2.43.5-1.el9_4.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git@2.43.5-1.el9_4?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "git-0:2.43.5-1.el9_4.aarch64",
"product": {
"name": "git-0:2.43.5-1.el9_4.aarch64",
"product_id": "git-0:2.43.5-1.el9_4.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git@2.43.5-1.el9_4?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-core-0:2.43.5-1.el9_4.aarch64",
"product": {
"name": "git-core-0:2.43.5-1.el9_4.aarch64",
"product_id": "git-core-0:2.43.5-1.el9_4.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core@2.43.5-1.el9_4?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-0:2.43.5-1.el9_4.aarch64",
"product": {
"name": "git-credential-libsecret-0:2.43.5-1.el9_4.aarch64",
"product_id": "git-credential-libsecret-0:2.43.5-1.el9_4.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret@2.43.5-1.el9_4?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-daemon-0:2.43.5-1.el9_4.aarch64",
"product": {
"name": "git-daemon-0:2.43.5-1.el9_4.aarch64",
"product_id": "git-daemon-0:2.43.5-1.el9_4.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon@2.43.5-1.el9_4?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-subtree-0:2.43.5-1.el9_4.aarch64",
"product": {
"name": "git-subtree-0:2.43.5-1.el9_4.aarch64",
"product_id": "git-subtree-0:2.43.5-1.el9_4.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-subtree@2.43.5-1.el9_4?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-debugsource-0:2.43.5-1.el9_4.aarch64",
"product": {
"name": "git-debugsource-0:2.43.5-1.el9_4.aarch64",
"product_id": "git-debugsource-0:2.43.5-1.el9_4.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debugsource@2.43.5-1.el9_4?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-core-debuginfo-0:2.43.5-1.el9_4.aarch64",
"product": {
"name": "git-core-debuginfo-0:2.43.5-1.el9_4.aarch64",
"product_id": "git-core-debuginfo-0:2.43.5-1.el9_4.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core-debuginfo@2.43.5-1.el9_4?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.aarch64",
"product": {
"name": "git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.aarch64",
"product_id": "git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret-debuginfo@2.43.5-1.el9_4?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-daemon-debuginfo-0:2.43.5-1.el9_4.aarch64",
"product": {
"name": "git-daemon-debuginfo-0:2.43.5-1.el9_4.aarch64",
"product_id": "git-daemon-debuginfo-0:2.43.5-1.el9_4.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon-debuginfo@2.43.5-1.el9_4?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-debuginfo-0:2.43.5-1.el9_4.aarch64",
"product": {
"name": "git-debuginfo-0:2.43.5-1.el9_4.aarch64",
"product_id": "git-debuginfo-0:2.43.5-1.el9_4.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debuginfo@2.43.5-1.el9_4?arch=aarch64"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "git-0:2.43.5-1.el9_4.ppc64le",
"product": {
"name": "git-0:2.43.5-1.el9_4.ppc64le",
"product_id": "git-0:2.43.5-1.el9_4.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git@2.43.5-1.el9_4?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-core-0:2.43.5-1.el9_4.ppc64le",
"product": {
"name": "git-core-0:2.43.5-1.el9_4.ppc64le",
"product_id": "git-core-0:2.43.5-1.el9_4.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core@2.43.5-1.el9_4?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-0:2.43.5-1.el9_4.ppc64le",
"product": {
"name": "git-credential-libsecret-0:2.43.5-1.el9_4.ppc64le",
"product_id": "git-credential-libsecret-0:2.43.5-1.el9_4.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret@2.43.5-1.el9_4?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-daemon-0:2.43.5-1.el9_4.ppc64le",
"product": {
"name": "git-daemon-0:2.43.5-1.el9_4.ppc64le",
"product_id": "git-daemon-0:2.43.5-1.el9_4.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon@2.43.5-1.el9_4?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-subtree-0:2.43.5-1.el9_4.ppc64le",
"product": {
"name": "git-subtree-0:2.43.5-1.el9_4.ppc64le",
"product_id": "git-subtree-0:2.43.5-1.el9_4.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-subtree@2.43.5-1.el9_4?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-debugsource-0:2.43.5-1.el9_4.ppc64le",
"product": {
"name": "git-debugsource-0:2.43.5-1.el9_4.ppc64le",
"product_id": "git-debugsource-0:2.43.5-1.el9_4.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debugsource@2.43.5-1.el9_4?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-core-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"product": {
"name": "git-core-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"product_id": "git-core-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core-debuginfo@2.43.5-1.el9_4?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"product": {
"name": "git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"product_id": "git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret-debuginfo@2.43.5-1.el9_4?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-daemon-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"product": {
"name": "git-daemon-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"product_id": "git-daemon-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon-debuginfo@2.43.5-1.el9_4?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"product": {
"name": "git-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"product_id": "git-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debuginfo@2.43.5-1.el9_4?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "git-0:2.43.5-1.el9_4.x86_64",
"product": {
"name": "git-0:2.43.5-1.el9_4.x86_64",
"product_id": "git-0:2.43.5-1.el9_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git@2.43.5-1.el9_4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-core-0:2.43.5-1.el9_4.x86_64",
"product": {
"name": "git-core-0:2.43.5-1.el9_4.x86_64",
"product_id": "git-core-0:2.43.5-1.el9_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core@2.43.5-1.el9_4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-0:2.43.5-1.el9_4.x86_64",
"product": {
"name": "git-credential-libsecret-0:2.43.5-1.el9_4.x86_64",
"product_id": "git-credential-libsecret-0:2.43.5-1.el9_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret@2.43.5-1.el9_4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-daemon-0:2.43.5-1.el9_4.x86_64",
"product": {
"name": "git-daemon-0:2.43.5-1.el9_4.x86_64",
"product_id": "git-daemon-0:2.43.5-1.el9_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon@2.43.5-1.el9_4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-subtree-0:2.43.5-1.el9_4.x86_64",
"product": {
"name": "git-subtree-0:2.43.5-1.el9_4.x86_64",
"product_id": "git-subtree-0:2.43.5-1.el9_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-subtree@2.43.5-1.el9_4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-debugsource-0:2.43.5-1.el9_4.x86_64",
"product": {
"name": "git-debugsource-0:2.43.5-1.el9_4.x86_64",
"product_id": "git-debugsource-0:2.43.5-1.el9_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debugsource@2.43.5-1.el9_4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-core-debuginfo-0:2.43.5-1.el9_4.x86_64",
"product": {
"name": "git-core-debuginfo-0:2.43.5-1.el9_4.x86_64",
"product_id": "git-core-debuginfo-0:2.43.5-1.el9_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core-debuginfo@2.43.5-1.el9_4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.x86_64",
"product": {
"name": "git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.x86_64",
"product_id": "git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret-debuginfo@2.43.5-1.el9_4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-daemon-debuginfo-0:2.43.5-1.el9_4.x86_64",
"product": {
"name": "git-daemon-debuginfo-0:2.43.5-1.el9_4.x86_64",
"product_id": "git-daemon-debuginfo-0:2.43.5-1.el9_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon-debuginfo@2.43.5-1.el9_4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-debuginfo-0:2.43.5-1.el9_4.x86_64",
"product": {
"name": "git-debuginfo-0:2.43.5-1.el9_4.x86_64",
"product_id": "git-debuginfo-0:2.43.5-1.el9_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debuginfo@2.43.5-1.el9_4?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "git-0:2.43.5-1.el9_4.s390x",
"product": {
"name": "git-0:2.43.5-1.el9_4.s390x",
"product_id": "git-0:2.43.5-1.el9_4.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git@2.43.5-1.el9_4?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-core-0:2.43.5-1.el9_4.s390x",
"product": {
"name": "git-core-0:2.43.5-1.el9_4.s390x",
"product_id": "git-core-0:2.43.5-1.el9_4.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core@2.43.5-1.el9_4?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-0:2.43.5-1.el9_4.s390x",
"product": {
"name": "git-credential-libsecret-0:2.43.5-1.el9_4.s390x",
"product_id": "git-credential-libsecret-0:2.43.5-1.el9_4.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret@2.43.5-1.el9_4?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-daemon-0:2.43.5-1.el9_4.s390x",
"product": {
"name": "git-daemon-0:2.43.5-1.el9_4.s390x",
"product_id": "git-daemon-0:2.43.5-1.el9_4.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon@2.43.5-1.el9_4?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-subtree-0:2.43.5-1.el9_4.s390x",
"product": {
"name": "git-subtree-0:2.43.5-1.el9_4.s390x",
"product_id": "git-subtree-0:2.43.5-1.el9_4.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-subtree@2.43.5-1.el9_4?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-debugsource-0:2.43.5-1.el9_4.s390x",
"product": {
"name": "git-debugsource-0:2.43.5-1.el9_4.s390x",
"product_id": "git-debugsource-0:2.43.5-1.el9_4.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debugsource@2.43.5-1.el9_4?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-core-debuginfo-0:2.43.5-1.el9_4.s390x",
"product": {
"name": "git-core-debuginfo-0:2.43.5-1.el9_4.s390x",
"product_id": "git-core-debuginfo-0:2.43.5-1.el9_4.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core-debuginfo@2.43.5-1.el9_4?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.s390x",
"product": {
"name": "git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.s390x",
"product_id": "git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret-debuginfo@2.43.5-1.el9_4?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-daemon-debuginfo-0:2.43.5-1.el9_4.s390x",
"product": {
"name": "git-daemon-debuginfo-0:2.43.5-1.el9_4.s390x",
"product_id": "git-daemon-debuginfo-0:2.43.5-1.el9_4.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon-debuginfo@2.43.5-1.el9_4?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-debuginfo-0:2.43.5-1.el9_4.s390x",
"product": {
"name": "git-debuginfo-0:2.43.5-1.el9_4.s390x",
"product_id": "git-debuginfo-0:2.43.5-1.el9_4.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debuginfo@2.43.5-1.el9_4?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "git-all-0:2.43.5-1.el9_4.noarch",
"product": {
"name": "git-all-0:2.43.5-1.el9_4.noarch",
"product_id": "git-all-0:2.43.5-1.el9_4.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-all@2.43.5-1.el9_4?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "git-core-doc-0:2.43.5-1.el9_4.noarch",
"product": {
"name": "git-core-doc-0:2.43.5-1.el9_4.noarch",
"product_id": "git-core-doc-0:2.43.5-1.el9_4.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core-doc@2.43.5-1.el9_4?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "git-email-0:2.43.5-1.el9_4.noarch",
"product": {
"name": "git-email-0:2.43.5-1.el9_4.noarch",
"product_id": "git-email-0:2.43.5-1.el9_4.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-email@2.43.5-1.el9_4?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "git-gui-0:2.43.5-1.el9_4.noarch",
"product": {
"name": "git-gui-0:2.43.5-1.el9_4.noarch",
"product_id": "git-gui-0:2.43.5-1.el9_4.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-gui@2.43.5-1.el9_4?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "git-instaweb-0:2.43.5-1.el9_4.noarch",
"product": {
"name": "git-instaweb-0:2.43.5-1.el9_4.noarch",
"product_id": "git-instaweb-0:2.43.5-1.el9_4.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-instaweb@2.43.5-1.el9_4?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "git-svn-0:2.43.5-1.el9_4.noarch",
"product": {
"name": "git-svn-0:2.43.5-1.el9_4.noarch",
"product_id": "git-svn-0:2.43.5-1.el9_4.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-svn@2.43.5-1.el9_4?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "gitk-0:2.43.5-1.el9_4.noarch",
"product": {
"name": "gitk-0:2.43.5-1.el9_4.noarch",
"product_id": "gitk-0:2.43.5-1.el9_4.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/gitk@2.43.5-1.el9_4?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "gitweb-0:2.43.5-1.el9_4.noarch",
"product": {
"name": "gitweb-0:2.43.5-1.el9_4.noarch",
"product_id": "gitweb-0:2.43.5-1.el9_4.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/gitweb@2.43.5-1.el9_4?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "perl-Git-0:2.43.5-1.el9_4.noarch",
"product": {
"name": "perl-Git-0:2.43.5-1.el9_4.noarch",
"product_id": "perl-Git-0:2.43.5-1.el9_4.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/perl-Git@2.43.5-1.el9_4?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "perl-Git-SVN-0:2.43.5-1.el9_4.noarch",
"product": {
"name": "perl-Git-SVN-0:2.43.5-1.el9_4.noarch",
"product_id": "perl-Git-SVN-0:2.43.5-1.el9_4.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/perl-Git-SVN@2.43.5-1.el9_4?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "git-0:2.43.5-1.el9_4.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.aarch64"
},
"product_reference": "git-0:2.43.5-1.el9_4.aarch64",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-0:2.43.5-1.el9_4.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.ppc64le"
},
"product_reference": "git-0:2.43.5-1.el9_4.ppc64le",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-0:2.43.5-1.el9_4.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.s390x"
},
"product_reference": "git-0:2.43.5-1.el9_4.s390x",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-0:2.43.5-1.el9_4.src as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.src"
},
"product_reference": "git-0:2.43.5-1.el9_4.src",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-0:2.43.5-1.el9_4.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.x86_64"
},
"product_reference": "git-0:2.43.5-1.el9_4.x86_64",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-all-0:2.43.5-1.el9_4.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:git-all-0:2.43.5-1.el9_4.noarch"
},
"product_reference": "git-all-0:2.43.5-1.el9_4.noarch",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-0:2.43.5-1.el9_4.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.aarch64"
},
"product_reference": "git-core-0:2.43.5-1.el9_4.aarch64",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-0:2.43.5-1.el9_4.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.ppc64le"
},
"product_reference": "git-core-0:2.43.5-1.el9_4.ppc64le",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-0:2.43.5-1.el9_4.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.s390x"
},
"product_reference": "git-core-0:2.43.5-1.el9_4.s390x",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-0:2.43.5-1.el9_4.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.x86_64"
},
"product_reference": "git-core-0:2.43.5-1.el9_4.x86_64",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-debuginfo-0:2.43.5-1.el9_4.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.aarch64"
},
"product_reference": "git-core-debuginfo-0:2.43.5-1.el9_4.aarch64",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-debuginfo-0:2.43.5-1.el9_4.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.ppc64le"
},
"product_reference": "git-core-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-debuginfo-0:2.43.5-1.el9_4.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.s390x"
},
"product_reference": "git-core-debuginfo-0:2.43.5-1.el9_4.s390x",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-debuginfo-0:2.43.5-1.el9_4.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.x86_64"
},
"product_reference": "git-core-debuginfo-0:2.43.5-1.el9_4.x86_64",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-doc-0:2.43.5-1.el9_4.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:git-core-doc-0:2.43.5-1.el9_4.noarch"
},
"product_reference": "git-core-doc-0:2.43.5-1.el9_4.noarch",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-0:2.43.5-1.el9_4.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.aarch64"
},
"product_reference": "git-credential-libsecret-0:2.43.5-1.el9_4.aarch64",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-0:2.43.5-1.el9_4.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.ppc64le"
},
"product_reference": "git-credential-libsecret-0:2.43.5-1.el9_4.ppc64le",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-0:2.43.5-1.el9_4.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.s390x"
},
"product_reference": "git-credential-libsecret-0:2.43.5-1.el9_4.s390x",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-0:2.43.5-1.el9_4.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.x86_64"
},
"product_reference": "git-credential-libsecret-0:2.43.5-1.el9_4.x86_64",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.aarch64"
},
"product_reference": "git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.aarch64",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.ppc64le"
},
"product_reference": "git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.s390x"
},
"product_reference": "git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.s390x",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.x86_64"
},
"product_reference": "git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.x86_64",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-0:2.43.5-1.el9_4.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.aarch64"
},
"product_reference": "git-daemon-0:2.43.5-1.el9_4.aarch64",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-0:2.43.5-1.el9_4.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.ppc64le"
},
"product_reference": "git-daemon-0:2.43.5-1.el9_4.ppc64le",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-0:2.43.5-1.el9_4.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.s390x"
},
"product_reference": "git-daemon-0:2.43.5-1.el9_4.s390x",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-0:2.43.5-1.el9_4.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.x86_64"
},
"product_reference": "git-daemon-0:2.43.5-1.el9_4.x86_64",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-debuginfo-0:2.43.5-1.el9_4.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.aarch64"
},
"product_reference": "git-daemon-debuginfo-0:2.43.5-1.el9_4.aarch64",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-debuginfo-0:2.43.5-1.el9_4.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.ppc64le"
},
"product_reference": "git-daemon-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-debuginfo-0:2.43.5-1.el9_4.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.s390x"
},
"product_reference": "git-daemon-debuginfo-0:2.43.5-1.el9_4.s390x",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-debuginfo-0:2.43.5-1.el9_4.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.x86_64"
},
"product_reference": "git-daemon-debuginfo-0:2.43.5-1.el9_4.x86_64",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debuginfo-0:2.43.5-1.el9_4.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.aarch64"
},
"product_reference": "git-debuginfo-0:2.43.5-1.el9_4.aarch64",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debuginfo-0:2.43.5-1.el9_4.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.ppc64le"
},
"product_reference": "git-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debuginfo-0:2.43.5-1.el9_4.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.s390x"
},
"product_reference": "git-debuginfo-0:2.43.5-1.el9_4.s390x",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debuginfo-0:2.43.5-1.el9_4.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.x86_64"
},
"product_reference": "git-debuginfo-0:2.43.5-1.el9_4.x86_64",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debugsource-0:2.43.5-1.el9_4.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.aarch64"
},
"product_reference": "git-debugsource-0:2.43.5-1.el9_4.aarch64",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debugsource-0:2.43.5-1.el9_4.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.ppc64le"
},
"product_reference": "git-debugsource-0:2.43.5-1.el9_4.ppc64le",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debugsource-0:2.43.5-1.el9_4.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.s390x"
},
"product_reference": "git-debugsource-0:2.43.5-1.el9_4.s390x",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debugsource-0:2.43.5-1.el9_4.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.x86_64"
},
"product_reference": "git-debugsource-0:2.43.5-1.el9_4.x86_64",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-0:2.43.5-1.el9_4.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:git-email-0:2.43.5-1.el9_4.noarch"
},
"product_reference": "git-email-0:2.43.5-1.el9_4.noarch",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-0:2.43.5-1.el9_4.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:git-gui-0:2.43.5-1.el9_4.noarch"
},
"product_reference": "git-gui-0:2.43.5-1.el9_4.noarch",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-instaweb-0:2.43.5-1.el9_4.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:git-instaweb-0:2.43.5-1.el9_4.noarch"
},
"product_reference": "git-instaweb-0:2.43.5-1.el9_4.noarch",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-subtree-0:2.43.5-1.el9_4.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.aarch64"
},
"product_reference": "git-subtree-0:2.43.5-1.el9_4.aarch64",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-subtree-0:2.43.5-1.el9_4.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.ppc64le"
},
"product_reference": "git-subtree-0:2.43.5-1.el9_4.ppc64le",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-subtree-0:2.43.5-1.el9_4.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.s390x"
},
"product_reference": "git-subtree-0:2.43.5-1.el9_4.s390x",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-subtree-0:2.43.5-1.el9_4.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.x86_64"
},
"product_reference": "git-subtree-0:2.43.5-1.el9_4.x86_64",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-0:2.43.5-1.el9_4.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:git-svn-0:2.43.5-1.el9_4.noarch"
},
"product_reference": "git-svn-0:2.43.5-1.el9_4.noarch",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-0:2.43.5-1.el9_4.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:gitk-0:2.43.5-1.el9_4.noarch"
},
"product_reference": "gitk-0:2.43.5-1.el9_4.noarch",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitweb-0:2.43.5-1.el9_4.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:gitweb-0:2.43.5-1.el9_4.noarch"
},
"product_reference": "gitweb-0:2.43.5-1.el9_4.noarch",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-0:2.43.5-1.el9_4.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:perl-Git-0:2.43.5-1.el9_4.noarch"
},
"product_reference": "perl-Git-0:2.43.5-1.el9_4.noarch",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-SVN-0:2.43.5-1.el9_4.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.5-1.el9_4.noarch"
},
"product_reference": "perl-Git-SVN-0:2.43.5-1.el9_4.noarch",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-32002",
"cwe": {
"id": "CWE-434",
"name": "Unrestricted Upload of File with Dangerous Type"
},
"discovery_date": "2024-05-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2280421"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in Git. This vulnerability allows the malicious manipulation of repositories containing submodules, exploiting a bug that enables the writing of files into the .git/ directory instead of the submodule\u0027s intended worktree. This manipulation facilitates the execution of arbitrary code during the cloning process, bypassing user inspection and control.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "git: Recursive clones RCE",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "While the described bug in Git presents a significant security concern, it falls short of being categorized as Critical due to several factors. The exploit requires a specific set of conditions, such as repositories with submodules and the presence of symbolic link support. Additionally, successful exploitation relies on users cloning repositories from untrusted sources, limiting its scope compared to critical vulnerabilities that may be remotely exploitable or affect a broader range of use cases. However, the potential impact of remote code execution during cloning operations underscores the importance of promptly applying patches and exercising caution when interacting with Git repositories, emphasizing its significant severity within the realm of software security.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.src",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-all-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-doc-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-email-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-gui-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-instaweb-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-svn-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:gitk-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:gitweb-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:perl-Git-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.5-1.el9_4.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-32002"
},
{
"category": "external",
"summary": "RHBZ#2280421",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280421"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-32002",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-32002"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-32002",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-32002"
},
{
"category": "external",
"summary": "https://github.com/git/git/security/advisories/GHSA-8h77-4q3w-gfgv",
"url": "https://github.com/git/git/security/advisories/GHSA-8h77-4q3w-gfgv"
}
],
"release_date": "2024-05-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-06-25T08:30:30+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.src",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-all-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-doc-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-email-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-gui-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-instaweb-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-svn-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:gitk-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:gitweb-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:perl-Git-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.5-1.el9_4.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:4083"
},
{
"category": "workaround",
"details": "One preventative measure is to disable symbolic link support. This can be accomplished by running the command git config --global core.symlinks false. Another temporary option is to avoid using the --recurse-submodules setting with untrusted git repos.",
"product_ids": [
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.src",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-all-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-doc-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-email-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-gui-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-instaweb-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-svn-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:gitk-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:gitweb-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:perl-Git-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.5-1.el9_4.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.0,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.src",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-all-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-doc-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-email-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-gui-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-instaweb-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-svn-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:gitk-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:gitweb-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:perl-Git-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.5-1.el9_4.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "git: Recursive clones RCE"
},
{
"cve": "CVE-2024-32004",
"cwe": {
"id": "CWE-114",
"name": "Process Control"
},
"discovery_date": "2024-05-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2280428"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in Git. This vulnerability can be exploited by an unauthenticated attacker who places a specialized repository on the target\u0027s local system. If the victim clones this repository, the attacker can execute arbitrary code.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "git: RCE while cloning local repos",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability, while significant, does not reach Critical severity due to its reliance on local repository manipulation. While it allows attackers to execute arbitrary code during cloning operations, its impact is constrained by the necessity for access to the target\u0027s local environment. Critical severity typically involves vulnerabilities that can be exploited remotely or without user interaction. Nonetheless, this issue remains Important as it can lead to unauthorized code execution, potentially compromising the integrity and security of affected systems.\n\n\nFuse 7 Karaf uses JGit to manage patches. It\u0027s heavily protected by file permissions and RBAC. Unless an attacker have write permissions to Fuse internal git repositories, this vulnerability is not exploitable.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.src",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-all-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-doc-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-email-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-gui-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-instaweb-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-svn-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:gitk-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:gitweb-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:perl-Git-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.5-1.el9_4.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-32004"
},
{
"category": "external",
"summary": "RHBZ#2280428",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280428"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-32004",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-32004"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-32004",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-32004"
},
{
"category": "external",
"summary": "https://github.com/git/git/security/advisories/GHSA-xfc6-vwr8-r389",
"url": "https://github.com/git/git/security/advisories/GHSA-xfc6-vwr8-r389"
}
],
"release_date": "2024-05-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-06-25T08:30:30+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.src",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-all-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-doc-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-email-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-gui-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-instaweb-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-svn-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:gitk-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:gitweb-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:perl-Git-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.5-1.el9_4.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:4083"
},
{
"category": "workaround",
"details": "Exercise caution when cloning repositories from untrusted sources.",
"product_ids": [
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.src",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-all-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-doc-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-email-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-gui-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-instaweb-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-svn-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:gitk-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:gitweb-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:perl-Git-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.5-1.el9_4.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.src",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-all-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-doc-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-email-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-gui-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-instaweb-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-svn-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:gitk-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:gitweb-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:perl-Git-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.5-1.el9_4.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "git: RCE while cloning local repos"
},
{
"cve": "CVE-2024-32020",
"cwe": {
"id": "CWE-62",
"name": "UNIX Hard Link"
},
"discovery_date": "2024-05-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2280466"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in Git. This flaw allows an unauthenticated attacker to place a specialized repository on their target\u0027s local system. For performance reasons, Git uses hardlinks when cloning a repository located on the same disk. However, if the repo being cloned is owned by a different user, this can introduce a security risk. At any time in the future, the original repo owner could rewrite the hardlinked files in the cloned user\u0027s repo.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "git: insecure hardlinks",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability presents a Low severity issue due to its contextual constraints and limited impact potential. Primarily affecting local Git repository clones where source and target repositories reside on the same disk, the risk arises only when the source repository is owned by a different, potentially untrusted user. This scenario necessitates specific conditions for exploitation, such as shared access to the disk among multiple users. Moreover, the impact is localized to the affected repositories and does not extend to the broader system or network. While the integrity of the target repository may be compromised if the untrusted user modifies linked files, the scope of influence is contained within the repository structure.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.src",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-all-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-doc-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-email-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-gui-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-instaweb-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-svn-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:gitk-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:gitweb-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:perl-Git-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.5-1.el9_4.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-32020"
},
{
"category": "external",
"summary": "RHBZ#2280466",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280466"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-32020",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-32020"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-32020",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-32020"
},
{
"category": "external",
"summary": "https://github.com/git/git/security/advisories/GHSA-5rfh-556j-fhgj",
"url": "https://github.com/git/git/security/advisories/GHSA-5rfh-556j-fhgj"
}
],
"release_date": "2024-05-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-06-25T08:30:30+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.src",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-all-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-doc-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-email-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-gui-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-instaweb-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-svn-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:gitk-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:gitweb-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:perl-Git-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.5-1.el9_4.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:4083"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.src",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-all-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-doc-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-email-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-gui-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-instaweb-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-svn-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:gitk-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:gitweb-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:perl-Git-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.5-1.el9_4.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "LOW",
"baseScore": 3.9,
"baseSeverity": "LOW",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.src",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-all-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-doc-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-email-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-gui-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-instaweb-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-svn-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:gitk-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:gitweb-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:perl-Git-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.5-1.el9_4.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "git: insecure hardlinks"
},
{
"cve": "CVE-2024-32021",
"cwe": {
"id": "CWE-61",
"name": "UNIX Symbolic Link (Symlink) Following"
},
"discovery_date": "2024-05-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2280484"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in Git. This flaw allows an unauthenticated attacker to place a repository on their target\u0027s local system that contains symlinks. During the cloning process, Git could be tricked into creating hardlinked arbitrary files into their repository\u0027s objects/ directory, impacting availability and integrity.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "git: symlink bypass",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "While the Git vulnerability described involves the potential creation of hardlinks to arbitrary files during the cloning process, its severity is considered Low due to several mitigating factors. First, successful exploitation relies on the presence of specific conditions, including the use of local cloning over the filesystem and the ability to manipulate symbolic links within the source repository. Secondly, the impact is limited to the creation of hardlinks to user-readable files, which may not necessarily lead to immediate compromise or exploitation of sensitive data. Additionally, the likelihood of exploitation is reduced by the need for direct access to the filesystem where the cloning operation occurs.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.src",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-all-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-doc-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-email-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-gui-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-instaweb-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-svn-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:gitk-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:gitweb-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:perl-Git-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.5-1.el9_4.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-32021"
},
{
"category": "external",
"summary": "RHBZ#2280484",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280484"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-32021",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-32021"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-32021",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-32021"
},
{
"category": "external",
"summary": "https://github.com/git/git/security/advisories/GHSA-mvxm-9j2h-qjx7",
"url": "https://github.com/git/git/security/advisories/GHSA-mvxm-9j2h-qjx7"
}
],
"release_date": "2024-05-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-06-25T08:30:30+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.src",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-all-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-doc-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-email-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-gui-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-instaweb-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-svn-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:gitk-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:gitweb-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:perl-Git-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.5-1.el9_4.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:4083"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.src",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-all-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-doc-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-email-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-gui-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-instaweb-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-svn-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:gitk-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:gitweb-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:perl-Git-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.5-1.el9_4.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "LOW",
"baseScore": 3.9,
"baseSeverity": "LOW",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.src",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-all-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-doc-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-email-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-gui-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-instaweb-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-svn-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:gitk-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:gitweb-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:perl-Git-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.5-1.el9_4.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "git: symlink bypass"
},
{
"cve": "CVE-2024-32465",
"cwe": {
"id": "CWE-22",
"name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
},
"discovery_date": "2024-05-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2280446"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Git in a full copy of a Git repository. A prerequisite for this vulnerability is for an unauthenticated attacker to place a specialized repository on their target\u0027s local system. If the victim were to clone this repository, it could result in arbitrary code execution.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "git: additional local RCE",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The vulnerability identified in Git as CVE-2024-32004, while significant, is categorized as Moderate rather than Important due to several factors. Primarily, the exploit requires meeting specific conditions, such as interacting with repositories from untrusted sources and potentially executing malicious code embedded within them. Additionally, the vulnerability does not inherently grant unauthorized access to system resources or compromise the integrity of Git installations. Although the potential impact of the exploit is substantial, its severity is tempered by the fact that it necessitates user interaction with repositories obtained from untrusted origins.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.src",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-all-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-doc-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-email-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-gui-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-instaweb-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-svn-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:gitk-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:gitweb-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:perl-Git-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.5-1.el9_4.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-32465"
},
{
"category": "external",
"summary": "RHBZ#2280446",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280446"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-32465",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-32465"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-32465",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-32465"
},
{
"category": "external",
"summary": "https://github.com/git/git/security/advisories/GHSA-vm9j-46j9-qvq4",
"url": "https://github.com/git/git/security/advisories/GHSA-vm9j-46j9-qvq4"
}
],
"release_date": "2024-05-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-06-25T08:30:30+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.src",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-all-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-doc-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-email-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-gui-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-instaweb-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-svn-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:gitk-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:gitweb-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:perl-Git-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.5-1.el9_4.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:4083"
},
{
"category": "workaround",
"details": "To reduce the risk of exploitation, users are advised to refrain from using Git in repositories obtained from archives sourced from untrusted origins. This precautionary measure helps to minimize exposure to potential security threats until the necessary patches can be applied.",
"product_ids": [
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.src",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-all-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-doc-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-email-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-gui-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-instaweb-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-svn-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:gitk-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:gitweb-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:perl-Git-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.5-1.el9_4.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "PHYSICAL",
"availabilityImpact": "HIGH",
"baseScore": 7.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.src",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-all-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-doc-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-email-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-gui-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-instaweb-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-svn-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:gitk-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:gitweb-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:perl-Git-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.5-1.el9_4.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "git: additional local RCE"
}
]
}
RHSA-2024_4083
Vulnerability from csaf_redhat - Published: 2024-06-25 08:30 - Updated: 2024-11-24 16:31Summary
Red Hat Security Advisory: git security update
Notes
Topic
An update for git is now available for Red Hat Enterprise Linux 9.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Git is a distributed revision control system with a decentralized architecture. As opposed to centralized version control systems with a client-server model, Git ensures that each working copy of a Git repository is an exact copy with complete revision history. This not only allows the user to work on and contribute to projects without the need to have permission to push the changes to their official repositories, but also makes it possible for the user to work with no network connection.
Security Fix(es):
* git: Recursive clones RCE (CVE-2024-32002)
* git: RCE while cloning local repos (CVE-2024-32004)
* git: additional local RCE (CVE-2024-32465)
* git: insecure hardlinks (CVE-2024-32020)
* git: symlink bypass (CVE-2024-32021)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for git is now available for Red Hat Enterprise Linux 9.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Git is a distributed revision control system with a decentralized architecture. As opposed to centralized version control systems with a client-server model, Git ensures that each working copy of a Git repository is an exact copy with complete revision history. This not only allows the user to work on and contribute to projects without the need to have permission to push the changes to their official repositories, but also makes it possible for the user to work with no network connection.\n\nSecurity Fix(es):\n\n* git: Recursive clones RCE (CVE-2024-32002)\n\n* git: RCE while cloning local repos (CVE-2024-32004)\n\n* git: additional local RCE (CVE-2024-32465)\n\n* git: insecure hardlinks (CVE-2024-32020)\n\n* git: symlink bypass (CVE-2024-32021)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:4083",
"url": "https://access.redhat.com/errata/RHSA-2024:4083"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2280421",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280421"
},
{
"category": "external",
"summary": "2280428",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280428"
},
{
"category": "external",
"summary": "2280446",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280446"
},
{
"category": "external",
"summary": "2280466",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280466"
},
{
"category": "external",
"summary": "2280484",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280484"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_4083.json"
}
],
"title": "Red Hat Security Advisory: git security update",
"tracking": {
"current_release_date": "2024-11-24T16:31:12+00:00",
"generator": {
"date": "2024-11-24T16:31:12+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.1"
}
},
"id": "RHSA-2024:4083",
"initial_release_date": "2024-06-25T08:30:30+00:00",
"revision_history": [
{
"date": "2024-06-25T08:30:30+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-06-25T08:30:30+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-24T16:31:12+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream (v. 9)",
"product": {
"name": "Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:9::appstream"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "git-0:2.43.5-1.el9_4.src",
"product": {
"name": "git-0:2.43.5-1.el9_4.src",
"product_id": "git-0:2.43.5-1.el9_4.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git@2.43.5-1.el9_4?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "git-0:2.43.5-1.el9_4.aarch64",
"product": {
"name": "git-0:2.43.5-1.el9_4.aarch64",
"product_id": "git-0:2.43.5-1.el9_4.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git@2.43.5-1.el9_4?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-core-0:2.43.5-1.el9_4.aarch64",
"product": {
"name": "git-core-0:2.43.5-1.el9_4.aarch64",
"product_id": "git-core-0:2.43.5-1.el9_4.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core@2.43.5-1.el9_4?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-0:2.43.5-1.el9_4.aarch64",
"product": {
"name": "git-credential-libsecret-0:2.43.5-1.el9_4.aarch64",
"product_id": "git-credential-libsecret-0:2.43.5-1.el9_4.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret@2.43.5-1.el9_4?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-daemon-0:2.43.5-1.el9_4.aarch64",
"product": {
"name": "git-daemon-0:2.43.5-1.el9_4.aarch64",
"product_id": "git-daemon-0:2.43.5-1.el9_4.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon@2.43.5-1.el9_4?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-subtree-0:2.43.5-1.el9_4.aarch64",
"product": {
"name": "git-subtree-0:2.43.5-1.el9_4.aarch64",
"product_id": "git-subtree-0:2.43.5-1.el9_4.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-subtree@2.43.5-1.el9_4?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-debugsource-0:2.43.5-1.el9_4.aarch64",
"product": {
"name": "git-debugsource-0:2.43.5-1.el9_4.aarch64",
"product_id": "git-debugsource-0:2.43.5-1.el9_4.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debugsource@2.43.5-1.el9_4?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-core-debuginfo-0:2.43.5-1.el9_4.aarch64",
"product": {
"name": "git-core-debuginfo-0:2.43.5-1.el9_4.aarch64",
"product_id": "git-core-debuginfo-0:2.43.5-1.el9_4.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core-debuginfo@2.43.5-1.el9_4?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.aarch64",
"product": {
"name": "git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.aarch64",
"product_id": "git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret-debuginfo@2.43.5-1.el9_4?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-daemon-debuginfo-0:2.43.5-1.el9_4.aarch64",
"product": {
"name": "git-daemon-debuginfo-0:2.43.5-1.el9_4.aarch64",
"product_id": "git-daemon-debuginfo-0:2.43.5-1.el9_4.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon-debuginfo@2.43.5-1.el9_4?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-debuginfo-0:2.43.5-1.el9_4.aarch64",
"product": {
"name": "git-debuginfo-0:2.43.5-1.el9_4.aarch64",
"product_id": "git-debuginfo-0:2.43.5-1.el9_4.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debuginfo@2.43.5-1.el9_4?arch=aarch64"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "git-0:2.43.5-1.el9_4.ppc64le",
"product": {
"name": "git-0:2.43.5-1.el9_4.ppc64le",
"product_id": "git-0:2.43.5-1.el9_4.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git@2.43.5-1.el9_4?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-core-0:2.43.5-1.el9_4.ppc64le",
"product": {
"name": "git-core-0:2.43.5-1.el9_4.ppc64le",
"product_id": "git-core-0:2.43.5-1.el9_4.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core@2.43.5-1.el9_4?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-0:2.43.5-1.el9_4.ppc64le",
"product": {
"name": "git-credential-libsecret-0:2.43.5-1.el9_4.ppc64le",
"product_id": "git-credential-libsecret-0:2.43.5-1.el9_4.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret@2.43.5-1.el9_4?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-daemon-0:2.43.5-1.el9_4.ppc64le",
"product": {
"name": "git-daemon-0:2.43.5-1.el9_4.ppc64le",
"product_id": "git-daemon-0:2.43.5-1.el9_4.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon@2.43.5-1.el9_4?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-subtree-0:2.43.5-1.el9_4.ppc64le",
"product": {
"name": "git-subtree-0:2.43.5-1.el9_4.ppc64le",
"product_id": "git-subtree-0:2.43.5-1.el9_4.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-subtree@2.43.5-1.el9_4?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-debugsource-0:2.43.5-1.el9_4.ppc64le",
"product": {
"name": "git-debugsource-0:2.43.5-1.el9_4.ppc64le",
"product_id": "git-debugsource-0:2.43.5-1.el9_4.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debugsource@2.43.5-1.el9_4?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-core-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"product": {
"name": "git-core-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"product_id": "git-core-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core-debuginfo@2.43.5-1.el9_4?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"product": {
"name": "git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"product_id": "git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret-debuginfo@2.43.5-1.el9_4?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-daemon-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"product": {
"name": "git-daemon-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"product_id": "git-daemon-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon-debuginfo@2.43.5-1.el9_4?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"product": {
"name": "git-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"product_id": "git-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debuginfo@2.43.5-1.el9_4?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "git-0:2.43.5-1.el9_4.x86_64",
"product": {
"name": "git-0:2.43.5-1.el9_4.x86_64",
"product_id": "git-0:2.43.5-1.el9_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git@2.43.5-1.el9_4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-core-0:2.43.5-1.el9_4.x86_64",
"product": {
"name": "git-core-0:2.43.5-1.el9_4.x86_64",
"product_id": "git-core-0:2.43.5-1.el9_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core@2.43.5-1.el9_4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-0:2.43.5-1.el9_4.x86_64",
"product": {
"name": "git-credential-libsecret-0:2.43.5-1.el9_4.x86_64",
"product_id": "git-credential-libsecret-0:2.43.5-1.el9_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret@2.43.5-1.el9_4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-daemon-0:2.43.5-1.el9_4.x86_64",
"product": {
"name": "git-daemon-0:2.43.5-1.el9_4.x86_64",
"product_id": "git-daemon-0:2.43.5-1.el9_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon@2.43.5-1.el9_4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-subtree-0:2.43.5-1.el9_4.x86_64",
"product": {
"name": "git-subtree-0:2.43.5-1.el9_4.x86_64",
"product_id": "git-subtree-0:2.43.5-1.el9_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-subtree@2.43.5-1.el9_4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-debugsource-0:2.43.5-1.el9_4.x86_64",
"product": {
"name": "git-debugsource-0:2.43.5-1.el9_4.x86_64",
"product_id": "git-debugsource-0:2.43.5-1.el9_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debugsource@2.43.5-1.el9_4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-core-debuginfo-0:2.43.5-1.el9_4.x86_64",
"product": {
"name": "git-core-debuginfo-0:2.43.5-1.el9_4.x86_64",
"product_id": "git-core-debuginfo-0:2.43.5-1.el9_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core-debuginfo@2.43.5-1.el9_4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.x86_64",
"product": {
"name": "git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.x86_64",
"product_id": "git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret-debuginfo@2.43.5-1.el9_4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-daemon-debuginfo-0:2.43.5-1.el9_4.x86_64",
"product": {
"name": "git-daemon-debuginfo-0:2.43.5-1.el9_4.x86_64",
"product_id": "git-daemon-debuginfo-0:2.43.5-1.el9_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon-debuginfo@2.43.5-1.el9_4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-debuginfo-0:2.43.5-1.el9_4.x86_64",
"product": {
"name": "git-debuginfo-0:2.43.5-1.el9_4.x86_64",
"product_id": "git-debuginfo-0:2.43.5-1.el9_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debuginfo@2.43.5-1.el9_4?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "git-0:2.43.5-1.el9_4.s390x",
"product": {
"name": "git-0:2.43.5-1.el9_4.s390x",
"product_id": "git-0:2.43.5-1.el9_4.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git@2.43.5-1.el9_4?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-core-0:2.43.5-1.el9_4.s390x",
"product": {
"name": "git-core-0:2.43.5-1.el9_4.s390x",
"product_id": "git-core-0:2.43.5-1.el9_4.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core@2.43.5-1.el9_4?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-0:2.43.5-1.el9_4.s390x",
"product": {
"name": "git-credential-libsecret-0:2.43.5-1.el9_4.s390x",
"product_id": "git-credential-libsecret-0:2.43.5-1.el9_4.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret@2.43.5-1.el9_4?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-daemon-0:2.43.5-1.el9_4.s390x",
"product": {
"name": "git-daemon-0:2.43.5-1.el9_4.s390x",
"product_id": "git-daemon-0:2.43.5-1.el9_4.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon@2.43.5-1.el9_4?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-subtree-0:2.43.5-1.el9_4.s390x",
"product": {
"name": "git-subtree-0:2.43.5-1.el9_4.s390x",
"product_id": "git-subtree-0:2.43.5-1.el9_4.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-subtree@2.43.5-1.el9_4?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-debugsource-0:2.43.5-1.el9_4.s390x",
"product": {
"name": "git-debugsource-0:2.43.5-1.el9_4.s390x",
"product_id": "git-debugsource-0:2.43.5-1.el9_4.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debugsource@2.43.5-1.el9_4?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-core-debuginfo-0:2.43.5-1.el9_4.s390x",
"product": {
"name": "git-core-debuginfo-0:2.43.5-1.el9_4.s390x",
"product_id": "git-core-debuginfo-0:2.43.5-1.el9_4.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core-debuginfo@2.43.5-1.el9_4?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.s390x",
"product": {
"name": "git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.s390x",
"product_id": "git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret-debuginfo@2.43.5-1.el9_4?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-daemon-debuginfo-0:2.43.5-1.el9_4.s390x",
"product": {
"name": "git-daemon-debuginfo-0:2.43.5-1.el9_4.s390x",
"product_id": "git-daemon-debuginfo-0:2.43.5-1.el9_4.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon-debuginfo@2.43.5-1.el9_4?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-debuginfo-0:2.43.5-1.el9_4.s390x",
"product": {
"name": "git-debuginfo-0:2.43.5-1.el9_4.s390x",
"product_id": "git-debuginfo-0:2.43.5-1.el9_4.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debuginfo@2.43.5-1.el9_4?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "git-all-0:2.43.5-1.el9_4.noarch",
"product": {
"name": "git-all-0:2.43.5-1.el9_4.noarch",
"product_id": "git-all-0:2.43.5-1.el9_4.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-all@2.43.5-1.el9_4?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "git-core-doc-0:2.43.5-1.el9_4.noarch",
"product": {
"name": "git-core-doc-0:2.43.5-1.el9_4.noarch",
"product_id": "git-core-doc-0:2.43.5-1.el9_4.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core-doc@2.43.5-1.el9_4?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "git-email-0:2.43.5-1.el9_4.noarch",
"product": {
"name": "git-email-0:2.43.5-1.el9_4.noarch",
"product_id": "git-email-0:2.43.5-1.el9_4.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-email@2.43.5-1.el9_4?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "git-gui-0:2.43.5-1.el9_4.noarch",
"product": {
"name": "git-gui-0:2.43.5-1.el9_4.noarch",
"product_id": "git-gui-0:2.43.5-1.el9_4.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-gui@2.43.5-1.el9_4?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "git-instaweb-0:2.43.5-1.el9_4.noarch",
"product": {
"name": "git-instaweb-0:2.43.5-1.el9_4.noarch",
"product_id": "git-instaweb-0:2.43.5-1.el9_4.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-instaweb@2.43.5-1.el9_4?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "git-svn-0:2.43.5-1.el9_4.noarch",
"product": {
"name": "git-svn-0:2.43.5-1.el9_4.noarch",
"product_id": "git-svn-0:2.43.5-1.el9_4.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-svn@2.43.5-1.el9_4?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "gitk-0:2.43.5-1.el9_4.noarch",
"product": {
"name": "gitk-0:2.43.5-1.el9_4.noarch",
"product_id": "gitk-0:2.43.5-1.el9_4.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/gitk@2.43.5-1.el9_4?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "gitweb-0:2.43.5-1.el9_4.noarch",
"product": {
"name": "gitweb-0:2.43.5-1.el9_4.noarch",
"product_id": "gitweb-0:2.43.5-1.el9_4.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/gitweb@2.43.5-1.el9_4?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "perl-Git-0:2.43.5-1.el9_4.noarch",
"product": {
"name": "perl-Git-0:2.43.5-1.el9_4.noarch",
"product_id": "perl-Git-0:2.43.5-1.el9_4.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/perl-Git@2.43.5-1.el9_4?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "perl-Git-SVN-0:2.43.5-1.el9_4.noarch",
"product": {
"name": "perl-Git-SVN-0:2.43.5-1.el9_4.noarch",
"product_id": "perl-Git-SVN-0:2.43.5-1.el9_4.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/perl-Git-SVN@2.43.5-1.el9_4?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "git-0:2.43.5-1.el9_4.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.aarch64"
},
"product_reference": "git-0:2.43.5-1.el9_4.aarch64",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-0:2.43.5-1.el9_4.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.ppc64le"
},
"product_reference": "git-0:2.43.5-1.el9_4.ppc64le",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-0:2.43.5-1.el9_4.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.s390x"
},
"product_reference": "git-0:2.43.5-1.el9_4.s390x",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-0:2.43.5-1.el9_4.src as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.src"
},
"product_reference": "git-0:2.43.5-1.el9_4.src",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-0:2.43.5-1.el9_4.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.x86_64"
},
"product_reference": "git-0:2.43.5-1.el9_4.x86_64",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-all-0:2.43.5-1.el9_4.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:git-all-0:2.43.5-1.el9_4.noarch"
},
"product_reference": "git-all-0:2.43.5-1.el9_4.noarch",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-0:2.43.5-1.el9_4.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.aarch64"
},
"product_reference": "git-core-0:2.43.5-1.el9_4.aarch64",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-0:2.43.5-1.el9_4.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.ppc64le"
},
"product_reference": "git-core-0:2.43.5-1.el9_4.ppc64le",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-0:2.43.5-1.el9_4.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.s390x"
},
"product_reference": "git-core-0:2.43.5-1.el9_4.s390x",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-0:2.43.5-1.el9_4.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.x86_64"
},
"product_reference": "git-core-0:2.43.5-1.el9_4.x86_64",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-debuginfo-0:2.43.5-1.el9_4.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.aarch64"
},
"product_reference": "git-core-debuginfo-0:2.43.5-1.el9_4.aarch64",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-debuginfo-0:2.43.5-1.el9_4.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.ppc64le"
},
"product_reference": "git-core-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-debuginfo-0:2.43.5-1.el9_4.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.s390x"
},
"product_reference": "git-core-debuginfo-0:2.43.5-1.el9_4.s390x",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-debuginfo-0:2.43.5-1.el9_4.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.x86_64"
},
"product_reference": "git-core-debuginfo-0:2.43.5-1.el9_4.x86_64",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-doc-0:2.43.5-1.el9_4.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:git-core-doc-0:2.43.5-1.el9_4.noarch"
},
"product_reference": "git-core-doc-0:2.43.5-1.el9_4.noarch",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-0:2.43.5-1.el9_4.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.aarch64"
},
"product_reference": "git-credential-libsecret-0:2.43.5-1.el9_4.aarch64",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-0:2.43.5-1.el9_4.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.ppc64le"
},
"product_reference": "git-credential-libsecret-0:2.43.5-1.el9_4.ppc64le",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-0:2.43.5-1.el9_4.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.s390x"
},
"product_reference": "git-credential-libsecret-0:2.43.5-1.el9_4.s390x",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-0:2.43.5-1.el9_4.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.x86_64"
},
"product_reference": "git-credential-libsecret-0:2.43.5-1.el9_4.x86_64",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.aarch64"
},
"product_reference": "git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.aarch64",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.ppc64le"
},
"product_reference": "git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.s390x"
},
"product_reference": "git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.s390x",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.x86_64"
},
"product_reference": "git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.x86_64",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-0:2.43.5-1.el9_4.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.aarch64"
},
"product_reference": "git-daemon-0:2.43.5-1.el9_4.aarch64",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-0:2.43.5-1.el9_4.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.ppc64le"
},
"product_reference": "git-daemon-0:2.43.5-1.el9_4.ppc64le",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-0:2.43.5-1.el9_4.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.s390x"
},
"product_reference": "git-daemon-0:2.43.5-1.el9_4.s390x",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-0:2.43.5-1.el9_4.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.x86_64"
},
"product_reference": "git-daemon-0:2.43.5-1.el9_4.x86_64",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-debuginfo-0:2.43.5-1.el9_4.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.aarch64"
},
"product_reference": "git-daemon-debuginfo-0:2.43.5-1.el9_4.aarch64",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-debuginfo-0:2.43.5-1.el9_4.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.ppc64le"
},
"product_reference": "git-daemon-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-debuginfo-0:2.43.5-1.el9_4.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.s390x"
},
"product_reference": "git-daemon-debuginfo-0:2.43.5-1.el9_4.s390x",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-debuginfo-0:2.43.5-1.el9_4.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.x86_64"
},
"product_reference": "git-daemon-debuginfo-0:2.43.5-1.el9_4.x86_64",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debuginfo-0:2.43.5-1.el9_4.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.aarch64"
},
"product_reference": "git-debuginfo-0:2.43.5-1.el9_4.aarch64",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debuginfo-0:2.43.5-1.el9_4.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.ppc64le"
},
"product_reference": "git-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debuginfo-0:2.43.5-1.el9_4.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.s390x"
},
"product_reference": "git-debuginfo-0:2.43.5-1.el9_4.s390x",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debuginfo-0:2.43.5-1.el9_4.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.x86_64"
},
"product_reference": "git-debuginfo-0:2.43.5-1.el9_4.x86_64",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debugsource-0:2.43.5-1.el9_4.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.aarch64"
},
"product_reference": "git-debugsource-0:2.43.5-1.el9_4.aarch64",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debugsource-0:2.43.5-1.el9_4.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.ppc64le"
},
"product_reference": "git-debugsource-0:2.43.5-1.el9_4.ppc64le",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debugsource-0:2.43.5-1.el9_4.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.s390x"
},
"product_reference": "git-debugsource-0:2.43.5-1.el9_4.s390x",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debugsource-0:2.43.5-1.el9_4.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.x86_64"
},
"product_reference": "git-debugsource-0:2.43.5-1.el9_4.x86_64",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-0:2.43.5-1.el9_4.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:git-email-0:2.43.5-1.el9_4.noarch"
},
"product_reference": "git-email-0:2.43.5-1.el9_4.noarch",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-0:2.43.5-1.el9_4.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:git-gui-0:2.43.5-1.el9_4.noarch"
},
"product_reference": "git-gui-0:2.43.5-1.el9_4.noarch",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-instaweb-0:2.43.5-1.el9_4.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:git-instaweb-0:2.43.5-1.el9_4.noarch"
},
"product_reference": "git-instaweb-0:2.43.5-1.el9_4.noarch",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-subtree-0:2.43.5-1.el9_4.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.aarch64"
},
"product_reference": "git-subtree-0:2.43.5-1.el9_4.aarch64",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-subtree-0:2.43.5-1.el9_4.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.ppc64le"
},
"product_reference": "git-subtree-0:2.43.5-1.el9_4.ppc64le",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-subtree-0:2.43.5-1.el9_4.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.s390x"
},
"product_reference": "git-subtree-0:2.43.5-1.el9_4.s390x",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-subtree-0:2.43.5-1.el9_4.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.x86_64"
},
"product_reference": "git-subtree-0:2.43.5-1.el9_4.x86_64",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-0:2.43.5-1.el9_4.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:git-svn-0:2.43.5-1.el9_4.noarch"
},
"product_reference": "git-svn-0:2.43.5-1.el9_4.noarch",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-0:2.43.5-1.el9_4.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:gitk-0:2.43.5-1.el9_4.noarch"
},
"product_reference": "gitk-0:2.43.5-1.el9_4.noarch",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitweb-0:2.43.5-1.el9_4.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:gitweb-0:2.43.5-1.el9_4.noarch"
},
"product_reference": "gitweb-0:2.43.5-1.el9_4.noarch",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-0:2.43.5-1.el9_4.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:perl-Git-0:2.43.5-1.el9_4.noarch"
},
"product_reference": "perl-Git-0:2.43.5-1.el9_4.noarch",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-SVN-0:2.43.5-1.el9_4.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.5-1.el9_4.noarch"
},
"product_reference": "perl-Git-SVN-0:2.43.5-1.el9_4.noarch",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-32002",
"cwe": {
"id": "CWE-434",
"name": "Unrestricted Upload of File with Dangerous Type"
},
"discovery_date": "2024-05-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2280421"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in Git. This vulnerability allows the malicious manipulation of repositories containing submodules, exploiting a bug that enables the writing of files into the .git/ directory instead of the submodule\u0027s intended worktree. This manipulation facilitates the execution of arbitrary code during the cloning process, bypassing user inspection and control.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "git: Recursive clones RCE",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "While the described bug in Git presents a significant security concern, it falls short of being categorized as Critical due to several factors. The exploit requires a specific set of conditions, such as repositories with submodules and the presence of symbolic link support. Additionally, successful exploitation relies on users cloning repositories from untrusted sources, limiting its scope compared to critical vulnerabilities that may be remotely exploitable or affect a broader range of use cases. However, the potential impact of remote code execution during cloning operations underscores the importance of promptly applying patches and exercising caution when interacting with Git repositories, emphasizing its significant severity within the realm of software security.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.src",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-all-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-doc-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-email-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-gui-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-instaweb-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-svn-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:gitk-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:gitweb-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:perl-Git-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.5-1.el9_4.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-32002"
},
{
"category": "external",
"summary": "RHBZ#2280421",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280421"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-32002",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-32002"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-32002",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-32002"
},
{
"category": "external",
"summary": "https://github.com/git/git/security/advisories/GHSA-8h77-4q3w-gfgv",
"url": "https://github.com/git/git/security/advisories/GHSA-8h77-4q3w-gfgv"
}
],
"release_date": "2024-05-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-06-25T08:30:30+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.src",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-all-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-doc-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-email-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-gui-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-instaweb-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-svn-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:gitk-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:gitweb-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:perl-Git-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.5-1.el9_4.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:4083"
},
{
"category": "workaround",
"details": "One preventative measure is to disable symbolic link support. This can be accomplished by running the command git config --global core.symlinks false. Another temporary option is to avoid using the --recurse-submodules setting with untrusted git repos.",
"product_ids": [
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.src",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-all-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-doc-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-email-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-gui-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-instaweb-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-svn-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:gitk-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:gitweb-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:perl-Git-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.5-1.el9_4.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.0,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.src",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-all-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-doc-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-email-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-gui-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-instaweb-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-svn-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:gitk-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:gitweb-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:perl-Git-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.5-1.el9_4.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "git: Recursive clones RCE"
},
{
"cve": "CVE-2024-32004",
"cwe": {
"id": "CWE-114",
"name": "Process Control"
},
"discovery_date": "2024-05-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2280428"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in Git. This vulnerability can be exploited by an unauthenticated attacker who places a specialized repository on the target\u0027s local system. If the victim clones this repository, the attacker can execute arbitrary code.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "git: RCE while cloning local repos",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability, while significant, does not reach Critical severity due to its reliance on local repository manipulation. While it allows attackers to execute arbitrary code during cloning operations, its impact is constrained by the necessity for access to the target\u0027s local environment. Critical severity typically involves vulnerabilities that can be exploited remotely or without user interaction. Nonetheless, this issue remains Important as it can lead to unauthorized code execution, potentially compromising the integrity and security of affected systems.\n\n\nFuse 7 Karaf uses JGit to manage patches. It\u0027s heavily protected by file permissions and RBAC. Unless an attacker have write permissions to Fuse internal git repositories, this vulnerability is not exploitable.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.src",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-all-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-doc-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-email-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-gui-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-instaweb-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-svn-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:gitk-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:gitweb-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:perl-Git-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.5-1.el9_4.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-32004"
},
{
"category": "external",
"summary": "RHBZ#2280428",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280428"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-32004",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-32004"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-32004",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-32004"
},
{
"category": "external",
"summary": "https://github.com/git/git/security/advisories/GHSA-xfc6-vwr8-r389",
"url": "https://github.com/git/git/security/advisories/GHSA-xfc6-vwr8-r389"
}
],
"release_date": "2024-05-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-06-25T08:30:30+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.src",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-all-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-doc-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-email-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-gui-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-instaweb-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-svn-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:gitk-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:gitweb-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:perl-Git-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.5-1.el9_4.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:4083"
},
{
"category": "workaround",
"details": "Exercise caution when cloning repositories from untrusted sources.",
"product_ids": [
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.src",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-all-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-doc-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-email-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-gui-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-instaweb-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-svn-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:gitk-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:gitweb-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:perl-Git-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.5-1.el9_4.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.src",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-all-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-doc-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-email-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-gui-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-instaweb-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-svn-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:gitk-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:gitweb-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:perl-Git-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.5-1.el9_4.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "git: RCE while cloning local repos"
},
{
"cve": "CVE-2024-32020",
"cwe": {
"id": "CWE-62",
"name": "UNIX Hard Link"
},
"discovery_date": "2024-05-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2280466"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in Git. This flaw allows an unauthenticated attacker to place a specialized repository on their target\u0027s local system. For performance reasons, Git uses hardlinks when cloning a repository located on the same disk. However, if the repo being cloned is owned by a different user, this can introduce a security risk. At any time in the future, the original repo owner could rewrite the hardlinked files in the cloned user\u0027s repo.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "git: insecure hardlinks",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability presents a Low severity issue due to its contextual constraints and limited impact potential. Primarily affecting local Git repository clones where source and target repositories reside on the same disk, the risk arises only when the source repository is owned by a different, potentially untrusted user. This scenario necessitates specific conditions for exploitation, such as shared access to the disk among multiple users. Moreover, the impact is localized to the affected repositories and does not extend to the broader system or network. While the integrity of the target repository may be compromised if the untrusted user modifies linked files, the scope of influence is contained within the repository structure.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.src",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-all-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-doc-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-email-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-gui-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-instaweb-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-svn-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:gitk-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:gitweb-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:perl-Git-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.5-1.el9_4.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-32020"
},
{
"category": "external",
"summary": "RHBZ#2280466",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280466"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-32020",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-32020"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-32020",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-32020"
},
{
"category": "external",
"summary": "https://github.com/git/git/security/advisories/GHSA-5rfh-556j-fhgj",
"url": "https://github.com/git/git/security/advisories/GHSA-5rfh-556j-fhgj"
}
],
"release_date": "2024-05-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-06-25T08:30:30+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.src",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-all-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-doc-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-email-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-gui-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-instaweb-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-svn-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:gitk-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:gitweb-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:perl-Git-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.5-1.el9_4.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:4083"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.src",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-all-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-doc-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-email-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-gui-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-instaweb-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-svn-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:gitk-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:gitweb-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:perl-Git-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.5-1.el9_4.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "LOW",
"baseScore": 3.9,
"baseSeverity": "LOW",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.src",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-all-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-doc-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-email-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-gui-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-instaweb-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-svn-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:gitk-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:gitweb-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:perl-Git-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.5-1.el9_4.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "git: insecure hardlinks"
},
{
"cve": "CVE-2024-32021",
"cwe": {
"id": "CWE-61",
"name": "UNIX Symbolic Link (Symlink) Following"
},
"discovery_date": "2024-05-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2280484"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in Git. This flaw allows an unauthenticated attacker to place a repository on their target\u0027s local system that contains symlinks. During the cloning process, Git could be tricked into creating hardlinked arbitrary files into their repository\u0027s objects/ directory, impacting availability and integrity.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "git: symlink bypass",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "While the Git vulnerability described involves the potential creation of hardlinks to arbitrary files during the cloning process, its severity is considered Low due to several mitigating factors. First, successful exploitation relies on the presence of specific conditions, including the use of local cloning over the filesystem and the ability to manipulate symbolic links within the source repository. Secondly, the impact is limited to the creation of hardlinks to user-readable files, which may not necessarily lead to immediate compromise or exploitation of sensitive data. Additionally, the likelihood of exploitation is reduced by the need for direct access to the filesystem where the cloning operation occurs.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.src",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-all-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-doc-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-email-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-gui-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-instaweb-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-svn-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:gitk-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:gitweb-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:perl-Git-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.5-1.el9_4.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-32021"
},
{
"category": "external",
"summary": "RHBZ#2280484",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280484"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-32021",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-32021"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-32021",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-32021"
},
{
"category": "external",
"summary": "https://github.com/git/git/security/advisories/GHSA-mvxm-9j2h-qjx7",
"url": "https://github.com/git/git/security/advisories/GHSA-mvxm-9j2h-qjx7"
}
],
"release_date": "2024-05-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-06-25T08:30:30+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.src",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-all-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-doc-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-email-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-gui-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-instaweb-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-svn-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:gitk-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:gitweb-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:perl-Git-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.5-1.el9_4.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:4083"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.src",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-all-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-doc-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-email-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-gui-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-instaweb-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-svn-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:gitk-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:gitweb-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:perl-Git-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.5-1.el9_4.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "LOW",
"baseScore": 3.9,
"baseSeverity": "LOW",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.src",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-all-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-doc-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-email-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-gui-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-instaweb-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-svn-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:gitk-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:gitweb-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:perl-Git-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.5-1.el9_4.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "git: symlink bypass"
},
{
"cve": "CVE-2024-32465",
"cwe": {
"id": "CWE-22",
"name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
},
"discovery_date": "2024-05-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2280446"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Git in a full copy of a Git repository. A prerequisite for this vulnerability is for an unauthenticated attacker to place a specialized repository on their target\u0027s local system. If the victim were to clone this repository, it could result in arbitrary code execution.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "git: additional local RCE",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The vulnerability identified in Git as CVE-2024-32004, while significant, is categorized as Moderate rather than Important due to several factors. Primarily, the exploit requires meeting specific conditions, such as interacting with repositories from untrusted sources and potentially executing malicious code embedded within them. Additionally, the vulnerability does not inherently grant unauthorized access to system resources or compromise the integrity of Git installations. Although the potential impact of the exploit is substantial, its severity is tempered by the fact that it necessitates user interaction with repositories obtained from untrusted origins.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.src",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-all-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-doc-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-email-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-gui-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-instaweb-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-svn-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:gitk-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:gitweb-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:perl-Git-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.5-1.el9_4.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-32465"
},
{
"category": "external",
"summary": "RHBZ#2280446",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280446"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-32465",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-32465"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-32465",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-32465"
},
{
"category": "external",
"summary": "https://github.com/git/git/security/advisories/GHSA-vm9j-46j9-qvq4",
"url": "https://github.com/git/git/security/advisories/GHSA-vm9j-46j9-qvq4"
}
],
"release_date": "2024-05-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-06-25T08:30:30+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.src",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-all-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-doc-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-email-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-gui-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-instaweb-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-svn-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:gitk-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:gitweb-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:perl-Git-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.5-1.el9_4.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:4083"
},
{
"category": "workaround",
"details": "To reduce the risk of exploitation, users are advised to refrain from using Git in repositories obtained from archives sourced from untrusted origins. This precautionary measure helps to minimize exposure to potential security threats until the necessary patches can be applied.",
"product_ids": [
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.src",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-all-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-doc-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-email-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-gui-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-instaweb-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-svn-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:gitk-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:gitweb-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:perl-Git-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.5-1.el9_4.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "PHYSICAL",
"availabilityImpact": "HIGH",
"baseScore": 7.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.src",
"AppStream-9.4.0.Z.MAIN.EUS:git-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-all-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-core-doc-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-email-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-gui-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-instaweb-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el9_4.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:git-svn-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:gitk-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:gitweb-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:perl-Git-0:2.43.5-1.el9_4.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.5-1.el9_4.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "git: additional local RCE"
}
]
}
RHSA-2024_4368
Vulnerability from csaf_redhat - Published: 2024-07-08 11:27 - Updated: 2024-11-24 16:31Summary
Red Hat Security Advisory: git security update
Notes
Topic
An update for git is now available for Red Hat Enterprise Linux 9.2 Extended Update Support.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Git is a distributed revision control system with a decentralized architecture. As opposed to centralized version control systems with a client-server model, Git ensures that each working copy of a Git repository is an exact copy with complete revision history. This not only allows the user to work on and contribute to projects without the need to have permission to push the changes to their official repositories, but also makes it possible for the user to work with no network connection.
Security Fix(es):
* git: Recursive clones RCE (CVE-2024-32002)
* git: RCE while cloning local repos (CVE-2024-32004)
* git: additional local RCE (CVE-2024-32465)
* git: insecure hardlinks (CVE-2024-32020)
* git: symlink bypass (CVE-2024-32021)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for git is now available for Red Hat Enterprise Linux 9.2 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Git is a distributed revision control system with a decentralized architecture. As opposed to centralized version control systems with a client-server model, Git ensures that each working copy of a Git repository is an exact copy with complete revision history. This not only allows the user to work on and contribute to projects without the need to have permission to push the changes to their official repositories, but also makes it possible for the user to work with no network connection.\n\nSecurity Fix(es):\n\n* git: Recursive clones RCE (CVE-2024-32002)\n\n* git: RCE while cloning local repos (CVE-2024-32004)\n\n* git: additional local RCE (CVE-2024-32465)\n\n* git: insecure hardlinks (CVE-2024-32020)\n\n* git: symlink bypass (CVE-2024-32021)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:4368",
"url": "https://access.redhat.com/errata/RHSA-2024:4368"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2280421",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280421"
},
{
"category": "external",
"summary": "2280428",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280428"
},
{
"category": "external",
"summary": "2280446",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280446"
},
{
"category": "external",
"summary": "2280466",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280466"
},
{
"category": "external",
"summary": "2280484",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280484"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_4368.json"
}
],
"title": "Red Hat Security Advisory: git security update",
"tracking": {
"current_release_date": "2024-11-24T16:31:33+00:00",
"generator": {
"date": "2024-11-24T16:31:33+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.1"
}
},
"id": "RHSA-2024:4368",
"initial_release_date": "2024-07-08T11:27:59+00:00",
"revision_history": [
{
"date": "2024-07-08T11:27:59+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-07-08T11:27:59+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-24T16:31:33+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product": {
"name": "Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_eus:9.2::appstream"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "git-0:2.39.5-1.el9_2.src",
"product": {
"name": "git-0:2.39.5-1.el9_2.src",
"product_id": "git-0:2.39.5-1.el9_2.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git@2.39.5-1.el9_2?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "git-0:2.39.5-1.el9_2.aarch64",
"product": {
"name": "git-0:2.39.5-1.el9_2.aarch64",
"product_id": "git-0:2.39.5-1.el9_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git@2.39.5-1.el9_2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-core-0:2.39.5-1.el9_2.aarch64",
"product": {
"name": "git-core-0:2.39.5-1.el9_2.aarch64",
"product_id": "git-core-0:2.39.5-1.el9_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core@2.39.5-1.el9_2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-0:2.39.5-1.el9_2.aarch64",
"product": {
"name": "git-credential-libsecret-0:2.39.5-1.el9_2.aarch64",
"product_id": "git-credential-libsecret-0:2.39.5-1.el9_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret@2.39.5-1.el9_2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-daemon-0:2.39.5-1.el9_2.aarch64",
"product": {
"name": "git-daemon-0:2.39.5-1.el9_2.aarch64",
"product_id": "git-daemon-0:2.39.5-1.el9_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon@2.39.5-1.el9_2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-subtree-0:2.39.5-1.el9_2.aarch64",
"product": {
"name": "git-subtree-0:2.39.5-1.el9_2.aarch64",
"product_id": "git-subtree-0:2.39.5-1.el9_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-subtree@2.39.5-1.el9_2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-debugsource-0:2.39.5-1.el9_2.aarch64",
"product": {
"name": "git-debugsource-0:2.39.5-1.el9_2.aarch64",
"product_id": "git-debugsource-0:2.39.5-1.el9_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debugsource@2.39.5-1.el9_2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-core-debuginfo-0:2.39.5-1.el9_2.aarch64",
"product": {
"name": "git-core-debuginfo-0:2.39.5-1.el9_2.aarch64",
"product_id": "git-core-debuginfo-0:2.39.5-1.el9_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core-debuginfo@2.39.5-1.el9_2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.aarch64",
"product": {
"name": "git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.aarch64",
"product_id": "git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret-debuginfo@2.39.5-1.el9_2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-daemon-debuginfo-0:2.39.5-1.el9_2.aarch64",
"product": {
"name": "git-daemon-debuginfo-0:2.39.5-1.el9_2.aarch64",
"product_id": "git-daemon-debuginfo-0:2.39.5-1.el9_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon-debuginfo@2.39.5-1.el9_2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-debuginfo-0:2.39.5-1.el9_2.aarch64",
"product": {
"name": "git-debuginfo-0:2.39.5-1.el9_2.aarch64",
"product_id": "git-debuginfo-0:2.39.5-1.el9_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debuginfo@2.39.5-1.el9_2?arch=aarch64"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "git-0:2.39.5-1.el9_2.ppc64le",
"product": {
"name": "git-0:2.39.5-1.el9_2.ppc64le",
"product_id": "git-0:2.39.5-1.el9_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git@2.39.5-1.el9_2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-core-0:2.39.5-1.el9_2.ppc64le",
"product": {
"name": "git-core-0:2.39.5-1.el9_2.ppc64le",
"product_id": "git-core-0:2.39.5-1.el9_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core@2.39.5-1.el9_2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-0:2.39.5-1.el9_2.ppc64le",
"product": {
"name": "git-credential-libsecret-0:2.39.5-1.el9_2.ppc64le",
"product_id": "git-credential-libsecret-0:2.39.5-1.el9_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret@2.39.5-1.el9_2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-daemon-0:2.39.5-1.el9_2.ppc64le",
"product": {
"name": "git-daemon-0:2.39.5-1.el9_2.ppc64le",
"product_id": "git-daemon-0:2.39.5-1.el9_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon@2.39.5-1.el9_2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-subtree-0:2.39.5-1.el9_2.ppc64le",
"product": {
"name": "git-subtree-0:2.39.5-1.el9_2.ppc64le",
"product_id": "git-subtree-0:2.39.5-1.el9_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-subtree@2.39.5-1.el9_2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-debugsource-0:2.39.5-1.el9_2.ppc64le",
"product": {
"name": "git-debugsource-0:2.39.5-1.el9_2.ppc64le",
"product_id": "git-debugsource-0:2.39.5-1.el9_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debugsource@2.39.5-1.el9_2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-core-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"product": {
"name": "git-core-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"product_id": "git-core-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core-debuginfo@2.39.5-1.el9_2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"product": {
"name": "git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"product_id": "git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret-debuginfo@2.39.5-1.el9_2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-daemon-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"product": {
"name": "git-daemon-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"product_id": "git-daemon-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon-debuginfo@2.39.5-1.el9_2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"product": {
"name": "git-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"product_id": "git-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debuginfo@2.39.5-1.el9_2?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "git-0:2.39.5-1.el9_2.x86_64",
"product": {
"name": "git-0:2.39.5-1.el9_2.x86_64",
"product_id": "git-0:2.39.5-1.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git@2.39.5-1.el9_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-core-0:2.39.5-1.el9_2.x86_64",
"product": {
"name": "git-core-0:2.39.5-1.el9_2.x86_64",
"product_id": "git-core-0:2.39.5-1.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core@2.39.5-1.el9_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-0:2.39.5-1.el9_2.x86_64",
"product": {
"name": "git-credential-libsecret-0:2.39.5-1.el9_2.x86_64",
"product_id": "git-credential-libsecret-0:2.39.5-1.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret@2.39.5-1.el9_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-daemon-0:2.39.5-1.el9_2.x86_64",
"product": {
"name": "git-daemon-0:2.39.5-1.el9_2.x86_64",
"product_id": "git-daemon-0:2.39.5-1.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon@2.39.5-1.el9_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-subtree-0:2.39.5-1.el9_2.x86_64",
"product": {
"name": "git-subtree-0:2.39.5-1.el9_2.x86_64",
"product_id": "git-subtree-0:2.39.5-1.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-subtree@2.39.5-1.el9_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-debugsource-0:2.39.5-1.el9_2.x86_64",
"product": {
"name": "git-debugsource-0:2.39.5-1.el9_2.x86_64",
"product_id": "git-debugsource-0:2.39.5-1.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debugsource@2.39.5-1.el9_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-core-debuginfo-0:2.39.5-1.el9_2.x86_64",
"product": {
"name": "git-core-debuginfo-0:2.39.5-1.el9_2.x86_64",
"product_id": "git-core-debuginfo-0:2.39.5-1.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core-debuginfo@2.39.5-1.el9_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.x86_64",
"product": {
"name": "git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.x86_64",
"product_id": "git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret-debuginfo@2.39.5-1.el9_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-daemon-debuginfo-0:2.39.5-1.el9_2.x86_64",
"product": {
"name": "git-daemon-debuginfo-0:2.39.5-1.el9_2.x86_64",
"product_id": "git-daemon-debuginfo-0:2.39.5-1.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon-debuginfo@2.39.5-1.el9_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-debuginfo-0:2.39.5-1.el9_2.x86_64",
"product": {
"name": "git-debuginfo-0:2.39.5-1.el9_2.x86_64",
"product_id": "git-debuginfo-0:2.39.5-1.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debuginfo@2.39.5-1.el9_2?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "git-0:2.39.5-1.el9_2.s390x",
"product": {
"name": "git-0:2.39.5-1.el9_2.s390x",
"product_id": "git-0:2.39.5-1.el9_2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git@2.39.5-1.el9_2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-core-0:2.39.5-1.el9_2.s390x",
"product": {
"name": "git-core-0:2.39.5-1.el9_2.s390x",
"product_id": "git-core-0:2.39.5-1.el9_2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core@2.39.5-1.el9_2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-0:2.39.5-1.el9_2.s390x",
"product": {
"name": "git-credential-libsecret-0:2.39.5-1.el9_2.s390x",
"product_id": "git-credential-libsecret-0:2.39.5-1.el9_2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret@2.39.5-1.el9_2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-daemon-0:2.39.5-1.el9_2.s390x",
"product": {
"name": "git-daemon-0:2.39.5-1.el9_2.s390x",
"product_id": "git-daemon-0:2.39.5-1.el9_2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon@2.39.5-1.el9_2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-subtree-0:2.39.5-1.el9_2.s390x",
"product": {
"name": "git-subtree-0:2.39.5-1.el9_2.s390x",
"product_id": "git-subtree-0:2.39.5-1.el9_2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-subtree@2.39.5-1.el9_2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-debugsource-0:2.39.5-1.el9_2.s390x",
"product": {
"name": "git-debugsource-0:2.39.5-1.el9_2.s390x",
"product_id": "git-debugsource-0:2.39.5-1.el9_2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debugsource@2.39.5-1.el9_2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-core-debuginfo-0:2.39.5-1.el9_2.s390x",
"product": {
"name": "git-core-debuginfo-0:2.39.5-1.el9_2.s390x",
"product_id": "git-core-debuginfo-0:2.39.5-1.el9_2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core-debuginfo@2.39.5-1.el9_2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.s390x",
"product": {
"name": "git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.s390x",
"product_id": "git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret-debuginfo@2.39.5-1.el9_2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-daemon-debuginfo-0:2.39.5-1.el9_2.s390x",
"product": {
"name": "git-daemon-debuginfo-0:2.39.5-1.el9_2.s390x",
"product_id": "git-daemon-debuginfo-0:2.39.5-1.el9_2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon-debuginfo@2.39.5-1.el9_2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-debuginfo-0:2.39.5-1.el9_2.s390x",
"product": {
"name": "git-debuginfo-0:2.39.5-1.el9_2.s390x",
"product_id": "git-debuginfo-0:2.39.5-1.el9_2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debuginfo@2.39.5-1.el9_2?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "git-all-0:2.39.5-1.el9_2.noarch",
"product": {
"name": "git-all-0:2.39.5-1.el9_2.noarch",
"product_id": "git-all-0:2.39.5-1.el9_2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-all@2.39.5-1.el9_2?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "git-core-doc-0:2.39.5-1.el9_2.noarch",
"product": {
"name": "git-core-doc-0:2.39.5-1.el9_2.noarch",
"product_id": "git-core-doc-0:2.39.5-1.el9_2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core-doc@2.39.5-1.el9_2?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "git-email-0:2.39.5-1.el9_2.noarch",
"product": {
"name": "git-email-0:2.39.5-1.el9_2.noarch",
"product_id": "git-email-0:2.39.5-1.el9_2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-email@2.39.5-1.el9_2?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "git-gui-0:2.39.5-1.el9_2.noarch",
"product": {
"name": "git-gui-0:2.39.5-1.el9_2.noarch",
"product_id": "git-gui-0:2.39.5-1.el9_2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-gui@2.39.5-1.el9_2?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "git-instaweb-0:2.39.5-1.el9_2.noarch",
"product": {
"name": "git-instaweb-0:2.39.5-1.el9_2.noarch",
"product_id": "git-instaweb-0:2.39.5-1.el9_2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-instaweb@2.39.5-1.el9_2?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "git-svn-0:2.39.5-1.el9_2.noarch",
"product": {
"name": "git-svn-0:2.39.5-1.el9_2.noarch",
"product_id": "git-svn-0:2.39.5-1.el9_2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-svn@2.39.5-1.el9_2?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "gitk-0:2.39.5-1.el9_2.noarch",
"product": {
"name": "gitk-0:2.39.5-1.el9_2.noarch",
"product_id": "gitk-0:2.39.5-1.el9_2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/gitk@2.39.5-1.el9_2?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "gitweb-0:2.39.5-1.el9_2.noarch",
"product": {
"name": "gitweb-0:2.39.5-1.el9_2.noarch",
"product_id": "gitweb-0:2.39.5-1.el9_2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/gitweb@2.39.5-1.el9_2?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "perl-Git-0:2.39.5-1.el9_2.noarch",
"product": {
"name": "perl-Git-0:2.39.5-1.el9_2.noarch",
"product_id": "perl-Git-0:2.39.5-1.el9_2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/perl-Git@2.39.5-1.el9_2?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "perl-Git-SVN-0:2.39.5-1.el9_2.noarch",
"product": {
"name": "perl-Git-SVN-0:2.39.5-1.el9_2.noarch",
"product_id": "perl-Git-SVN-0:2.39.5-1.el9_2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/perl-Git-SVN@2.39.5-1.el9_2?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "git-0:2.39.5-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.aarch64"
},
"product_reference": "git-0:2.39.5-1.el9_2.aarch64",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-0:2.39.5-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.ppc64le"
},
"product_reference": "git-0:2.39.5-1.el9_2.ppc64le",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-0:2.39.5-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.s390x"
},
"product_reference": "git-0:2.39.5-1.el9_2.s390x",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-0:2.39.5-1.el9_2.src as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.src"
},
"product_reference": "git-0:2.39.5-1.el9_2.src",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-0:2.39.5-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.x86_64"
},
"product_reference": "git-0:2.39.5-1.el9_2.x86_64",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-all-0:2.39.5-1.el9_2.noarch as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:git-all-0:2.39.5-1.el9_2.noarch"
},
"product_reference": "git-all-0:2.39.5-1.el9_2.noarch",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-0:2.39.5-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.aarch64"
},
"product_reference": "git-core-0:2.39.5-1.el9_2.aarch64",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-0:2.39.5-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.ppc64le"
},
"product_reference": "git-core-0:2.39.5-1.el9_2.ppc64le",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-0:2.39.5-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.s390x"
},
"product_reference": "git-core-0:2.39.5-1.el9_2.s390x",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-0:2.39.5-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.x86_64"
},
"product_reference": "git-core-0:2.39.5-1.el9_2.x86_64",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-debuginfo-0:2.39.5-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.aarch64"
},
"product_reference": "git-core-debuginfo-0:2.39.5-1.el9_2.aarch64",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-debuginfo-0:2.39.5-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.ppc64le"
},
"product_reference": "git-core-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-debuginfo-0:2.39.5-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.s390x"
},
"product_reference": "git-core-debuginfo-0:2.39.5-1.el9_2.s390x",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-debuginfo-0:2.39.5-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.x86_64"
},
"product_reference": "git-core-debuginfo-0:2.39.5-1.el9_2.x86_64",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-doc-0:2.39.5-1.el9_2.noarch as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:git-core-doc-0:2.39.5-1.el9_2.noarch"
},
"product_reference": "git-core-doc-0:2.39.5-1.el9_2.noarch",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-0:2.39.5-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.aarch64"
},
"product_reference": "git-credential-libsecret-0:2.39.5-1.el9_2.aarch64",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-0:2.39.5-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.ppc64le"
},
"product_reference": "git-credential-libsecret-0:2.39.5-1.el9_2.ppc64le",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-0:2.39.5-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.s390x"
},
"product_reference": "git-credential-libsecret-0:2.39.5-1.el9_2.s390x",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-0:2.39.5-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.x86_64"
},
"product_reference": "git-credential-libsecret-0:2.39.5-1.el9_2.x86_64",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.aarch64"
},
"product_reference": "git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.aarch64",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.ppc64le"
},
"product_reference": "git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.s390x"
},
"product_reference": "git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.s390x",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.x86_64"
},
"product_reference": "git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.x86_64",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-0:2.39.5-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.aarch64"
},
"product_reference": "git-daemon-0:2.39.5-1.el9_2.aarch64",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-0:2.39.5-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.ppc64le"
},
"product_reference": "git-daemon-0:2.39.5-1.el9_2.ppc64le",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-0:2.39.5-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.s390x"
},
"product_reference": "git-daemon-0:2.39.5-1.el9_2.s390x",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-0:2.39.5-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.x86_64"
},
"product_reference": "git-daemon-0:2.39.5-1.el9_2.x86_64",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-debuginfo-0:2.39.5-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.aarch64"
},
"product_reference": "git-daemon-debuginfo-0:2.39.5-1.el9_2.aarch64",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-debuginfo-0:2.39.5-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.ppc64le"
},
"product_reference": "git-daemon-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-debuginfo-0:2.39.5-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.s390x"
},
"product_reference": "git-daemon-debuginfo-0:2.39.5-1.el9_2.s390x",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-debuginfo-0:2.39.5-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.x86_64"
},
"product_reference": "git-daemon-debuginfo-0:2.39.5-1.el9_2.x86_64",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debuginfo-0:2.39.5-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.aarch64"
},
"product_reference": "git-debuginfo-0:2.39.5-1.el9_2.aarch64",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debuginfo-0:2.39.5-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.ppc64le"
},
"product_reference": "git-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debuginfo-0:2.39.5-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.s390x"
},
"product_reference": "git-debuginfo-0:2.39.5-1.el9_2.s390x",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debuginfo-0:2.39.5-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.x86_64"
},
"product_reference": "git-debuginfo-0:2.39.5-1.el9_2.x86_64",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debugsource-0:2.39.5-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.aarch64"
},
"product_reference": "git-debugsource-0:2.39.5-1.el9_2.aarch64",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debugsource-0:2.39.5-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.ppc64le"
},
"product_reference": "git-debugsource-0:2.39.5-1.el9_2.ppc64le",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debugsource-0:2.39.5-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.s390x"
},
"product_reference": "git-debugsource-0:2.39.5-1.el9_2.s390x",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debugsource-0:2.39.5-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.x86_64"
},
"product_reference": "git-debugsource-0:2.39.5-1.el9_2.x86_64",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-0:2.39.5-1.el9_2.noarch as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:git-email-0:2.39.5-1.el9_2.noarch"
},
"product_reference": "git-email-0:2.39.5-1.el9_2.noarch",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-0:2.39.5-1.el9_2.noarch as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:git-gui-0:2.39.5-1.el9_2.noarch"
},
"product_reference": "git-gui-0:2.39.5-1.el9_2.noarch",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-instaweb-0:2.39.5-1.el9_2.noarch as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:git-instaweb-0:2.39.5-1.el9_2.noarch"
},
"product_reference": "git-instaweb-0:2.39.5-1.el9_2.noarch",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-subtree-0:2.39.5-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.aarch64"
},
"product_reference": "git-subtree-0:2.39.5-1.el9_2.aarch64",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-subtree-0:2.39.5-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.ppc64le"
},
"product_reference": "git-subtree-0:2.39.5-1.el9_2.ppc64le",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-subtree-0:2.39.5-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.s390x"
},
"product_reference": "git-subtree-0:2.39.5-1.el9_2.s390x",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-subtree-0:2.39.5-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.x86_64"
},
"product_reference": "git-subtree-0:2.39.5-1.el9_2.x86_64",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-0:2.39.5-1.el9_2.noarch as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:git-svn-0:2.39.5-1.el9_2.noarch"
},
"product_reference": "git-svn-0:2.39.5-1.el9_2.noarch",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-0:2.39.5-1.el9_2.noarch as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:gitk-0:2.39.5-1.el9_2.noarch"
},
"product_reference": "gitk-0:2.39.5-1.el9_2.noarch",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitweb-0:2.39.5-1.el9_2.noarch as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:gitweb-0:2.39.5-1.el9_2.noarch"
},
"product_reference": "gitweb-0:2.39.5-1.el9_2.noarch",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-0:2.39.5-1.el9_2.noarch as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:perl-Git-0:2.39.5-1.el9_2.noarch"
},
"product_reference": "perl-Git-0:2.39.5-1.el9_2.noarch",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-SVN-0:2.39.5-1.el9_2.noarch as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:perl-Git-SVN-0:2.39.5-1.el9_2.noarch"
},
"product_reference": "perl-Git-SVN-0:2.39.5-1.el9_2.noarch",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-32002",
"cwe": {
"id": "CWE-434",
"name": "Unrestricted Upload of File with Dangerous Type"
},
"discovery_date": "2024-05-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2280421"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in Git. This vulnerability allows the malicious manipulation of repositories containing submodules, exploiting a bug that enables the writing of files into the .git/ directory instead of the submodule\u0027s intended worktree. This manipulation facilitates the execution of arbitrary code during the cloning process, bypassing user inspection and control.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "git: Recursive clones RCE",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "While the described bug in Git presents a significant security concern, it falls short of being categorized as Critical due to several factors. The exploit requires a specific set of conditions, such as repositories with submodules and the presence of symbolic link support. Additionally, successful exploitation relies on users cloning repositories from untrusted sources, limiting its scope compared to critical vulnerabilities that may be remotely exploitable or affect a broader range of use cases. However, the potential impact of remote code execution during cloning operations underscores the importance of promptly applying patches and exercising caution when interacting with Git repositories, emphasizing its significant severity within the realm of software security.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.src",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-all-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-core-doc-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-email-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-gui-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-instaweb-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-svn-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:gitk-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:gitweb-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:perl-Git-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:perl-Git-SVN-0:2.39.5-1.el9_2.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-32002"
},
{
"category": "external",
"summary": "RHBZ#2280421",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280421"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-32002",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-32002"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-32002",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-32002"
},
{
"category": "external",
"summary": "https://github.com/git/git/security/advisories/GHSA-8h77-4q3w-gfgv",
"url": "https://github.com/git/git/security/advisories/GHSA-8h77-4q3w-gfgv"
}
],
"release_date": "2024-05-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-07-08T11:27:59+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.src",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-all-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-core-doc-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-email-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-gui-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-instaweb-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-svn-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:gitk-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:gitweb-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:perl-Git-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:perl-Git-SVN-0:2.39.5-1.el9_2.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:4368"
},
{
"category": "workaround",
"details": "One preventative measure is to disable symbolic link support. This can be accomplished by running the command git config --global core.symlinks false. Another temporary option is to avoid using the --recurse-submodules setting with untrusted git repos.",
"product_ids": [
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.src",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-all-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-core-doc-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-email-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-gui-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-instaweb-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-svn-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:gitk-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:gitweb-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:perl-Git-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:perl-Git-SVN-0:2.39.5-1.el9_2.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.0,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.src",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-all-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-core-doc-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-email-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-gui-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-instaweb-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-svn-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:gitk-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:gitweb-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:perl-Git-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:perl-Git-SVN-0:2.39.5-1.el9_2.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "git: Recursive clones RCE"
},
{
"cve": "CVE-2024-32004",
"cwe": {
"id": "CWE-114",
"name": "Process Control"
},
"discovery_date": "2024-05-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2280428"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in Git. This vulnerability can be exploited by an unauthenticated attacker who places a specialized repository on the target\u0027s local system. If the victim clones this repository, the attacker can execute arbitrary code.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "git: RCE while cloning local repos",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability, while significant, does not reach Critical severity due to its reliance on local repository manipulation. While it allows attackers to execute arbitrary code during cloning operations, its impact is constrained by the necessity for access to the target\u0027s local environment. Critical severity typically involves vulnerabilities that can be exploited remotely or without user interaction. Nonetheless, this issue remains Important as it can lead to unauthorized code execution, potentially compromising the integrity and security of affected systems.\n\n\nFuse 7 Karaf uses JGit to manage patches. It\u0027s heavily protected by file permissions and RBAC. Unless an attacker have write permissions to Fuse internal git repositories, this vulnerability is not exploitable.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.src",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-all-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-core-doc-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-email-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-gui-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-instaweb-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-svn-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:gitk-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:gitweb-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:perl-Git-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:perl-Git-SVN-0:2.39.5-1.el9_2.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-32004"
},
{
"category": "external",
"summary": "RHBZ#2280428",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280428"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-32004",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-32004"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-32004",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-32004"
},
{
"category": "external",
"summary": "https://github.com/git/git/security/advisories/GHSA-xfc6-vwr8-r389",
"url": "https://github.com/git/git/security/advisories/GHSA-xfc6-vwr8-r389"
}
],
"release_date": "2024-05-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-07-08T11:27:59+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.src",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-all-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-core-doc-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-email-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-gui-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-instaweb-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-svn-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:gitk-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:gitweb-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:perl-Git-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:perl-Git-SVN-0:2.39.5-1.el9_2.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:4368"
},
{
"category": "workaround",
"details": "Exercise caution when cloning repositories from untrusted sources.",
"product_ids": [
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.src",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-all-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-core-doc-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-email-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-gui-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-instaweb-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-svn-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:gitk-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:gitweb-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:perl-Git-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:perl-Git-SVN-0:2.39.5-1.el9_2.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.src",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-all-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-core-doc-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-email-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-gui-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-instaweb-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-svn-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:gitk-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:gitweb-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:perl-Git-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:perl-Git-SVN-0:2.39.5-1.el9_2.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "git: RCE while cloning local repos"
},
{
"cve": "CVE-2024-32020",
"cwe": {
"id": "CWE-62",
"name": "UNIX Hard Link"
},
"discovery_date": "2024-05-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2280466"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in Git. This flaw allows an unauthenticated attacker to place a specialized repository on their target\u0027s local system. For performance reasons, Git uses hardlinks when cloning a repository located on the same disk. However, if the repo being cloned is owned by a different user, this can introduce a security risk. At any time in the future, the original repo owner could rewrite the hardlinked files in the cloned user\u0027s repo.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "git: insecure hardlinks",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability presents a Low severity issue due to its contextual constraints and limited impact potential. Primarily affecting local Git repository clones where source and target repositories reside on the same disk, the risk arises only when the source repository is owned by a different, potentially untrusted user. This scenario necessitates specific conditions for exploitation, such as shared access to the disk among multiple users. Moreover, the impact is localized to the affected repositories and does not extend to the broader system or network. While the integrity of the target repository may be compromised if the untrusted user modifies linked files, the scope of influence is contained within the repository structure.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.src",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-all-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-core-doc-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-email-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-gui-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-instaweb-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-svn-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:gitk-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:gitweb-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:perl-Git-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:perl-Git-SVN-0:2.39.5-1.el9_2.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-32020"
},
{
"category": "external",
"summary": "RHBZ#2280466",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280466"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-32020",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-32020"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-32020",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-32020"
},
{
"category": "external",
"summary": "https://github.com/git/git/security/advisories/GHSA-5rfh-556j-fhgj",
"url": "https://github.com/git/git/security/advisories/GHSA-5rfh-556j-fhgj"
}
],
"release_date": "2024-05-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-07-08T11:27:59+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.src",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-all-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-core-doc-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-email-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-gui-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-instaweb-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-svn-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:gitk-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:gitweb-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:perl-Git-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:perl-Git-SVN-0:2.39.5-1.el9_2.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:4368"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.src",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-all-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-core-doc-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-email-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-gui-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-instaweb-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-svn-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:gitk-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:gitweb-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:perl-Git-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:perl-Git-SVN-0:2.39.5-1.el9_2.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "LOW",
"baseScore": 3.9,
"baseSeverity": "LOW",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.src",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-all-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-core-doc-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-email-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-gui-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-instaweb-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-svn-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:gitk-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:gitweb-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:perl-Git-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:perl-Git-SVN-0:2.39.5-1.el9_2.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "git: insecure hardlinks"
},
{
"cve": "CVE-2024-32021",
"cwe": {
"id": "CWE-61",
"name": "UNIX Symbolic Link (Symlink) Following"
},
"discovery_date": "2024-05-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2280484"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in Git. This flaw allows an unauthenticated attacker to place a repository on their target\u0027s local system that contains symlinks. During the cloning process, Git could be tricked into creating hardlinked arbitrary files into their repository\u0027s objects/ directory, impacting availability and integrity.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "git: symlink bypass",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "While the Git vulnerability described involves the potential creation of hardlinks to arbitrary files during the cloning process, its severity is considered Low due to several mitigating factors. First, successful exploitation relies on the presence of specific conditions, including the use of local cloning over the filesystem and the ability to manipulate symbolic links within the source repository. Secondly, the impact is limited to the creation of hardlinks to user-readable files, which may not necessarily lead to immediate compromise or exploitation of sensitive data. Additionally, the likelihood of exploitation is reduced by the need for direct access to the filesystem where the cloning operation occurs.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.src",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-all-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-core-doc-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-email-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-gui-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-instaweb-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-svn-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:gitk-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:gitweb-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:perl-Git-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:perl-Git-SVN-0:2.39.5-1.el9_2.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-32021"
},
{
"category": "external",
"summary": "RHBZ#2280484",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280484"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-32021",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-32021"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-32021",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-32021"
},
{
"category": "external",
"summary": "https://github.com/git/git/security/advisories/GHSA-mvxm-9j2h-qjx7",
"url": "https://github.com/git/git/security/advisories/GHSA-mvxm-9j2h-qjx7"
}
],
"release_date": "2024-05-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-07-08T11:27:59+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.src",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-all-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-core-doc-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-email-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-gui-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-instaweb-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-svn-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:gitk-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:gitweb-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:perl-Git-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:perl-Git-SVN-0:2.39.5-1.el9_2.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:4368"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.src",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-all-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-core-doc-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-email-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-gui-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-instaweb-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-svn-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:gitk-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:gitweb-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:perl-Git-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:perl-Git-SVN-0:2.39.5-1.el9_2.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "LOW",
"baseScore": 3.9,
"baseSeverity": "LOW",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.src",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-all-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-core-doc-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-email-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-gui-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-instaweb-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-svn-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:gitk-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:gitweb-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:perl-Git-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:perl-Git-SVN-0:2.39.5-1.el9_2.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "git: symlink bypass"
},
{
"cve": "CVE-2024-32465",
"cwe": {
"id": "CWE-22",
"name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
},
"discovery_date": "2024-05-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2280446"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Git in a full copy of a Git repository. A prerequisite for this vulnerability is for an unauthenticated attacker to place a specialized repository on their target\u0027s local system. If the victim were to clone this repository, it could result in arbitrary code execution.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "git: additional local RCE",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The vulnerability identified in Git as CVE-2024-32004, while significant, is categorized as Moderate rather than Important due to several factors. Primarily, the exploit requires meeting specific conditions, such as interacting with repositories from untrusted sources and potentially executing malicious code embedded within them. Additionally, the vulnerability does not inherently grant unauthorized access to system resources or compromise the integrity of Git installations. Although the potential impact of the exploit is substantial, its severity is tempered by the fact that it necessitates user interaction with repositories obtained from untrusted origins.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.src",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-all-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-core-doc-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-email-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-gui-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-instaweb-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-svn-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:gitk-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:gitweb-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:perl-Git-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:perl-Git-SVN-0:2.39.5-1.el9_2.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-32465"
},
{
"category": "external",
"summary": "RHBZ#2280446",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280446"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-32465",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-32465"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-32465",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-32465"
},
{
"category": "external",
"summary": "https://github.com/git/git/security/advisories/GHSA-vm9j-46j9-qvq4",
"url": "https://github.com/git/git/security/advisories/GHSA-vm9j-46j9-qvq4"
}
],
"release_date": "2024-05-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-07-08T11:27:59+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.src",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-all-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-core-doc-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-email-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-gui-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-instaweb-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-svn-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:gitk-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:gitweb-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:perl-Git-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:perl-Git-SVN-0:2.39.5-1.el9_2.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:4368"
},
{
"category": "workaround",
"details": "To reduce the risk of exploitation, users are advised to refrain from using Git in repositories obtained from archives sourced from untrusted origins. This precautionary measure helps to minimize exposure to potential security threats until the necessary patches can be applied.",
"product_ids": [
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.src",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-all-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-core-doc-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-email-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-gui-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-instaweb-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-svn-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:gitk-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:gitweb-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:perl-Git-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:perl-Git-SVN-0:2.39.5-1.el9_2.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "PHYSICAL",
"availabilityImpact": "HIGH",
"baseScore": 7.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.src",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-all-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-core-doc-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-email-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-gui-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-instaweb-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-svn-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:gitk-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:gitweb-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:perl-Git-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:perl-Git-SVN-0:2.39.5-1.el9_2.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "git: additional local RCE"
}
]
}
RHSA-2024_4084
Vulnerability from csaf_redhat - Published: 2024-06-25 08:24 - Updated: 2024-11-24 16:31Summary
Red Hat Security Advisory: git security update
Notes
Topic
An update for git is now available for Red Hat Enterprise Linux 8.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Git is a distributed revision control system with a decentralized architecture. As opposed to centralized version control systems with a client-server model, Git ensures that each working copy of a Git repository is an exact copy with complete revision history. This not only allows the user to work on and contribute to projects without the need to have permission to push the changes to their official repositories, but also makes it possible for the user to work with no network connection.
Security Fix(es):
* git: Recursive clones RCE (CVE-2024-32002)
* git: RCE while cloning local repos (CVE-2024-32004)
* git: additional local RCE (CVE-2024-32465)
* git: insecure hardlinks (CVE-2024-32020)
* git: symlink bypass (CVE-2024-32021)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for git is now available for Red Hat Enterprise Linux 8.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Git is a distributed revision control system with a decentralized architecture. As opposed to centralized version control systems with a client-server model, Git ensures that each working copy of a Git repository is an exact copy with complete revision history. This not only allows the user to work on and contribute to projects without the need to have permission to push the changes to their official repositories, but also makes it possible for the user to work with no network connection.\n\nSecurity Fix(es):\n\n* git: Recursive clones RCE (CVE-2024-32002)\n\n* git: RCE while cloning local repos (CVE-2024-32004)\n\n* git: additional local RCE (CVE-2024-32465)\n\n* git: insecure hardlinks (CVE-2024-32020)\n\n* git: symlink bypass (CVE-2024-32021)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:4084",
"url": "https://access.redhat.com/errata/RHSA-2024:4084"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2280421",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280421"
},
{
"category": "external",
"summary": "2280428",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280428"
},
{
"category": "external",
"summary": "2280446",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280446"
},
{
"category": "external",
"summary": "2280466",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280466"
},
{
"category": "external",
"summary": "2280484",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280484"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_4084.json"
}
],
"title": "Red Hat Security Advisory: git security update",
"tracking": {
"current_release_date": "2024-11-24T16:31:22+00:00",
"generator": {
"date": "2024-11-24T16:31:22+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.1"
}
},
"id": "RHSA-2024:4084",
"initial_release_date": "2024-06-25T08:24:01+00:00",
"revision_history": [
{
"date": "2024-06-25T08:24:01+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-06-25T08:24:01+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-24T16:31:22+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream (v. 8)",
"product": {
"name": "Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:8::appstream"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "git-0:2.43.5-1.el8_10.src",
"product": {
"name": "git-0:2.43.5-1.el8_10.src",
"product_id": "git-0:2.43.5-1.el8_10.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git@2.43.5-1.el8_10?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "git-0:2.43.5-1.el8_10.aarch64",
"product": {
"name": "git-0:2.43.5-1.el8_10.aarch64",
"product_id": "git-0:2.43.5-1.el8_10.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git@2.43.5-1.el8_10?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-core-0:2.43.5-1.el8_10.aarch64",
"product": {
"name": "git-core-0:2.43.5-1.el8_10.aarch64",
"product_id": "git-core-0:2.43.5-1.el8_10.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core@2.43.5-1.el8_10?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-0:2.43.5-1.el8_10.aarch64",
"product": {
"name": "git-credential-libsecret-0:2.43.5-1.el8_10.aarch64",
"product_id": "git-credential-libsecret-0:2.43.5-1.el8_10.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret@2.43.5-1.el8_10?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-daemon-0:2.43.5-1.el8_10.aarch64",
"product": {
"name": "git-daemon-0:2.43.5-1.el8_10.aarch64",
"product_id": "git-daemon-0:2.43.5-1.el8_10.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon@2.43.5-1.el8_10?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-subtree-0:2.43.5-1.el8_10.aarch64",
"product": {
"name": "git-subtree-0:2.43.5-1.el8_10.aarch64",
"product_id": "git-subtree-0:2.43.5-1.el8_10.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-subtree@2.43.5-1.el8_10?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-debugsource-0:2.43.5-1.el8_10.aarch64",
"product": {
"name": "git-debugsource-0:2.43.5-1.el8_10.aarch64",
"product_id": "git-debugsource-0:2.43.5-1.el8_10.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debugsource@2.43.5-1.el8_10?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-core-debuginfo-0:2.43.5-1.el8_10.aarch64",
"product": {
"name": "git-core-debuginfo-0:2.43.5-1.el8_10.aarch64",
"product_id": "git-core-debuginfo-0:2.43.5-1.el8_10.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core-debuginfo@2.43.5-1.el8_10?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.aarch64",
"product": {
"name": "git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.aarch64",
"product_id": "git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret-debuginfo@2.43.5-1.el8_10?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-daemon-debuginfo-0:2.43.5-1.el8_10.aarch64",
"product": {
"name": "git-daemon-debuginfo-0:2.43.5-1.el8_10.aarch64",
"product_id": "git-daemon-debuginfo-0:2.43.5-1.el8_10.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon-debuginfo@2.43.5-1.el8_10?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-debuginfo-0:2.43.5-1.el8_10.aarch64",
"product": {
"name": "git-debuginfo-0:2.43.5-1.el8_10.aarch64",
"product_id": "git-debuginfo-0:2.43.5-1.el8_10.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debuginfo@2.43.5-1.el8_10?arch=aarch64"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "git-0:2.43.5-1.el8_10.ppc64le",
"product": {
"name": "git-0:2.43.5-1.el8_10.ppc64le",
"product_id": "git-0:2.43.5-1.el8_10.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git@2.43.5-1.el8_10?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-core-0:2.43.5-1.el8_10.ppc64le",
"product": {
"name": "git-core-0:2.43.5-1.el8_10.ppc64le",
"product_id": "git-core-0:2.43.5-1.el8_10.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core@2.43.5-1.el8_10?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-0:2.43.5-1.el8_10.ppc64le",
"product": {
"name": "git-credential-libsecret-0:2.43.5-1.el8_10.ppc64le",
"product_id": "git-credential-libsecret-0:2.43.5-1.el8_10.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret@2.43.5-1.el8_10?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-daemon-0:2.43.5-1.el8_10.ppc64le",
"product": {
"name": "git-daemon-0:2.43.5-1.el8_10.ppc64le",
"product_id": "git-daemon-0:2.43.5-1.el8_10.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon@2.43.5-1.el8_10?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-subtree-0:2.43.5-1.el8_10.ppc64le",
"product": {
"name": "git-subtree-0:2.43.5-1.el8_10.ppc64le",
"product_id": "git-subtree-0:2.43.5-1.el8_10.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-subtree@2.43.5-1.el8_10?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-debugsource-0:2.43.5-1.el8_10.ppc64le",
"product": {
"name": "git-debugsource-0:2.43.5-1.el8_10.ppc64le",
"product_id": "git-debugsource-0:2.43.5-1.el8_10.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debugsource@2.43.5-1.el8_10?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-core-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"product": {
"name": "git-core-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"product_id": "git-core-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core-debuginfo@2.43.5-1.el8_10?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"product": {
"name": "git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"product_id": "git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret-debuginfo@2.43.5-1.el8_10?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-daemon-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"product": {
"name": "git-daemon-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"product_id": "git-daemon-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon-debuginfo@2.43.5-1.el8_10?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"product": {
"name": "git-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"product_id": "git-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debuginfo@2.43.5-1.el8_10?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "git-0:2.43.5-1.el8_10.x86_64",
"product": {
"name": "git-0:2.43.5-1.el8_10.x86_64",
"product_id": "git-0:2.43.5-1.el8_10.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git@2.43.5-1.el8_10?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-core-0:2.43.5-1.el8_10.x86_64",
"product": {
"name": "git-core-0:2.43.5-1.el8_10.x86_64",
"product_id": "git-core-0:2.43.5-1.el8_10.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core@2.43.5-1.el8_10?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-0:2.43.5-1.el8_10.x86_64",
"product": {
"name": "git-credential-libsecret-0:2.43.5-1.el8_10.x86_64",
"product_id": "git-credential-libsecret-0:2.43.5-1.el8_10.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret@2.43.5-1.el8_10?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-daemon-0:2.43.5-1.el8_10.x86_64",
"product": {
"name": "git-daemon-0:2.43.5-1.el8_10.x86_64",
"product_id": "git-daemon-0:2.43.5-1.el8_10.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon@2.43.5-1.el8_10?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-subtree-0:2.43.5-1.el8_10.x86_64",
"product": {
"name": "git-subtree-0:2.43.5-1.el8_10.x86_64",
"product_id": "git-subtree-0:2.43.5-1.el8_10.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-subtree@2.43.5-1.el8_10?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-debugsource-0:2.43.5-1.el8_10.x86_64",
"product": {
"name": "git-debugsource-0:2.43.5-1.el8_10.x86_64",
"product_id": "git-debugsource-0:2.43.5-1.el8_10.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debugsource@2.43.5-1.el8_10?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-core-debuginfo-0:2.43.5-1.el8_10.x86_64",
"product": {
"name": "git-core-debuginfo-0:2.43.5-1.el8_10.x86_64",
"product_id": "git-core-debuginfo-0:2.43.5-1.el8_10.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core-debuginfo@2.43.5-1.el8_10?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.x86_64",
"product": {
"name": "git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.x86_64",
"product_id": "git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret-debuginfo@2.43.5-1.el8_10?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-daemon-debuginfo-0:2.43.5-1.el8_10.x86_64",
"product": {
"name": "git-daemon-debuginfo-0:2.43.5-1.el8_10.x86_64",
"product_id": "git-daemon-debuginfo-0:2.43.5-1.el8_10.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon-debuginfo@2.43.5-1.el8_10?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-debuginfo-0:2.43.5-1.el8_10.x86_64",
"product": {
"name": "git-debuginfo-0:2.43.5-1.el8_10.x86_64",
"product_id": "git-debuginfo-0:2.43.5-1.el8_10.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debuginfo@2.43.5-1.el8_10?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "git-0:2.43.5-1.el8_10.s390x",
"product": {
"name": "git-0:2.43.5-1.el8_10.s390x",
"product_id": "git-0:2.43.5-1.el8_10.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git@2.43.5-1.el8_10?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-core-0:2.43.5-1.el8_10.s390x",
"product": {
"name": "git-core-0:2.43.5-1.el8_10.s390x",
"product_id": "git-core-0:2.43.5-1.el8_10.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core@2.43.5-1.el8_10?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-0:2.43.5-1.el8_10.s390x",
"product": {
"name": "git-credential-libsecret-0:2.43.5-1.el8_10.s390x",
"product_id": "git-credential-libsecret-0:2.43.5-1.el8_10.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret@2.43.5-1.el8_10?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-daemon-0:2.43.5-1.el8_10.s390x",
"product": {
"name": "git-daemon-0:2.43.5-1.el8_10.s390x",
"product_id": "git-daemon-0:2.43.5-1.el8_10.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon@2.43.5-1.el8_10?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-subtree-0:2.43.5-1.el8_10.s390x",
"product": {
"name": "git-subtree-0:2.43.5-1.el8_10.s390x",
"product_id": "git-subtree-0:2.43.5-1.el8_10.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-subtree@2.43.5-1.el8_10?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-debugsource-0:2.43.5-1.el8_10.s390x",
"product": {
"name": "git-debugsource-0:2.43.5-1.el8_10.s390x",
"product_id": "git-debugsource-0:2.43.5-1.el8_10.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debugsource@2.43.5-1.el8_10?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-core-debuginfo-0:2.43.5-1.el8_10.s390x",
"product": {
"name": "git-core-debuginfo-0:2.43.5-1.el8_10.s390x",
"product_id": "git-core-debuginfo-0:2.43.5-1.el8_10.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core-debuginfo@2.43.5-1.el8_10?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.s390x",
"product": {
"name": "git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.s390x",
"product_id": "git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret-debuginfo@2.43.5-1.el8_10?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-daemon-debuginfo-0:2.43.5-1.el8_10.s390x",
"product": {
"name": "git-daemon-debuginfo-0:2.43.5-1.el8_10.s390x",
"product_id": "git-daemon-debuginfo-0:2.43.5-1.el8_10.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon-debuginfo@2.43.5-1.el8_10?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-debuginfo-0:2.43.5-1.el8_10.s390x",
"product": {
"name": "git-debuginfo-0:2.43.5-1.el8_10.s390x",
"product_id": "git-debuginfo-0:2.43.5-1.el8_10.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debuginfo@2.43.5-1.el8_10?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "git-all-0:2.43.5-1.el8_10.noarch",
"product": {
"name": "git-all-0:2.43.5-1.el8_10.noarch",
"product_id": "git-all-0:2.43.5-1.el8_10.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-all@2.43.5-1.el8_10?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "git-core-doc-0:2.43.5-1.el8_10.noarch",
"product": {
"name": "git-core-doc-0:2.43.5-1.el8_10.noarch",
"product_id": "git-core-doc-0:2.43.5-1.el8_10.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core-doc@2.43.5-1.el8_10?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "git-email-0:2.43.5-1.el8_10.noarch",
"product": {
"name": "git-email-0:2.43.5-1.el8_10.noarch",
"product_id": "git-email-0:2.43.5-1.el8_10.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-email@2.43.5-1.el8_10?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "git-gui-0:2.43.5-1.el8_10.noarch",
"product": {
"name": "git-gui-0:2.43.5-1.el8_10.noarch",
"product_id": "git-gui-0:2.43.5-1.el8_10.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-gui@2.43.5-1.el8_10?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "git-instaweb-0:2.43.5-1.el8_10.noarch",
"product": {
"name": "git-instaweb-0:2.43.5-1.el8_10.noarch",
"product_id": "git-instaweb-0:2.43.5-1.el8_10.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-instaweb@2.43.5-1.el8_10?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "git-svn-0:2.43.5-1.el8_10.noarch",
"product": {
"name": "git-svn-0:2.43.5-1.el8_10.noarch",
"product_id": "git-svn-0:2.43.5-1.el8_10.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-svn@2.43.5-1.el8_10?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "gitk-0:2.43.5-1.el8_10.noarch",
"product": {
"name": "gitk-0:2.43.5-1.el8_10.noarch",
"product_id": "gitk-0:2.43.5-1.el8_10.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/gitk@2.43.5-1.el8_10?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "gitweb-0:2.43.5-1.el8_10.noarch",
"product": {
"name": "gitweb-0:2.43.5-1.el8_10.noarch",
"product_id": "gitweb-0:2.43.5-1.el8_10.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/gitweb@2.43.5-1.el8_10?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "perl-Git-0:2.43.5-1.el8_10.noarch",
"product": {
"name": "perl-Git-0:2.43.5-1.el8_10.noarch",
"product_id": "perl-Git-0:2.43.5-1.el8_10.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/perl-Git@2.43.5-1.el8_10?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "perl-Git-SVN-0:2.43.5-1.el8_10.noarch",
"product": {
"name": "perl-Git-SVN-0:2.43.5-1.el8_10.noarch",
"product_id": "perl-Git-SVN-0:2.43.5-1.el8_10.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/perl-Git-SVN@2.43.5-1.el8_10?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "git-0:2.43.5-1.el8_10.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.aarch64"
},
"product_reference": "git-0:2.43.5-1.el8_10.aarch64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-0:2.43.5-1.el8_10.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.ppc64le"
},
"product_reference": "git-0:2.43.5-1.el8_10.ppc64le",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-0:2.43.5-1.el8_10.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.s390x"
},
"product_reference": "git-0:2.43.5-1.el8_10.s390x",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-0:2.43.5-1.el8_10.src as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.src"
},
"product_reference": "git-0:2.43.5-1.el8_10.src",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-0:2.43.5-1.el8_10.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.x86_64"
},
"product_reference": "git-0:2.43.5-1.el8_10.x86_64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-all-0:2.43.5-1.el8_10.noarch as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-all-0:2.43.5-1.el8_10.noarch"
},
"product_reference": "git-all-0:2.43.5-1.el8_10.noarch",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-0:2.43.5-1.el8_10.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.aarch64"
},
"product_reference": "git-core-0:2.43.5-1.el8_10.aarch64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-0:2.43.5-1.el8_10.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.ppc64le"
},
"product_reference": "git-core-0:2.43.5-1.el8_10.ppc64le",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-0:2.43.5-1.el8_10.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.s390x"
},
"product_reference": "git-core-0:2.43.5-1.el8_10.s390x",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-0:2.43.5-1.el8_10.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.x86_64"
},
"product_reference": "git-core-0:2.43.5-1.el8_10.x86_64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-debuginfo-0:2.43.5-1.el8_10.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.aarch64"
},
"product_reference": "git-core-debuginfo-0:2.43.5-1.el8_10.aarch64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-debuginfo-0:2.43.5-1.el8_10.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.ppc64le"
},
"product_reference": "git-core-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-debuginfo-0:2.43.5-1.el8_10.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.s390x"
},
"product_reference": "git-core-debuginfo-0:2.43.5-1.el8_10.s390x",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-debuginfo-0:2.43.5-1.el8_10.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.x86_64"
},
"product_reference": "git-core-debuginfo-0:2.43.5-1.el8_10.x86_64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-doc-0:2.43.5-1.el8_10.noarch as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-core-doc-0:2.43.5-1.el8_10.noarch"
},
"product_reference": "git-core-doc-0:2.43.5-1.el8_10.noarch",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-0:2.43.5-1.el8_10.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.aarch64"
},
"product_reference": "git-credential-libsecret-0:2.43.5-1.el8_10.aarch64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-0:2.43.5-1.el8_10.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.ppc64le"
},
"product_reference": "git-credential-libsecret-0:2.43.5-1.el8_10.ppc64le",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-0:2.43.5-1.el8_10.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.s390x"
},
"product_reference": "git-credential-libsecret-0:2.43.5-1.el8_10.s390x",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-0:2.43.5-1.el8_10.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.x86_64"
},
"product_reference": "git-credential-libsecret-0:2.43.5-1.el8_10.x86_64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.aarch64"
},
"product_reference": "git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.aarch64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.ppc64le"
},
"product_reference": "git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.s390x"
},
"product_reference": "git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.s390x",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.x86_64"
},
"product_reference": "git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.x86_64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-0:2.43.5-1.el8_10.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.aarch64"
},
"product_reference": "git-daemon-0:2.43.5-1.el8_10.aarch64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-0:2.43.5-1.el8_10.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.ppc64le"
},
"product_reference": "git-daemon-0:2.43.5-1.el8_10.ppc64le",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-0:2.43.5-1.el8_10.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.s390x"
},
"product_reference": "git-daemon-0:2.43.5-1.el8_10.s390x",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-0:2.43.5-1.el8_10.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.x86_64"
},
"product_reference": "git-daemon-0:2.43.5-1.el8_10.x86_64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-debuginfo-0:2.43.5-1.el8_10.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.aarch64"
},
"product_reference": "git-daemon-debuginfo-0:2.43.5-1.el8_10.aarch64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-debuginfo-0:2.43.5-1.el8_10.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.ppc64le"
},
"product_reference": "git-daemon-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-debuginfo-0:2.43.5-1.el8_10.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.s390x"
},
"product_reference": "git-daemon-debuginfo-0:2.43.5-1.el8_10.s390x",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-debuginfo-0:2.43.5-1.el8_10.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.x86_64"
},
"product_reference": "git-daemon-debuginfo-0:2.43.5-1.el8_10.x86_64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debuginfo-0:2.43.5-1.el8_10.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.aarch64"
},
"product_reference": "git-debuginfo-0:2.43.5-1.el8_10.aarch64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debuginfo-0:2.43.5-1.el8_10.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.ppc64le"
},
"product_reference": "git-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debuginfo-0:2.43.5-1.el8_10.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.s390x"
},
"product_reference": "git-debuginfo-0:2.43.5-1.el8_10.s390x",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debuginfo-0:2.43.5-1.el8_10.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.x86_64"
},
"product_reference": "git-debuginfo-0:2.43.5-1.el8_10.x86_64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debugsource-0:2.43.5-1.el8_10.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.aarch64"
},
"product_reference": "git-debugsource-0:2.43.5-1.el8_10.aarch64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debugsource-0:2.43.5-1.el8_10.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.ppc64le"
},
"product_reference": "git-debugsource-0:2.43.5-1.el8_10.ppc64le",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debugsource-0:2.43.5-1.el8_10.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.s390x"
},
"product_reference": "git-debugsource-0:2.43.5-1.el8_10.s390x",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debugsource-0:2.43.5-1.el8_10.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.x86_64"
},
"product_reference": "git-debugsource-0:2.43.5-1.el8_10.x86_64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-0:2.43.5-1.el8_10.noarch as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-email-0:2.43.5-1.el8_10.noarch"
},
"product_reference": "git-email-0:2.43.5-1.el8_10.noarch",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-0:2.43.5-1.el8_10.noarch as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-gui-0:2.43.5-1.el8_10.noarch"
},
"product_reference": "git-gui-0:2.43.5-1.el8_10.noarch",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-instaweb-0:2.43.5-1.el8_10.noarch as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-instaweb-0:2.43.5-1.el8_10.noarch"
},
"product_reference": "git-instaweb-0:2.43.5-1.el8_10.noarch",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-subtree-0:2.43.5-1.el8_10.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.aarch64"
},
"product_reference": "git-subtree-0:2.43.5-1.el8_10.aarch64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-subtree-0:2.43.5-1.el8_10.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.ppc64le"
},
"product_reference": "git-subtree-0:2.43.5-1.el8_10.ppc64le",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-subtree-0:2.43.5-1.el8_10.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.s390x"
},
"product_reference": "git-subtree-0:2.43.5-1.el8_10.s390x",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-subtree-0:2.43.5-1.el8_10.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.x86_64"
},
"product_reference": "git-subtree-0:2.43.5-1.el8_10.x86_64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-0:2.43.5-1.el8_10.noarch as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-svn-0:2.43.5-1.el8_10.noarch"
},
"product_reference": "git-svn-0:2.43.5-1.el8_10.noarch",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-0:2.43.5-1.el8_10.noarch as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:gitk-0:2.43.5-1.el8_10.noarch"
},
"product_reference": "gitk-0:2.43.5-1.el8_10.noarch",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitweb-0:2.43.5-1.el8_10.noarch as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:gitweb-0:2.43.5-1.el8_10.noarch"
},
"product_reference": "gitweb-0:2.43.5-1.el8_10.noarch",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-0:2.43.5-1.el8_10.noarch as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:perl-Git-0:2.43.5-1.el8_10.noarch"
},
"product_reference": "perl-Git-0:2.43.5-1.el8_10.noarch",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-SVN-0:2.43.5-1.el8_10.noarch as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.5-1.el8_10.noarch"
},
"product_reference": "perl-Git-SVN-0:2.43.5-1.el8_10.noarch",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-32002",
"cwe": {
"id": "CWE-434",
"name": "Unrestricted Upload of File with Dangerous Type"
},
"discovery_date": "2024-05-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2280421"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in Git. This vulnerability allows the malicious manipulation of repositories containing submodules, exploiting a bug that enables the writing of files into the .git/ directory instead of the submodule\u0027s intended worktree. This manipulation facilitates the execution of arbitrary code during the cloning process, bypassing user inspection and control.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "git: Recursive clones RCE",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "While the described bug in Git presents a significant security concern, it falls short of being categorized as Critical due to several factors. The exploit requires a specific set of conditions, such as repositories with submodules and the presence of symbolic link support. Additionally, successful exploitation relies on users cloning repositories from untrusted sources, limiting its scope compared to critical vulnerabilities that may be remotely exploitable or affect a broader range of use cases. However, the potential impact of remote code execution during cloning operations underscores the importance of promptly applying patches and exercising caution when interacting with Git repositories, emphasizing its significant severity within the realm of software security.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.src",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-all-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-doc-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-email-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-gui-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-instaweb-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-svn-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitk-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitweb-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.5-1.el8_10.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-32002"
},
{
"category": "external",
"summary": "RHBZ#2280421",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280421"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-32002",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-32002"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-32002",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-32002"
},
{
"category": "external",
"summary": "https://github.com/git/git/security/advisories/GHSA-8h77-4q3w-gfgv",
"url": "https://github.com/git/git/security/advisories/GHSA-8h77-4q3w-gfgv"
}
],
"release_date": "2024-05-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-06-25T08:24:01+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.src",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-all-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-doc-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-email-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-gui-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-instaweb-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-svn-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitk-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitweb-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.5-1.el8_10.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:4084"
},
{
"category": "workaround",
"details": "One preventative measure is to disable symbolic link support. This can be accomplished by running the command git config --global core.symlinks false. Another temporary option is to avoid using the --recurse-submodules setting with untrusted git repos.",
"product_ids": [
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.src",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-all-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-doc-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-email-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-gui-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-instaweb-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-svn-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitk-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitweb-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.5-1.el8_10.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.0,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.src",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-all-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-doc-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-email-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-gui-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-instaweb-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-svn-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitk-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitweb-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.5-1.el8_10.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "git: Recursive clones RCE"
},
{
"cve": "CVE-2024-32004",
"cwe": {
"id": "CWE-114",
"name": "Process Control"
},
"discovery_date": "2024-05-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2280428"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in Git. This vulnerability can be exploited by an unauthenticated attacker who places a specialized repository on the target\u0027s local system. If the victim clones this repository, the attacker can execute arbitrary code.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "git: RCE while cloning local repos",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability, while significant, does not reach Critical severity due to its reliance on local repository manipulation. While it allows attackers to execute arbitrary code during cloning operations, its impact is constrained by the necessity for access to the target\u0027s local environment. Critical severity typically involves vulnerabilities that can be exploited remotely or without user interaction. Nonetheless, this issue remains Important as it can lead to unauthorized code execution, potentially compromising the integrity and security of affected systems.\n\n\nFuse 7 Karaf uses JGit to manage patches. It\u0027s heavily protected by file permissions and RBAC. Unless an attacker have write permissions to Fuse internal git repositories, this vulnerability is not exploitable.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.src",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-all-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-doc-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-email-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-gui-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-instaweb-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-svn-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitk-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitweb-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.5-1.el8_10.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-32004"
},
{
"category": "external",
"summary": "RHBZ#2280428",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280428"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-32004",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-32004"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-32004",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-32004"
},
{
"category": "external",
"summary": "https://github.com/git/git/security/advisories/GHSA-xfc6-vwr8-r389",
"url": "https://github.com/git/git/security/advisories/GHSA-xfc6-vwr8-r389"
}
],
"release_date": "2024-05-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-06-25T08:24:01+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.src",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-all-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-doc-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-email-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-gui-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-instaweb-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-svn-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitk-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitweb-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.5-1.el8_10.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:4084"
},
{
"category": "workaround",
"details": "Exercise caution when cloning repositories from untrusted sources.",
"product_ids": [
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.src",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-all-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-doc-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-email-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-gui-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-instaweb-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-svn-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitk-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitweb-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.5-1.el8_10.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.src",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-all-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-doc-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-email-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-gui-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-instaweb-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-svn-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitk-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitweb-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.5-1.el8_10.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "git: RCE while cloning local repos"
},
{
"cve": "CVE-2024-32020",
"cwe": {
"id": "CWE-62",
"name": "UNIX Hard Link"
},
"discovery_date": "2024-05-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2280466"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in Git. This flaw allows an unauthenticated attacker to place a specialized repository on their target\u0027s local system. For performance reasons, Git uses hardlinks when cloning a repository located on the same disk. However, if the repo being cloned is owned by a different user, this can introduce a security risk. At any time in the future, the original repo owner could rewrite the hardlinked files in the cloned user\u0027s repo.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "git: insecure hardlinks",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability presents a Low severity issue due to its contextual constraints and limited impact potential. Primarily affecting local Git repository clones where source and target repositories reside on the same disk, the risk arises only when the source repository is owned by a different, potentially untrusted user. This scenario necessitates specific conditions for exploitation, such as shared access to the disk among multiple users. Moreover, the impact is localized to the affected repositories and does not extend to the broader system or network. While the integrity of the target repository may be compromised if the untrusted user modifies linked files, the scope of influence is contained within the repository structure.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.src",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-all-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-doc-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-email-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-gui-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-instaweb-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-svn-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitk-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitweb-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.5-1.el8_10.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-32020"
},
{
"category": "external",
"summary": "RHBZ#2280466",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280466"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-32020",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-32020"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-32020",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-32020"
},
{
"category": "external",
"summary": "https://github.com/git/git/security/advisories/GHSA-5rfh-556j-fhgj",
"url": "https://github.com/git/git/security/advisories/GHSA-5rfh-556j-fhgj"
}
],
"release_date": "2024-05-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-06-25T08:24:01+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.src",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-all-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-doc-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-email-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-gui-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-instaweb-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-svn-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitk-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitweb-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.5-1.el8_10.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:4084"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.src",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-all-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-doc-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-email-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-gui-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-instaweb-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-svn-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitk-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitweb-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.5-1.el8_10.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "LOW",
"baseScore": 3.9,
"baseSeverity": "LOW",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.src",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-all-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-doc-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-email-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-gui-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-instaweb-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-svn-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitk-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitweb-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.5-1.el8_10.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "git: insecure hardlinks"
},
{
"cve": "CVE-2024-32021",
"cwe": {
"id": "CWE-61",
"name": "UNIX Symbolic Link (Symlink) Following"
},
"discovery_date": "2024-05-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2280484"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in Git. This flaw allows an unauthenticated attacker to place a repository on their target\u0027s local system that contains symlinks. During the cloning process, Git could be tricked into creating hardlinked arbitrary files into their repository\u0027s objects/ directory, impacting availability and integrity.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "git: symlink bypass",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "While the Git vulnerability described involves the potential creation of hardlinks to arbitrary files during the cloning process, its severity is considered Low due to several mitigating factors. First, successful exploitation relies on the presence of specific conditions, including the use of local cloning over the filesystem and the ability to manipulate symbolic links within the source repository. Secondly, the impact is limited to the creation of hardlinks to user-readable files, which may not necessarily lead to immediate compromise or exploitation of sensitive data. Additionally, the likelihood of exploitation is reduced by the need for direct access to the filesystem where the cloning operation occurs.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.src",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-all-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-doc-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-email-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-gui-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-instaweb-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-svn-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitk-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitweb-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.5-1.el8_10.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-32021"
},
{
"category": "external",
"summary": "RHBZ#2280484",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280484"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-32021",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-32021"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-32021",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-32021"
},
{
"category": "external",
"summary": "https://github.com/git/git/security/advisories/GHSA-mvxm-9j2h-qjx7",
"url": "https://github.com/git/git/security/advisories/GHSA-mvxm-9j2h-qjx7"
}
],
"release_date": "2024-05-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-06-25T08:24:01+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.src",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-all-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-doc-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-email-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-gui-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-instaweb-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-svn-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitk-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitweb-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.5-1.el8_10.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:4084"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.src",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-all-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-doc-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-email-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-gui-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-instaweb-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-svn-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitk-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitweb-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.5-1.el8_10.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "LOW",
"baseScore": 3.9,
"baseSeverity": "LOW",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.src",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-all-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-doc-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-email-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-gui-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-instaweb-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-svn-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitk-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitweb-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.5-1.el8_10.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "git: symlink bypass"
},
{
"cve": "CVE-2024-32465",
"cwe": {
"id": "CWE-22",
"name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
},
"discovery_date": "2024-05-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2280446"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Git in a full copy of a Git repository. A prerequisite for this vulnerability is for an unauthenticated attacker to place a specialized repository on their target\u0027s local system. If the victim were to clone this repository, it could result in arbitrary code execution.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "git: additional local RCE",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The vulnerability identified in Git as CVE-2024-32004, while significant, is categorized as Moderate rather than Important due to several factors. Primarily, the exploit requires meeting specific conditions, such as interacting with repositories from untrusted sources and potentially executing malicious code embedded within them. Additionally, the vulnerability does not inherently grant unauthorized access to system resources or compromise the integrity of Git installations. Although the potential impact of the exploit is substantial, its severity is tempered by the fact that it necessitates user interaction with repositories obtained from untrusted origins.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.src",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-all-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-doc-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-email-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-gui-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-instaweb-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-svn-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitk-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitweb-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.5-1.el8_10.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-32465"
},
{
"category": "external",
"summary": "RHBZ#2280446",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280446"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-32465",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-32465"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-32465",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-32465"
},
{
"category": "external",
"summary": "https://github.com/git/git/security/advisories/GHSA-vm9j-46j9-qvq4",
"url": "https://github.com/git/git/security/advisories/GHSA-vm9j-46j9-qvq4"
}
],
"release_date": "2024-05-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-06-25T08:24:01+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.src",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-all-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-doc-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-email-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-gui-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-instaweb-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-svn-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitk-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitweb-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.5-1.el8_10.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:4084"
},
{
"category": "workaround",
"details": "To reduce the risk of exploitation, users are advised to refrain from using Git in repositories obtained from archives sourced from untrusted origins. This precautionary measure helps to minimize exposure to potential security threats until the necessary patches can be applied.",
"product_ids": [
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.src",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-all-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-doc-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-email-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-gui-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-instaweb-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-svn-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitk-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitweb-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.5-1.el8_10.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "PHYSICAL",
"availabilityImpact": "HIGH",
"baseScore": 7.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.src",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-all-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-doc-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-email-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-gui-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-instaweb-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-svn-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitk-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitweb-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.5-1.el8_10.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "git: additional local RCE"
}
]
}
RHSA-2024:4368
Vulnerability from csaf_redhat - Published: 2024-07-08 11:27 - Updated: 2025-11-21 19:05Summary
Red Hat Security Advisory: git security update
Notes
Topic
An update for git is now available for Red Hat Enterprise Linux 9.2 Extended Update Support.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Git is a distributed revision control system with a decentralized architecture. As opposed to centralized version control systems with a client-server model, Git ensures that each working copy of a Git repository is an exact copy with complete revision history. This not only allows the user to work on and contribute to projects without the need to have permission to push the changes to their official repositories, but also makes it possible for the user to work with no network connection.
Security Fix(es):
* git: Recursive clones RCE (CVE-2024-32002)
* git: RCE while cloning local repos (CVE-2024-32004)
* git: additional local RCE (CVE-2024-32465)
* git: insecure hardlinks (CVE-2024-32020)
* git: symlink bypass (CVE-2024-32021)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for git is now available for Red Hat Enterprise Linux 9.2 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Git is a distributed revision control system with a decentralized architecture. As opposed to centralized version control systems with a client-server model, Git ensures that each working copy of a Git repository is an exact copy with complete revision history. This not only allows the user to work on and contribute to projects without the need to have permission to push the changes to their official repositories, but also makes it possible for the user to work with no network connection.\n\nSecurity Fix(es):\n\n* git: Recursive clones RCE (CVE-2024-32002)\n\n* git: RCE while cloning local repos (CVE-2024-32004)\n\n* git: additional local RCE (CVE-2024-32465)\n\n* git: insecure hardlinks (CVE-2024-32020)\n\n* git: symlink bypass (CVE-2024-32021)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:4368",
"url": "https://access.redhat.com/errata/RHSA-2024:4368"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2280421",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280421"
},
{
"category": "external",
"summary": "2280428",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280428"
},
{
"category": "external",
"summary": "2280446",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280446"
},
{
"category": "external",
"summary": "2280466",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280466"
},
{
"category": "external",
"summary": "2280484",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280484"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_4368.json"
}
],
"title": "Red Hat Security Advisory: git security update",
"tracking": {
"current_release_date": "2025-11-21T19:05:24+00:00",
"generator": {
"date": "2025-11-21T19:05:24+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.12"
}
},
"id": "RHSA-2024:4368",
"initial_release_date": "2024-07-08T11:27:59+00:00",
"revision_history": [
{
"date": "2024-07-08T11:27:59+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-07-08T11:27:59+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-21T19:05:24+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product": {
"name": "Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_eus:9.2::appstream"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "git-0:2.39.5-1.el9_2.src",
"product": {
"name": "git-0:2.39.5-1.el9_2.src",
"product_id": "git-0:2.39.5-1.el9_2.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git@2.39.5-1.el9_2?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "git-0:2.39.5-1.el9_2.aarch64",
"product": {
"name": "git-0:2.39.5-1.el9_2.aarch64",
"product_id": "git-0:2.39.5-1.el9_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git@2.39.5-1.el9_2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-core-0:2.39.5-1.el9_2.aarch64",
"product": {
"name": "git-core-0:2.39.5-1.el9_2.aarch64",
"product_id": "git-core-0:2.39.5-1.el9_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core@2.39.5-1.el9_2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-0:2.39.5-1.el9_2.aarch64",
"product": {
"name": "git-credential-libsecret-0:2.39.5-1.el9_2.aarch64",
"product_id": "git-credential-libsecret-0:2.39.5-1.el9_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret@2.39.5-1.el9_2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-daemon-0:2.39.5-1.el9_2.aarch64",
"product": {
"name": "git-daemon-0:2.39.5-1.el9_2.aarch64",
"product_id": "git-daemon-0:2.39.5-1.el9_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon@2.39.5-1.el9_2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-subtree-0:2.39.5-1.el9_2.aarch64",
"product": {
"name": "git-subtree-0:2.39.5-1.el9_2.aarch64",
"product_id": "git-subtree-0:2.39.5-1.el9_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-subtree@2.39.5-1.el9_2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-debugsource-0:2.39.5-1.el9_2.aarch64",
"product": {
"name": "git-debugsource-0:2.39.5-1.el9_2.aarch64",
"product_id": "git-debugsource-0:2.39.5-1.el9_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debugsource@2.39.5-1.el9_2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-core-debuginfo-0:2.39.5-1.el9_2.aarch64",
"product": {
"name": "git-core-debuginfo-0:2.39.5-1.el9_2.aarch64",
"product_id": "git-core-debuginfo-0:2.39.5-1.el9_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core-debuginfo@2.39.5-1.el9_2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.aarch64",
"product": {
"name": "git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.aarch64",
"product_id": "git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret-debuginfo@2.39.5-1.el9_2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-daemon-debuginfo-0:2.39.5-1.el9_2.aarch64",
"product": {
"name": "git-daemon-debuginfo-0:2.39.5-1.el9_2.aarch64",
"product_id": "git-daemon-debuginfo-0:2.39.5-1.el9_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon-debuginfo@2.39.5-1.el9_2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-debuginfo-0:2.39.5-1.el9_2.aarch64",
"product": {
"name": "git-debuginfo-0:2.39.5-1.el9_2.aarch64",
"product_id": "git-debuginfo-0:2.39.5-1.el9_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debuginfo@2.39.5-1.el9_2?arch=aarch64"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "git-0:2.39.5-1.el9_2.ppc64le",
"product": {
"name": "git-0:2.39.5-1.el9_2.ppc64le",
"product_id": "git-0:2.39.5-1.el9_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git@2.39.5-1.el9_2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-core-0:2.39.5-1.el9_2.ppc64le",
"product": {
"name": "git-core-0:2.39.5-1.el9_2.ppc64le",
"product_id": "git-core-0:2.39.5-1.el9_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core@2.39.5-1.el9_2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-0:2.39.5-1.el9_2.ppc64le",
"product": {
"name": "git-credential-libsecret-0:2.39.5-1.el9_2.ppc64le",
"product_id": "git-credential-libsecret-0:2.39.5-1.el9_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret@2.39.5-1.el9_2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-daemon-0:2.39.5-1.el9_2.ppc64le",
"product": {
"name": "git-daemon-0:2.39.5-1.el9_2.ppc64le",
"product_id": "git-daemon-0:2.39.5-1.el9_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon@2.39.5-1.el9_2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-subtree-0:2.39.5-1.el9_2.ppc64le",
"product": {
"name": "git-subtree-0:2.39.5-1.el9_2.ppc64le",
"product_id": "git-subtree-0:2.39.5-1.el9_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-subtree@2.39.5-1.el9_2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-debugsource-0:2.39.5-1.el9_2.ppc64le",
"product": {
"name": "git-debugsource-0:2.39.5-1.el9_2.ppc64le",
"product_id": "git-debugsource-0:2.39.5-1.el9_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debugsource@2.39.5-1.el9_2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-core-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"product": {
"name": "git-core-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"product_id": "git-core-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core-debuginfo@2.39.5-1.el9_2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"product": {
"name": "git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"product_id": "git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret-debuginfo@2.39.5-1.el9_2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-daemon-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"product": {
"name": "git-daemon-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"product_id": "git-daemon-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon-debuginfo@2.39.5-1.el9_2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"product": {
"name": "git-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"product_id": "git-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debuginfo@2.39.5-1.el9_2?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "git-0:2.39.5-1.el9_2.x86_64",
"product": {
"name": "git-0:2.39.5-1.el9_2.x86_64",
"product_id": "git-0:2.39.5-1.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git@2.39.5-1.el9_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-core-0:2.39.5-1.el9_2.x86_64",
"product": {
"name": "git-core-0:2.39.5-1.el9_2.x86_64",
"product_id": "git-core-0:2.39.5-1.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core@2.39.5-1.el9_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-0:2.39.5-1.el9_2.x86_64",
"product": {
"name": "git-credential-libsecret-0:2.39.5-1.el9_2.x86_64",
"product_id": "git-credential-libsecret-0:2.39.5-1.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret@2.39.5-1.el9_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-daemon-0:2.39.5-1.el9_2.x86_64",
"product": {
"name": "git-daemon-0:2.39.5-1.el9_2.x86_64",
"product_id": "git-daemon-0:2.39.5-1.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon@2.39.5-1.el9_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-subtree-0:2.39.5-1.el9_2.x86_64",
"product": {
"name": "git-subtree-0:2.39.5-1.el9_2.x86_64",
"product_id": "git-subtree-0:2.39.5-1.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-subtree@2.39.5-1.el9_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-debugsource-0:2.39.5-1.el9_2.x86_64",
"product": {
"name": "git-debugsource-0:2.39.5-1.el9_2.x86_64",
"product_id": "git-debugsource-0:2.39.5-1.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debugsource@2.39.5-1.el9_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-core-debuginfo-0:2.39.5-1.el9_2.x86_64",
"product": {
"name": "git-core-debuginfo-0:2.39.5-1.el9_2.x86_64",
"product_id": "git-core-debuginfo-0:2.39.5-1.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core-debuginfo@2.39.5-1.el9_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.x86_64",
"product": {
"name": "git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.x86_64",
"product_id": "git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret-debuginfo@2.39.5-1.el9_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-daemon-debuginfo-0:2.39.5-1.el9_2.x86_64",
"product": {
"name": "git-daemon-debuginfo-0:2.39.5-1.el9_2.x86_64",
"product_id": "git-daemon-debuginfo-0:2.39.5-1.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon-debuginfo@2.39.5-1.el9_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-debuginfo-0:2.39.5-1.el9_2.x86_64",
"product": {
"name": "git-debuginfo-0:2.39.5-1.el9_2.x86_64",
"product_id": "git-debuginfo-0:2.39.5-1.el9_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debuginfo@2.39.5-1.el9_2?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "git-0:2.39.5-1.el9_2.s390x",
"product": {
"name": "git-0:2.39.5-1.el9_2.s390x",
"product_id": "git-0:2.39.5-1.el9_2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git@2.39.5-1.el9_2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-core-0:2.39.5-1.el9_2.s390x",
"product": {
"name": "git-core-0:2.39.5-1.el9_2.s390x",
"product_id": "git-core-0:2.39.5-1.el9_2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core@2.39.5-1.el9_2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-0:2.39.5-1.el9_2.s390x",
"product": {
"name": "git-credential-libsecret-0:2.39.5-1.el9_2.s390x",
"product_id": "git-credential-libsecret-0:2.39.5-1.el9_2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret@2.39.5-1.el9_2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-daemon-0:2.39.5-1.el9_2.s390x",
"product": {
"name": "git-daemon-0:2.39.5-1.el9_2.s390x",
"product_id": "git-daemon-0:2.39.5-1.el9_2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon@2.39.5-1.el9_2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-subtree-0:2.39.5-1.el9_2.s390x",
"product": {
"name": "git-subtree-0:2.39.5-1.el9_2.s390x",
"product_id": "git-subtree-0:2.39.5-1.el9_2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-subtree@2.39.5-1.el9_2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-debugsource-0:2.39.5-1.el9_2.s390x",
"product": {
"name": "git-debugsource-0:2.39.5-1.el9_2.s390x",
"product_id": "git-debugsource-0:2.39.5-1.el9_2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debugsource@2.39.5-1.el9_2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-core-debuginfo-0:2.39.5-1.el9_2.s390x",
"product": {
"name": "git-core-debuginfo-0:2.39.5-1.el9_2.s390x",
"product_id": "git-core-debuginfo-0:2.39.5-1.el9_2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core-debuginfo@2.39.5-1.el9_2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.s390x",
"product": {
"name": "git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.s390x",
"product_id": "git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret-debuginfo@2.39.5-1.el9_2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-daemon-debuginfo-0:2.39.5-1.el9_2.s390x",
"product": {
"name": "git-daemon-debuginfo-0:2.39.5-1.el9_2.s390x",
"product_id": "git-daemon-debuginfo-0:2.39.5-1.el9_2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon-debuginfo@2.39.5-1.el9_2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-debuginfo-0:2.39.5-1.el9_2.s390x",
"product": {
"name": "git-debuginfo-0:2.39.5-1.el9_2.s390x",
"product_id": "git-debuginfo-0:2.39.5-1.el9_2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debuginfo@2.39.5-1.el9_2?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "git-all-0:2.39.5-1.el9_2.noarch",
"product": {
"name": "git-all-0:2.39.5-1.el9_2.noarch",
"product_id": "git-all-0:2.39.5-1.el9_2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-all@2.39.5-1.el9_2?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "git-core-doc-0:2.39.5-1.el9_2.noarch",
"product": {
"name": "git-core-doc-0:2.39.5-1.el9_2.noarch",
"product_id": "git-core-doc-0:2.39.5-1.el9_2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core-doc@2.39.5-1.el9_2?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "git-email-0:2.39.5-1.el9_2.noarch",
"product": {
"name": "git-email-0:2.39.5-1.el9_2.noarch",
"product_id": "git-email-0:2.39.5-1.el9_2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-email@2.39.5-1.el9_2?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "git-gui-0:2.39.5-1.el9_2.noarch",
"product": {
"name": "git-gui-0:2.39.5-1.el9_2.noarch",
"product_id": "git-gui-0:2.39.5-1.el9_2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-gui@2.39.5-1.el9_2?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "git-instaweb-0:2.39.5-1.el9_2.noarch",
"product": {
"name": "git-instaweb-0:2.39.5-1.el9_2.noarch",
"product_id": "git-instaweb-0:2.39.5-1.el9_2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-instaweb@2.39.5-1.el9_2?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "git-svn-0:2.39.5-1.el9_2.noarch",
"product": {
"name": "git-svn-0:2.39.5-1.el9_2.noarch",
"product_id": "git-svn-0:2.39.5-1.el9_2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-svn@2.39.5-1.el9_2?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "gitk-0:2.39.5-1.el9_2.noarch",
"product": {
"name": "gitk-0:2.39.5-1.el9_2.noarch",
"product_id": "gitk-0:2.39.5-1.el9_2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/gitk@2.39.5-1.el9_2?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "gitweb-0:2.39.5-1.el9_2.noarch",
"product": {
"name": "gitweb-0:2.39.5-1.el9_2.noarch",
"product_id": "gitweb-0:2.39.5-1.el9_2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/gitweb@2.39.5-1.el9_2?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "perl-Git-0:2.39.5-1.el9_2.noarch",
"product": {
"name": "perl-Git-0:2.39.5-1.el9_2.noarch",
"product_id": "perl-Git-0:2.39.5-1.el9_2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/perl-Git@2.39.5-1.el9_2?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "perl-Git-SVN-0:2.39.5-1.el9_2.noarch",
"product": {
"name": "perl-Git-SVN-0:2.39.5-1.el9_2.noarch",
"product_id": "perl-Git-SVN-0:2.39.5-1.el9_2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/perl-Git-SVN@2.39.5-1.el9_2?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "git-0:2.39.5-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.aarch64"
},
"product_reference": "git-0:2.39.5-1.el9_2.aarch64",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-0:2.39.5-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.ppc64le"
},
"product_reference": "git-0:2.39.5-1.el9_2.ppc64le",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-0:2.39.5-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.s390x"
},
"product_reference": "git-0:2.39.5-1.el9_2.s390x",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-0:2.39.5-1.el9_2.src as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.src"
},
"product_reference": "git-0:2.39.5-1.el9_2.src",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-0:2.39.5-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.x86_64"
},
"product_reference": "git-0:2.39.5-1.el9_2.x86_64",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-all-0:2.39.5-1.el9_2.noarch as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:git-all-0:2.39.5-1.el9_2.noarch"
},
"product_reference": "git-all-0:2.39.5-1.el9_2.noarch",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-0:2.39.5-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.aarch64"
},
"product_reference": "git-core-0:2.39.5-1.el9_2.aarch64",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-0:2.39.5-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.ppc64le"
},
"product_reference": "git-core-0:2.39.5-1.el9_2.ppc64le",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-0:2.39.5-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.s390x"
},
"product_reference": "git-core-0:2.39.5-1.el9_2.s390x",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-0:2.39.5-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.x86_64"
},
"product_reference": "git-core-0:2.39.5-1.el9_2.x86_64",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-debuginfo-0:2.39.5-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.aarch64"
},
"product_reference": "git-core-debuginfo-0:2.39.5-1.el9_2.aarch64",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-debuginfo-0:2.39.5-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.ppc64le"
},
"product_reference": "git-core-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-debuginfo-0:2.39.5-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.s390x"
},
"product_reference": "git-core-debuginfo-0:2.39.5-1.el9_2.s390x",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-debuginfo-0:2.39.5-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.x86_64"
},
"product_reference": "git-core-debuginfo-0:2.39.5-1.el9_2.x86_64",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-doc-0:2.39.5-1.el9_2.noarch as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:git-core-doc-0:2.39.5-1.el9_2.noarch"
},
"product_reference": "git-core-doc-0:2.39.5-1.el9_2.noarch",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-0:2.39.5-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.aarch64"
},
"product_reference": "git-credential-libsecret-0:2.39.5-1.el9_2.aarch64",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-0:2.39.5-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.ppc64le"
},
"product_reference": "git-credential-libsecret-0:2.39.5-1.el9_2.ppc64le",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-0:2.39.5-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.s390x"
},
"product_reference": "git-credential-libsecret-0:2.39.5-1.el9_2.s390x",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-0:2.39.5-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.x86_64"
},
"product_reference": "git-credential-libsecret-0:2.39.5-1.el9_2.x86_64",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.aarch64"
},
"product_reference": "git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.aarch64",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.ppc64le"
},
"product_reference": "git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.s390x"
},
"product_reference": "git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.s390x",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.x86_64"
},
"product_reference": "git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.x86_64",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-0:2.39.5-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.aarch64"
},
"product_reference": "git-daemon-0:2.39.5-1.el9_2.aarch64",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-0:2.39.5-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.ppc64le"
},
"product_reference": "git-daemon-0:2.39.5-1.el9_2.ppc64le",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-0:2.39.5-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.s390x"
},
"product_reference": "git-daemon-0:2.39.5-1.el9_2.s390x",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-0:2.39.5-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.x86_64"
},
"product_reference": "git-daemon-0:2.39.5-1.el9_2.x86_64",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-debuginfo-0:2.39.5-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.aarch64"
},
"product_reference": "git-daemon-debuginfo-0:2.39.5-1.el9_2.aarch64",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-debuginfo-0:2.39.5-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.ppc64le"
},
"product_reference": "git-daemon-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-debuginfo-0:2.39.5-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.s390x"
},
"product_reference": "git-daemon-debuginfo-0:2.39.5-1.el9_2.s390x",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-debuginfo-0:2.39.5-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.x86_64"
},
"product_reference": "git-daemon-debuginfo-0:2.39.5-1.el9_2.x86_64",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debuginfo-0:2.39.5-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.aarch64"
},
"product_reference": "git-debuginfo-0:2.39.5-1.el9_2.aarch64",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debuginfo-0:2.39.5-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.ppc64le"
},
"product_reference": "git-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debuginfo-0:2.39.5-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.s390x"
},
"product_reference": "git-debuginfo-0:2.39.5-1.el9_2.s390x",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debuginfo-0:2.39.5-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.x86_64"
},
"product_reference": "git-debuginfo-0:2.39.5-1.el9_2.x86_64",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debugsource-0:2.39.5-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.aarch64"
},
"product_reference": "git-debugsource-0:2.39.5-1.el9_2.aarch64",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debugsource-0:2.39.5-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.ppc64le"
},
"product_reference": "git-debugsource-0:2.39.5-1.el9_2.ppc64le",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debugsource-0:2.39.5-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.s390x"
},
"product_reference": "git-debugsource-0:2.39.5-1.el9_2.s390x",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debugsource-0:2.39.5-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.x86_64"
},
"product_reference": "git-debugsource-0:2.39.5-1.el9_2.x86_64",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-0:2.39.5-1.el9_2.noarch as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:git-email-0:2.39.5-1.el9_2.noarch"
},
"product_reference": "git-email-0:2.39.5-1.el9_2.noarch",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-0:2.39.5-1.el9_2.noarch as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:git-gui-0:2.39.5-1.el9_2.noarch"
},
"product_reference": "git-gui-0:2.39.5-1.el9_2.noarch",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-instaweb-0:2.39.5-1.el9_2.noarch as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:git-instaweb-0:2.39.5-1.el9_2.noarch"
},
"product_reference": "git-instaweb-0:2.39.5-1.el9_2.noarch",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-subtree-0:2.39.5-1.el9_2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.aarch64"
},
"product_reference": "git-subtree-0:2.39.5-1.el9_2.aarch64",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-subtree-0:2.39.5-1.el9_2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.ppc64le"
},
"product_reference": "git-subtree-0:2.39.5-1.el9_2.ppc64le",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-subtree-0:2.39.5-1.el9_2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.s390x"
},
"product_reference": "git-subtree-0:2.39.5-1.el9_2.s390x",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-subtree-0:2.39.5-1.el9_2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.x86_64"
},
"product_reference": "git-subtree-0:2.39.5-1.el9_2.x86_64",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-0:2.39.5-1.el9_2.noarch as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:git-svn-0:2.39.5-1.el9_2.noarch"
},
"product_reference": "git-svn-0:2.39.5-1.el9_2.noarch",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-0:2.39.5-1.el9_2.noarch as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:gitk-0:2.39.5-1.el9_2.noarch"
},
"product_reference": "gitk-0:2.39.5-1.el9_2.noarch",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitweb-0:2.39.5-1.el9_2.noarch as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:gitweb-0:2.39.5-1.el9_2.noarch"
},
"product_reference": "gitweb-0:2.39.5-1.el9_2.noarch",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-0:2.39.5-1.el9_2.noarch as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:perl-Git-0:2.39.5-1.el9_2.noarch"
},
"product_reference": "perl-Git-0:2.39.5-1.el9_2.noarch",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-SVN-0:2.39.5-1.el9_2.noarch as a component of Red Hat Enterprise Linux AppStream EUS (v.9.2)",
"product_id": "AppStream-9.2.0.Z.EUS:perl-Git-SVN-0:2.39.5-1.el9_2.noarch"
},
"product_reference": "perl-Git-SVN-0:2.39.5-1.el9_2.noarch",
"relates_to_product_reference": "AppStream-9.2.0.Z.EUS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-32002",
"cwe": {
"id": "CWE-434",
"name": "Unrestricted Upload of File with Dangerous Type"
},
"discovery_date": "2024-05-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2280421"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in Git. This vulnerability allows the malicious manipulation of repositories containing submodules, exploiting a bug that enables the writing of files into the .git/ directory instead of the submodule\u0027s intended worktree. This manipulation facilitates the execution of arbitrary code during the cloning process, bypassing user inspection and control.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "git: Recursive clones RCE",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "While the described bug in Git presents a significant security concern, it falls short of being categorized as Critical due to several factors. The exploit requires a specific set of conditions, such as repositories with submodules and the presence of symbolic link support. Additionally, successful exploitation relies on users cloning repositories from untrusted sources, limiting its scope compared to critical vulnerabilities that may be remotely exploitable or affect a broader range of use cases. However, the potential impact of remote code execution during cloning operations underscores the importance of promptly applying patches and exercising caution when interacting with Git repositories, emphasizing its significant severity within the realm of software security.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.src",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-all-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-core-doc-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-email-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-gui-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-instaweb-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-svn-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:gitk-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:gitweb-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:perl-Git-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:perl-Git-SVN-0:2.39.5-1.el9_2.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-32002"
},
{
"category": "external",
"summary": "RHBZ#2280421",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280421"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-32002",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-32002"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-32002",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-32002"
},
{
"category": "external",
"summary": "https://github.com/git/git/security/advisories/GHSA-8h77-4q3w-gfgv",
"url": "https://github.com/git/git/security/advisories/GHSA-8h77-4q3w-gfgv"
}
],
"release_date": "2024-05-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-07-08T11:27:59+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.src",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-all-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-core-doc-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-email-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-gui-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-instaweb-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-svn-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:gitk-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:gitweb-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:perl-Git-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:perl-Git-SVN-0:2.39.5-1.el9_2.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:4368"
},
{
"category": "workaround",
"details": "One preventative measure is to disable symbolic link support. This can be accomplished by running the command git config --global core.symlinks false. Another temporary option is to avoid using the --recurse-submodules setting with untrusted git repos.",
"product_ids": [
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.src",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-all-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-core-doc-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-email-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-gui-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-instaweb-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-svn-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:gitk-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:gitweb-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:perl-Git-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:perl-Git-SVN-0:2.39.5-1.el9_2.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.0,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.src",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-all-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-core-doc-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-email-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-gui-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-instaweb-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-svn-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:gitk-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:gitweb-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:perl-Git-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:perl-Git-SVN-0:2.39.5-1.el9_2.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "git: Recursive clones RCE"
},
{
"cve": "CVE-2024-32004",
"cwe": {
"id": "CWE-114",
"name": "Process Control"
},
"discovery_date": "2024-05-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2280428"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in Git. This vulnerability can be exploited by an unauthenticated attacker who places a specialized repository on the target\u0027s local system. If the victim clones this repository, the attacker can execute arbitrary code.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "git: RCE while cloning local repos",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability, while significant, does not reach Critical severity due to its reliance on local repository manipulation. While it allows attackers to execute arbitrary code during cloning operations, its impact is constrained by the necessity for access to the target\u0027s local environment. Critical severity typically involves vulnerabilities that can be exploited remotely or without user interaction. Nonetheless, this issue remains Important as it can lead to unauthorized code execution, potentially compromising the integrity and security of affected systems.\n\n\nFuse 7 Karaf uses JGit to manage patches. It\u0027s heavily protected by file permissions and RBAC. Unless an attacker have write permissions to Fuse internal git repositories, this vulnerability is not exploitable.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.src",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-all-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-core-doc-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-email-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-gui-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-instaweb-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-svn-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:gitk-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:gitweb-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:perl-Git-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:perl-Git-SVN-0:2.39.5-1.el9_2.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-32004"
},
{
"category": "external",
"summary": "RHBZ#2280428",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280428"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-32004",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-32004"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-32004",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-32004"
},
{
"category": "external",
"summary": "https://github.com/git/git/security/advisories/GHSA-xfc6-vwr8-r389",
"url": "https://github.com/git/git/security/advisories/GHSA-xfc6-vwr8-r389"
}
],
"release_date": "2024-05-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-07-08T11:27:59+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.src",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-all-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-core-doc-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-email-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-gui-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-instaweb-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-svn-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:gitk-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:gitweb-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:perl-Git-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:perl-Git-SVN-0:2.39.5-1.el9_2.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:4368"
},
{
"category": "workaround",
"details": "Exercise caution when cloning repositories from untrusted sources.",
"product_ids": [
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.src",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-all-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-core-doc-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-email-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-gui-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-instaweb-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-svn-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:gitk-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:gitweb-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:perl-Git-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:perl-Git-SVN-0:2.39.5-1.el9_2.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.src",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-all-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-core-doc-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-email-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-gui-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-instaweb-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-svn-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:gitk-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:gitweb-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:perl-Git-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:perl-Git-SVN-0:2.39.5-1.el9_2.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "git: RCE while cloning local repos"
},
{
"cve": "CVE-2024-32020",
"cwe": {
"id": "CWE-62",
"name": "UNIX Hard Link"
},
"discovery_date": "2024-05-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2280466"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in Git. This flaw allows an unauthenticated attacker to place a specialized repository on their target\u0027s local system. For performance reasons, Git uses hardlinks when cloning a repository located on the same disk. However, if the repo being cloned is owned by a different user, this can introduce a security risk. At any time in the future, the original repo owner could rewrite the hardlinked files in the cloned user\u0027s repo.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "git: insecure hardlinks",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability presents a Low severity issue due to its contextual constraints and limited impact potential. Primarily affecting local Git repository clones where source and target repositories reside on the same disk, the risk arises only when the source repository is owned by a different, potentially untrusted user. This scenario necessitates specific conditions for exploitation, such as shared access to the disk among multiple users. Moreover, the impact is localized to the affected repositories and does not extend to the broader system or network. While the integrity of the target repository may be compromised if the untrusted user modifies linked files, the scope of influence is contained within the repository structure.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.src",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-all-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-core-doc-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-email-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-gui-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-instaweb-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-svn-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:gitk-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:gitweb-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:perl-Git-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:perl-Git-SVN-0:2.39.5-1.el9_2.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-32020"
},
{
"category": "external",
"summary": "RHBZ#2280466",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280466"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-32020",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-32020"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-32020",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-32020"
},
{
"category": "external",
"summary": "https://github.com/git/git/security/advisories/GHSA-5rfh-556j-fhgj",
"url": "https://github.com/git/git/security/advisories/GHSA-5rfh-556j-fhgj"
}
],
"release_date": "2024-05-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-07-08T11:27:59+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.src",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-all-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-core-doc-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-email-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-gui-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-instaweb-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-svn-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:gitk-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:gitweb-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:perl-Git-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:perl-Git-SVN-0:2.39.5-1.el9_2.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:4368"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.src",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-all-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-core-doc-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-email-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-gui-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-instaweb-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-svn-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:gitk-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:gitweb-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:perl-Git-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:perl-Git-SVN-0:2.39.5-1.el9_2.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "LOW",
"baseScore": 3.9,
"baseSeverity": "LOW",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.src",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-all-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-core-doc-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-email-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-gui-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-instaweb-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-svn-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:gitk-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:gitweb-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:perl-Git-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:perl-Git-SVN-0:2.39.5-1.el9_2.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "git: insecure hardlinks"
},
{
"cve": "CVE-2024-32021",
"cwe": {
"id": "CWE-61",
"name": "UNIX Symbolic Link (Symlink) Following"
},
"discovery_date": "2024-05-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2280484"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in Git. This flaw allows an unauthenticated attacker to place a repository on their target\u0027s local system that contains symlinks. During the cloning process, Git could be tricked into creating hardlinked arbitrary files into their repository\u0027s objects/ directory, impacting availability and integrity.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "git: symlink bypass",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "While the Git vulnerability described involves the potential creation of hardlinks to arbitrary files during the cloning process, its severity is considered Low due to several mitigating factors. First, successful exploitation relies on the presence of specific conditions, including the use of local cloning over the filesystem and the ability to manipulate symbolic links within the source repository. Secondly, the impact is limited to the creation of hardlinks to user-readable files, which may not necessarily lead to immediate compromise or exploitation of sensitive data. Additionally, the likelihood of exploitation is reduced by the need for direct access to the filesystem where the cloning operation occurs.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.src",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-all-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-core-doc-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-email-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-gui-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-instaweb-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-svn-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:gitk-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:gitweb-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:perl-Git-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:perl-Git-SVN-0:2.39.5-1.el9_2.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-32021"
},
{
"category": "external",
"summary": "RHBZ#2280484",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280484"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-32021",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-32021"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-32021",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-32021"
},
{
"category": "external",
"summary": "https://github.com/git/git/security/advisories/GHSA-mvxm-9j2h-qjx7",
"url": "https://github.com/git/git/security/advisories/GHSA-mvxm-9j2h-qjx7"
}
],
"release_date": "2024-05-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-07-08T11:27:59+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.src",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-all-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-core-doc-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-email-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-gui-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-instaweb-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-svn-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:gitk-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:gitweb-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:perl-Git-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:perl-Git-SVN-0:2.39.5-1.el9_2.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:4368"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.src",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-all-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-core-doc-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-email-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-gui-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-instaweb-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-svn-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:gitk-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:gitweb-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:perl-Git-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:perl-Git-SVN-0:2.39.5-1.el9_2.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "LOW",
"baseScore": 3.9,
"baseSeverity": "LOW",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.src",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-all-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-core-doc-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-email-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-gui-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-instaweb-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-svn-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:gitk-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:gitweb-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:perl-Git-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:perl-Git-SVN-0:2.39.5-1.el9_2.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "git: symlink bypass"
},
{
"cve": "CVE-2024-32465",
"cwe": {
"id": "CWE-22",
"name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
},
"discovery_date": "2024-05-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2280446"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Git in a full copy of a Git repository. A prerequisite for this vulnerability is for an unauthenticated attacker to place a specialized repository on their target\u0027s local system. If the victim were to clone this repository, it could result in arbitrary code execution.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "git: additional local RCE",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The vulnerability identified in Git as CVE-2024-32004, while significant, is categorized as Moderate rather than Important due to several factors. Primarily, the exploit requires meeting specific conditions, such as interacting with repositories from untrusted sources and potentially executing malicious code embedded within them. Additionally, the vulnerability does not inherently grant unauthorized access to system resources or compromise the integrity of Git installations. Although the potential impact of the exploit is substantial, its severity is tempered by the fact that it necessitates user interaction with repositories obtained from untrusted origins.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.src",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-all-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-core-doc-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-email-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-gui-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-instaweb-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-svn-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:gitk-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:gitweb-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:perl-Git-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:perl-Git-SVN-0:2.39.5-1.el9_2.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-32465"
},
{
"category": "external",
"summary": "RHBZ#2280446",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280446"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-32465",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-32465"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-32465",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-32465"
},
{
"category": "external",
"summary": "https://github.com/git/git/security/advisories/GHSA-vm9j-46j9-qvq4",
"url": "https://github.com/git/git/security/advisories/GHSA-vm9j-46j9-qvq4"
}
],
"release_date": "2024-05-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-07-08T11:27:59+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.src",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-all-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-core-doc-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-email-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-gui-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-instaweb-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-svn-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:gitk-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:gitweb-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:perl-Git-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:perl-Git-SVN-0:2.39.5-1.el9_2.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:4368"
},
{
"category": "workaround",
"details": "To reduce the risk of exploitation, users are advised to refrain from using Git in repositories obtained from archives sourced from untrusted origins. This precautionary measure helps to minimize exposure to potential security threats until the necessary patches can be applied.",
"product_ids": [
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.src",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-all-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-core-doc-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-email-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-gui-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-instaweb-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-svn-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:gitk-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:gitweb-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:perl-Git-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:perl-Git-SVN-0:2.39.5-1.el9_2.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "PHYSICAL",
"availabilityImpact": "HIGH",
"baseScore": 7.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.src",
"AppStream-9.2.0.Z.EUS:git-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-all-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-core-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-core-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-core-doc-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-daemon-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-daemon-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-debuginfo-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-debugsource-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-email-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-gui-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-instaweb-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.aarch64",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.ppc64le",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.s390x",
"AppStream-9.2.0.Z.EUS:git-subtree-0:2.39.5-1.el9_2.x86_64",
"AppStream-9.2.0.Z.EUS:git-svn-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:gitk-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:gitweb-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:perl-Git-0:2.39.5-1.el9_2.noarch",
"AppStream-9.2.0.Z.EUS:perl-Git-SVN-0:2.39.5-1.el9_2.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "git: additional local RCE"
}
]
}
RHSA-2024:4084
Vulnerability from csaf_redhat - Published: 2024-06-25 08:24 - Updated: 2025-11-21 19:04Summary
Red Hat Security Advisory: git security update
Notes
Topic
An update for git is now available for Red Hat Enterprise Linux 8.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Git is a distributed revision control system with a decentralized architecture. As opposed to centralized version control systems with a client-server model, Git ensures that each working copy of a Git repository is an exact copy with complete revision history. This not only allows the user to work on and contribute to projects without the need to have permission to push the changes to their official repositories, but also makes it possible for the user to work with no network connection.
Security Fix(es):
* git: Recursive clones RCE (CVE-2024-32002)
* git: RCE while cloning local repos (CVE-2024-32004)
* git: additional local RCE (CVE-2024-32465)
* git: insecure hardlinks (CVE-2024-32020)
* git: symlink bypass (CVE-2024-32021)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for git is now available for Red Hat Enterprise Linux 8.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Git is a distributed revision control system with a decentralized architecture. As opposed to centralized version control systems with a client-server model, Git ensures that each working copy of a Git repository is an exact copy with complete revision history. This not only allows the user to work on and contribute to projects without the need to have permission to push the changes to their official repositories, but also makes it possible for the user to work with no network connection.\n\nSecurity Fix(es):\n\n* git: Recursive clones RCE (CVE-2024-32002)\n\n* git: RCE while cloning local repos (CVE-2024-32004)\n\n* git: additional local RCE (CVE-2024-32465)\n\n* git: insecure hardlinks (CVE-2024-32020)\n\n* git: symlink bypass (CVE-2024-32021)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:4084",
"url": "https://access.redhat.com/errata/RHSA-2024:4084"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2280421",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280421"
},
{
"category": "external",
"summary": "2280428",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280428"
},
{
"category": "external",
"summary": "2280446",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280446"
},
{
"category": "external",
"summary": "2280466",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280466"
},
{
"category": "external",
"summary": "2280484",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280484"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_4084.json"
}
],
"title": "Red Hat Security Advisory: git security update",
"tracking": {
"current_release_date": "2025-11-21T19:04:32+00:00",
"generator": {
"date": "2025-11-21T19:04:32+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.12"
}
},
"id": "RHSA-2024:4084",
"initial_release_date": "2024-06-25T08:24:01+00:00",
"revision_history": [
{
"date": "2024-06-25T08:24:01+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-06-25T08:24:01+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-21T19:04:32+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream (v. 8)",
"product": {
"name": "Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:8::appstream"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "git-0:2.43.5-1.el8_10.src",
"product": {
"name": "git-0:2.43.5-1.el8_10.src",
"product_id": "git-0:2.43.5-1.el8_10.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git@2.43.5-1.el8_10?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "git-0:2.43.5-1.el8_10.aarch64",
"product": {
"name": "git-0:2.43.5-1.el8_10.aarch64",
"product_id": "git-0:2.43.5-1.el8_10.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git@2.43.5-1.el8_10?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-core-0:2.43.5-1.el8_10.aarch64",
"product": {
"name": "git-core-0:2.43.5-1.el8_10.aarch64",
"product_id": "git-core-0:2.43.5-1.el8_10.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core@2.43.5-1.el8_10?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-0:2.43.5-1.el8_10.aarch64",
"product": {
"name": "git-credential-libsecret-0:2.43.5-1.el8_10.aarch64",
"product_id": "git-credential-libsecret-0:2.43.5-1.el8_10.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret@2.43.5-1.el8_10?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-daemon-0:2.43.5-1.el8_10.aarch64",
"product": {
"name": "git-daemon-0:2.43.5-1.el8_10.aarch64",
"product_id": "git-daemon-0:2.43.5-1.el8_10.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon@2.43.5-1.el8_10?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-subtree-0:2.43.5-1.el8_10.aarch64",
"product": {
"name": "git-subtree-0:2.43.5-1.el8_10.aarch64",
"product_id": "git-subtree-0:2.43.5-1.el8_10.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-subtree@2.43.5-1.el8_10?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-debugsource-0:2.43.5-1.el8_10.aarch64",
"product": {
"name": "git-debugsource-0:2.43.5-1.el8_10.aarch64",
"product_id": "git-debugsource-0:2.43.5-1.el8_10.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debugsource@2.43.5-1.el8_10?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-core-debuginfo-0:2.43.5-1.el8_10.aarch64",
"product": {
"name": "git-core-debuginfo-0:2.43.5-1.el8_10.aarch64",
"product_id": "git-core-debuginfo-0:2.43.5-1.el8_10.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core-debuginfo@2.43.5-1.el8_10?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.aarch64",
"product": {
"name": "git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.aarch64",
"product_id": "git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret-debuginfo@2.43.5-1.el8_10?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-daemon-debuginfo-0:2.43.5-1.el8_10.aarch64",
"product": {
"name": "git-daemon-debuginfo-0:2.43.5-1.el8_10.aarch64",
"product_id": "git-daemon-debuginfo-0:2.43.5-1.el8_10.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon-debuginfo@2.43.5-1.el8_10?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-debuginfo-0:2.43.5-1.el8_10.aarch64",
"product": {
"name": "git-debuginfo-0:2.43.5-1.el8_10.aarch64",
"product_id": "git-debuginfo-0:2.43.5-1.el8_10.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debuginfo@2.43.5-1.el8_10?arch=aarch64"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "git-0:2.43.5-1.el8_10.ppc64le",
"product": {
"name": "git-0:2.43.5-1.el8_10.ppc64le",
"product_id": "git-0:2.43.5-1.el8_10.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git@2.43.5-1.el8_10?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-core-0:2.43.5-1.el8_10.ppc64le",
"product": {
"name": "git-core-0:2.43.5-1.el8_10.ppc64le",
"product_id": "git-core-0:2.43.5-1.el8_10.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core@2.43.5-1.el8_10?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-0:2.43.5-1.el8_10.ppc64le",
"product": {
"name": "git-credential-libsecret-0:2.43.5-1.el8_10.ppc64le",
"product_id": "git-credential-libsecret-0:2.43.5-1.el8_10.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret@2.43.5-1.el8_10?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-daemon-0:2.43.5-1.el8_10.ppc64le",
"product": {
"name": "git-daemon-0:2.43.5-1.el8_10.ppc64le",
"product_id": "git-daemon-0:2.43.5-1.el8_10.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon@2.43.5-1.el8_10?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-subtree-0:2.43.5-1.el8_10.ppc64le",
"product": {
"name": "git-subtree-0:2.43.5-1.el8_10.ppc64le",
"product_id": "git-subtree-0:2.43.5-1.el8_10.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-subtree@2.43.5-1.el8_10?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-debugsource-0:2.43.5-1.el8_10.ppc64le",
"product": {
"name": "git-debugsource-0:2.43.5-1.el8_10.ppc64le",
"product_id": "git-debugsource-0:2.43.5-1.el8_10.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debugsource@2.43.5-1.el8_10?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-core-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"product": {
"name": "git-core-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"product_id": "git-core-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core-debuginfo@2.43.5-1.el8_10?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"product": {
"name": "git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"product_id": "git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret-debuginfo@2.43.5-1.el8_10?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-daemon-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"product": {
"name": "git-daemon-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"product_id": "git-daemon-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon-debuginfo@2.43.5-1.el8_10?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"product": {
"name": "git-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"product_id": "git-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debuginfo@2.43.5-1.el8_10?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "git-0:2.43.5-1.el8_10.x86_64",
"product": {
"name": "git-0:2.43.5-1.el8_10.x86_64",
"product_id": "git-0:2.43.5-1.el8_10.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git@2.43.5-1.el8_10?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-core-0:2.43.5-1.el8_10.x86_64",
"product": {
"name": "git-core-0:2.43.5-1.el8_10.x86_64",
"product_id": "git-core-0:2.43.5-1.el8_10.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core@2.43.5-1.el8_10?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-0:2.43.5-1.el8_10.x86_64",
"product": {
"name": "git-credential-libsecret-0:2.43.5-1.el8_10.x86_64",
"product_id": "git-credential-libsecret-0:2.43.5-1.el8_10.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret@2.43.5-1.el8_10?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-daemon-0:2.43.5-1.el8_10.x86_64",
"product": {
"name": "git-daemon-0:2.43.5-1.el8_10.x86_64",
"product_id": "git-daemon-0:2.43.5-1.el8_10.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon@2.43.5-1.el8_10?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-subtree-0:2.43.5-1.el8_10.x86_64",
"product": {
"name": "git-subtree-0:2.43.5-1.el8_10.x86_64",
"product_id": "git-subtree-0:2.43.5-1.el8_10.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-subtree@2.43.5-1.el8_10?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-debugsource-0:2.43.5-1.el8_10.x86_64",
"product": {
"name": "git-debugsource-0:2.43.5-1.el8_10.x86_64",
"product_id": "git-debugsource-0:2.43.5-1.el8_10.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debugsource@2.43.5-1.el8_10?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-core-debuginfo-0:2.43.5-1.el8_10.x86_64",
"product": {
"name": "git-core-debuginfo-0:2.43.5-1.el8_10.x86_64",
"product_id": "git-core-debuginfo-0:2.43.5-1.el8_10.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core-debuginfo@2.43.5-1.el8_10?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.x86_64",
"product": {
"name": "git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.x86_64",
"product_id": "git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret-debuginfo@2.43.5-1.el8_10?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-daemon-debuginfo-0:2.43.5-1.el8_10.x86_64",
"product": {
"name": "git-daemon-debuginfo-0:2.43.5-1.el8_10.x86_64",
"product_id": "git-daemon-debuginfo-0:2.43.5-1.el8_10.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon-debuginfo@2.43.5-1.el8_10?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-debuginfo-0:2.43.5-1.el8_10.x86_64",
"product": {
"name": "git-debuginfo-0:2.43.5-1.el8_10.x86_64",
"product_id": "git-debuginfo-0:2.43.5-1.el8_10.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debuginfo@2.43.5-1.el8_10?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "git-0:2.43.5-1.el8_10.s390x",
"product": {
"name": "git-0:2.43.5-1.el8_10.s390x",
"product_id": "git-0:2.43.5-1.el8_10.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git@2.43.5-1.el8_10?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-core-0:2.43.5-1.el8_10.s390x",
"product": {
"name": "git-core-0:2.43.5-1.el8_10.s390x",
"product_id": "git-core-0:2.43.5-1.el8_10.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core@2.43.5-1.el8_10?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-0:2.43.5-1.el8_10.s390x",
"product": {
"name": "git-credential-libsecret-0:2.43.5-1.el8_10.s390x",
"product_id": "git-credential-libsecret-0:2.43.5-1.el8_10.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret@2.43.5-1.el8_10?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-daemon-0:2.43.5-1.el8_10.s390x",
"product": {
"name": "git-daemon-0:2.43.5-1.el8_10.s390x",
"product_id": "git-daemon-0:2.43.5-1.el8_10.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon@2.43.5-1.el8_10?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-subtree-0:2.43.5-1.el8_10.s390x",
"product": {
"name": "git-subtree-0:2.43.5-1.el8_10.s390x",
"product_id": "git-subtree-0:2.43.5-1.el8_10.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-subtree@2.43.5-1.el8_10?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-debugsource-0:2.43.5-1.el8_10.s390x",
"product": {
"name": "git-debugsource-0:2.43.5-1.el8_10.s390x",
"product_id": "git-debugsource-0:2.43.5-1.el8_10.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debugsource@2.43.5-1.el8_10?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-core-debuginfo-0:2.43.5-1.el8_10.s390x",
"product": {
"name": "git-core-debuginfo-0:2.43.5-1.el8_10.s390x",
"product_id": "git-core-debuginfo-0:2.43.5-1.el8_10.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core-debuginfo@2.43.5-1.el8_10?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.s390x",
"product": {
"name": "git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.s390x",
"product_id": "git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret-debuginfo@2.43.5-1.el8_10?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-daemon-debuginfo-0:2.43.5-1.el8_10.s390x",
"product": {
"name": "git-daemon-debuginfo-0:2.43.5-1.el8_10.s390x",
"product_id": "git-daemon-debuginfo-0:2.43.5-1.el8_10.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon-debuginfo@2.43.5-1.el8_10?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-debuginfo-0:2.43.5-1.el8_10.s390x",
"product": {
"name": "git-debuginfo-0:2.43.5-1.el8_10.s390x",
"product_id": "git-debuginfo-0:2.43.5-1.el8_10.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debuginfo@2.43.5-1.el8_10?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "git-all-0:2.43.5-1.el8_10.noarch",
"product": {
"name": "git-all-0:2.43.5-1.el8_10.noarch",
"product_id": "git-all-0:2.43.5-1.el8_10.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-all@2.43.5-1.el8_10?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "git-core-doc-0:2.43.5-1.el8_10.noarch",
"product": {
"name": "git-core-doc-0:2.43.5-1.el8_10.noarch",
"product_id": "git-core-doc-0:2.43.5-1.el8_10.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core-doc@2.43.5-1.el8_10?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "git-email-0:2.43.5-1.el8_10.noarch",
"product": {
"name": "git-email-0:2.43.5-1.el8_10.noarch",
"product_id": "git-email-0:2.43.5-1.el8_10.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-email@2.43.5-1.el8_10?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "git-gui-0:2.43.5-1.el8_10.noarch",
"product": {
"name": "git-gui-0:2.43.5-1.el8_10.noarch",
"product_id": "git-gui-0:2.43.5-1.el8_10.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-gui@2.43.5-1.el8_10?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "git-instaweb-0:2.43.5-1.el8_10.noarch",
"product": {
"name": "git-instaweb-0:2.43.5-1.el8_10.noarch",
"product_id": "git-instaweb-0:2.43.5-1.el8_10.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-instaweb@2.43.5-1.el8_10?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "git-svn-0:2.43.5-1.el8_10.noarch",
"product": {
"name": "git-svn-0:2.43.5-1.el8_10.noarch",
"product_id": "git-svn-0:2.43.5-1.el8_10.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-svn@2.43.5-1.el8_10?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "gitk-0:2.43.5-1.el8_10.noarch",
"product": {
"name": "gitk-0:2.43.5-1.el8_10.noarch",
"product_id": "gitk-0:2.43.5-1.el8_10.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/gitk@2.43.5-1.el8_10?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "gitweb-0:2.43.5-1.el8_10.noarch",
"product": {
"name": "gitweb-0:2.43.5-1.el8_10.noarch",
"product_id": "gitweb-0:2.43.5-1.el8_10.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/gitweb@2.43.5-1.el8_10?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "perl-Git-0:2.43.5-1.el8_10.noarch",
"product": {
"name": "perl-Git-0:2.43.5-1.el8_10.noarch",
"product_id": "perl-Git-0:2.43.5-1.el8_10.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/perl-Git@2.43.5-1.el8_10?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "perl-Git-SVN-0:2.43.5-1.el8_10.noarch",
"product": {
"name": "perl-Git-SVN-0:2.43.5-1.el8_10.noarch",
"product_id": "perl-Git-SVN-0:2.43.5-1.el8_10.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/perl-Git-SVN@2.43.5-1.el8_10?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "git-0:2.43.5-1.el8_10.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.aarch64"
},
"product_reference": "git-0:2.43.5-1.el8_10.aarch64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-0:2.43.5-1.el8_10.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.ppc64le"
},
"product_reference": "git-0:2.43.5-1.el8_10.ppc64le",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-0:2.43.5-1.el8_10.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.s390x"
},
"product_reference": "git-0:2.43.5-1.el8_10.s390x",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-0:2.43.5-1.el8_10.src as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.src"
},
"product_reference": "git-0:2.43.5-1.el8_10.src",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-0:2.43.5-1.el8_10.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.x86_64"
},
"product_reference": "git-0:2.43.5-1.el8_10.x86_64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-all-0:2.43.5-1.el8_10.noarch as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-all-0:2.43.5-1.el8_10.noarch"
},
"product_reference": "git-all-0:2.43.5-1.el8_10.noarch",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-0:2.43.5-1.el8_10.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.aarch64"
},
"product_reference": "git-core-0:2.43.5-1.el8_10.aarch64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-0:2.43.5-1.el8_10.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.ppc64le"
},
"product_reference": "git-core-0:2.43.5-1.el8_10.ppc64le",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-0:2.43.5-1.el8_10.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.s390x"
},
"product_reference": "git-core-0:2.43.5-1.el8_10.s390x",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-0:2.43.5-1.el8_10.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.x86_64"
},
"product_reference": "git-core-0:2.43.5-1.el8_10.x86_64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-debuginfo-0:2.43.5-1.el8_10.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.aarch64"
},
"product_reference": "git-core-debuginfo-0:2.43.5-1.el8_10.aarch64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-debuginfo-0:2.43.5-1.el8_10.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.ppc64le"
},
"product_reference": "git-core-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-debuginfo-0:2.43.5-1.el8_10.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.s390x"
},
"product_reference": "git-core-debuginfo-0:2.43.5-1.el8_10.s390x",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-debuginfo-0:2.43.5-1.el8_10.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.x86_64"
},
"product_reference": "git-core-debuginfo-0:2.43.5-1.el8_10.x86_64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-doc-0:2.43.5-1.el8_10.noarch as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-core-doc-0:2.43.5-1.el8_10.noarch"
},
"product_reference": "git-core-doc-0:2.43.5-1.el8_10.noarch",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-0:2.43.5-1.el8_10.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.aarch64"
},
"product_reference": "git-credential-libsecret-0:2.43.5-1.el8_10.aarch64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-0:2.43.5-1.el8_10.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.ppc64le"
},
"product_reference": "git-credential-libsecret-0:2.43.5-1.el8_10.ppc64le",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-0:2.43.5-1.el8_10.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.s390x"
},
"product_reference": "git-credential-libsecret-0:2.43.5-1.el8_10.s390x",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-0:2.43.5-1.el8_10.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.x86_64"
},
"product_reference": "git-credential-libsecret-0:2.43.5-1.el8_10.x86_64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.aarch64"
},
"product_reference": "git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.aarch64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.ppc64le"
},
"product_reference": "git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.s390x"
},
"product_reference": "git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.s390x",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.x86_64"
},
"product_reference": "git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.x86_64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-0:2.43.5-1.el8_10.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.aarch64"
},
"product_reference": "git-daemon-0:2.43.5-1.el8_10.aarch64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-0:2.43.5-1.el8_10.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.ppc64le"
},
"product_reference": "git-daemon-0:2.43.5-1.el8_10.ppc64le",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-0:2.43.5-1.el8_10.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.s390x"
},
"product_reference": "git-daemon-0:2.43.5-1.el8_10.s390x",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-0:2.43.5-1.el8_10.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.x86_64"
},
"product_reference": "git-daemon-0:2.43.5-1.el8_10.x86_64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-debuginfo-0:2.43.5-1.el8_10.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.aarch64"
},
"product_reference": "git-daemon-debuginfo-0:2.43.5-1.el8_10.aarch64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-debuginfo-0:2.43.5-1.el8_10.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.ppc64le"
},
"product_reference": "git-daemon-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-debuginfo-0:2.43.5-1.el8_10.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.s390x"
},
"product_reference": "git-daemon-debuginfo-0:2.43.5-1.el8_10.s390x",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-debuginfo-0:2.43.5-1.el8_10.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.x86_64"
},
"product_reference": "git-daemon-debuginfo-0:2.43.5-1.el8_10.x86_64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debuginfo-0:2.43.5-1.el8_10.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.aarch64"
},
"product_reference": "git-debuginfo-0:2.43.5-1.el8_10.aarch64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debuginfo-0:2.43.5-1.el8_10.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.ppc64le"
},
"product_reference": "git-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debuginfo-0:2.43.5-1.el8_10.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.s390x"
},
"product_reference": "git-debuginfo-0:2.43.5-1.el8_10.s390x",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debuginfo-0:2.43.5-1.el8_10.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.x86_64"
},
"product_reference": "git-debuginfo-0:2.43.5-1.el8_10.x86_64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debugsource-0:2.43.5-1.el8_10.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.aarch64"
},
"product_reference": "git-debugsource-0:2.43.5-1.el8_10.aarch64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debugsource-0:2.43.5-1.el8_10.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.ppc64le"
},
"product_reference": "git-debugsource-0:2.43.5-1.el8_10.ppc64le",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debugsource-0:2.43.5-1.el8_10.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.s390x"
},
"product_reference": "git-debugsource-0:2.43.5-1.el8_10.s390x",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debugsource-0:2.43.5-1.el8_10.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.x86_64"
},
"product_reference": "git-debugsource-0:2.43.5-1.el8_10.x86_64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-0:2.43.5-1.el8_10.noarch as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-email-0:2.43.5-1.el8_10.noarch"
},
"product_reference": "git-email-0:2.43.5-1.el8_10.noarch",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-0:2.43.5-1.el8_10.noarch as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-gui-0:2.43.5-1.el8_10.noarch"
},
"product_reference": "git-gui-0:2.43.5-1.el8_10.noarch",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-instaweb-0:2.43.5-1.el8_10.noarch as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-instaweb-0:2.43.5-1.el8_10.noarch"
},
"product_reference": "git-instaweb-0:2.43.5-1.el8_10.noarch",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-subtree-0:2.43.5-1.el8_10.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.aarch64"
},
"product_reference": "git-subtree-0:2.43.5-1.el8_10.aarch64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-subtree-0:2.43.5-1.el8_10.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.ppc64le"
},
"product_reference": "git-subtree-0:2.43.5-1.el8_10.ppc64le",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-subtree-0:2.43.5-1.el8_10.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.s390x"
},
"product_reference": "git-subtree-0:2.43.5-1.el8_10.s390x",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-subtree-0:2.43.5-1.el8_10.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.x86_64"
},
"product_reference": "git-subtree-0:2.43.5-1.el8_10.x86_64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-0:2.43.5-1.el8_10.noarch as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-svn-0:2.43.5-1.el8_10.noarch"
},
"product_reference": "git-svn-0:2.43.5-1.el8_10.noarch",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-0:2.43.5-1.el8_10.noarch as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:gitk-0:2.43.5-1.el8_10.noarch"
},
"product_reference": "gitk-0:2.43.5-1.el8_10.noarch",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitweb-0:2.43.5-1.el8_10.noarch as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:gitweb-0:2.43.5-1.el8_10.noarch"
},
"product_reference": "gitweb-0:2.43.5-1.el8_10.noarch",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-0:2.43.5-1.el8_10.noarch as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:perl-Git-0:2.43.5-1.el8_10.noarch"
},
"product_reference": "perl-Git-0:2.43.5-1.el8_10.noarch",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-SVN-0:2.43.5-1.el8_10.noarch as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.5-1.el8_10.noarch"
},
"product_reference": "perl-Git-SVN-0:2.43.5-1.el8_10.noarch",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-32002",
"cwe": {
"id": "CWE-434",
"name": "Unrestricted Upload of File with Dangerous Type"
},
"discovery_date": "2024-05-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2280421"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in Git. This vulnerability allows the malicious manipulation of repositories containing submodules, exploiting a bug that enables the writing of files into the .git/ directory instead of the submodule\u0027s intended worktree. This manipulation facilitates the execution of arbitrary code during the cloning process, bypassing user inspection and control.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "git: Recursive clones RCE",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "While the described bug in Git presents a significant security concern, it falls short of being categorized as Critical due to several factors. The exploit requires a specific set of conditions, such as repositories with submodules and the presence of symbolic link support. Additionally, successful exploitation relies on users cloning repositories from untrusted sources, limiting its scope compared to critical vulnerabilities that may be remotely exploitable or affect a broader range of use cases. However, the potential impact of remote code execution during cloning operations underscores the importance of promptly applying patches and exercising caution when interacting with Git repositories, emphasizing its significant severity within the realm of software security.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.src",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-all-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-doc-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-email-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-gui-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-instaweb-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-svn-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitk-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitweb-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.5-1.el8_10.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-32002"
},
{
"category": "external",
"summary": "RHBZ#2280421",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280421"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-32002",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-32002"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-32002",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-32002"
},
{
"category": "external",
"summary": "https://github.com/git/git/security/advisories/GHSA-8h77-4q3w-gfgv",
"url": "https://github.com/git/git/security/advisories/GHSA-8h77-4q3w-gfgv"
}
],
"release_date": "2024-05-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-06-25T08:24:01+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.src",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-all-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-doc-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-email-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-gui-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-instaweb-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-svn-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitk-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitweb-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.5-1.el8_10.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:4084"
},
{
"category": "workaround",
"details": "One preventative measure is to disable symbolic link support. This can be accomplished by running the command git config --global core.symlinks false. Another temporary option is to avoid using the --recurse-submodules setting with untrusted git repos.",
"product_ids": [
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.src",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-all-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-doc-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-email-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-gui-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-instaweb-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-svn-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitk-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitweb-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.5-1.el8_10.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.0,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.src",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-all-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-doc-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-email-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-gui-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-instaweb-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-svn-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitk-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitweb-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.5-1.el8_10.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "git: Recursive clones RCE"
},
{
"cve": "CVE-2024-32004",
"cwe": {
"id": "CWE-114",
"name": "Process Control"
},
"discovery_date": "2024-05-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2280428"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in Git. This vulnerability can be exploited by an unauthenticated attacker who places a specialized repository on the target\u0027s local system. If the victim clones this repository, the attacker can execute arbitrary code.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "git: RCE while cloning local repos",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability, while significant, does not reach Critical severity due to its reliance on local repository manipulation. While it allows attackers to execute arbitrary code during cloning operations, its impact is constrained by the necessity for access to the target\u0027s local environment. Critical severity typically involves vulnerabilities that can be exploited remotely or without user interaction. Nonetheless, this issue remains Important as it can lead to unauthorized code execution, potentially compromising the integrity and security of affected systems.\n\n\nFuse 7 Karaf uses JGit to manage patches. It\u0027s heavily protected by file permissions and RBAC. Unless an attacker have write permissions to Fuse internal git repositories, this vulnerability is not exploitable.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.src",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-all-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-doc-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-email-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-gui-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-instaweb-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-svn-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitk-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitweb-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.5-1.el8_10.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-32004"
},
{
"category": "external",
"summary": "RHBZ#2280428",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280428"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-32004",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-32004"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-32004",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-32004"
},
{
"category": "external",
"summary": "https://github.com/git/git/security/advisories/GHSA-xfc6-vwr8-r389",
"url": "https://github.com/git/git/security/advisories/GHSA-xfc6-vwr8-r389"
}
],
"release_date": "2024-05-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-06-25T08:24:01+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.src",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-all-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-doc-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-email-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-gui-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-instaweb-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-svn-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitk-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitweb-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.5-1.el8_10.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:4084"
},
{
"category": "workaround",
"details": "Exercise caution when cloning repositories from untrusted sources.",
"product_ids": [
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.src",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-all-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-doc-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-email-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-gui-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-instaweb-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-svn-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitk-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitweb-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.5-1.el8_10.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.src",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-all-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-doc-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-email-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-gui-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-instaweb-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-svn-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitk-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitweb-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.5-1.el8_10.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "git: RCE while cloning local repos"
},
{
"cve": "CVE-2024-32020",
"cwe": {
"id": "CWE-62",
"name": "UNIX Hard Link"
},
"discovery_date": "2024-05-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2280466"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in Git. This flaw allows an unauthenticated attacker to place a specialized repository on their target\u0027s local system. For performance reasons, Git uses hardlinks when cloning a repository located on the same disk. However, if the repo being cloned is owned by a different user, this can introduce a security risk. At any time in the future, the original repo owner could rewrite the hardlinked files in the cloned user\u0027s repo.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "git: insecure hardlinks",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability presents a Low severity issue due to its contextual constraints and limited impact potential. Primarily affecting local Git repository clones where source and target repositories reside on the same disk, the risk arises only when the source repository is owned by a different, potentially untrusted user. This scenario necessitates specific conditions for exploitation, such as shared access to the disk among multiple users. Moreover, the impact is localized to the affected repositories and does not extend to the broader system or network. While the integrity of the target repository may be compromised if the untrusted user modifies linked files, the scope of influence is contained within the repository structure.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.src",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-all-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-doc-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-email-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-gui-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-instaweb-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-svn-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitk-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitweb-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.5-1.el8_10.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-32020"
},
{
"category": "external",
"summary": "RHBZ#2280466",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280466"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-32020",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-32020"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-32020",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-32020"
},
{
"category": "external",
"summary": "https://github.com/git/git/security/advisories/GHSA-5rfh-556j-fhgj",
"url": "https://github.com/git/git/security/advisories/GHSA-5rfh-556j-fhgj"
}
],
"release_date": "2024-05-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-06-25T08:24:01+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.src",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-all-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-doc-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-email-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-gui-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-instaweb-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-svn-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitk-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitweb-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.5-1.el8_10.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:4084"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.src",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-all-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-doc-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-email-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-gui-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-instaweb-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-svn-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitk-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitweb-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.5-1.el8_10.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "LOW",
"baseScore": 3.9,
"baseSeverity": "LOW",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.src",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-all-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-doc-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-email-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-gui-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-instaweb-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-svn-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitk-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitweb-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.5-1.el8_10.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "git: insecure hardlinks"
},
{
"cve": "CVE-2024-32021",
"cwe": {
"id": "CWE-61",
"name": "UNIX Symbolic Link (Symlink) Following"
},
"discovery_date": "2024-05-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2280484"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in Git. This flaw allows an unauthenticated attacker to place a repository on their target\u0027s local system that contains symlinks. During the cloning process, Git could be tricked into creating hardlinked arbitrary files into their repository\u0027s objects/ directory, impacting availability and integrity.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "git: symlink bypass",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "While the Git vulnerability described involves the potential creation of hardlinks to arbitrary files during the cloning process, its severity is considered Low due to several mitigating factors. First, successful exploitation relies on the presence of specific conditions, including the use of local cloning over the filesystem and the ability to manipulate symbolic links within the source repository. Secondly, the impact is limited to the creation of hardlinks to user-readable files, which may not necessarily lead to immediate compromise or exploitation of sensitive data. Additionally, the likelihood of exploitation is reduced by the need for direct access to the filesystem where the cloning operation occurs.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.src",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-all-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-doc-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-email-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-gui-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-instaweb-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-svn-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitk-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitweb-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.5-1.el8_10.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-32021"
},
{
"category": "external",
"summary": "RHBZ#2280484",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280484"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-32021",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-32021"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-32021",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-32021"
},
{
"category": "external",
"summary": "https://github.com/git/git/security/advisories/GHSA-mvxm-9j2h-qjx7",
"url": "https://github.com/git/git/security/advisories/GHSA-mvxm-9j2h-qjx7"
}
],
"release_date": "2024-05-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-06-25T08:24:01+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.src",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-all-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-doc-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-email-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-gui-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-instaweb-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-svn-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitk-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitweb-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.5-1.el8_10.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:4084"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.src",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-all-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-doc-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-email-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-gui-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-instaweb-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-svn-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitk-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitweb-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.5-1.el8_10.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "LOW",
"baseScore": 3.9,
"baseSeverity": "LOW",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.src",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-all-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-doc-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-email-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-gui-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-instaweb-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-svn-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitk-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitweb-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.5-1.el8_10.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "git: symlink bypass"
},
{
"cve": "CVE-2024-32465",
"cwe": {
"id": "CWE-22",
"name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
},
"discovery_date": "2024-05-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2280446"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Git in a full copy of a Git repository. A prerequisite for this vulnerability is for an unauthenticated attacker to place a specialized repository on their target\u0027s local system. If the victim were to clone this repository, it could result in arbitrary code execution.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "git: additional local RCE",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The vulnerability identified in Git as CVE-2024-32004, while significant, is categorized as Moderate rather than Important due to several factors. Primarily, the exploit requires meeting specific conditions, such as interacting with repositories from untrusted sources and potentially executing malicious code embedded within them. Additionally, the vulnerability does not inherently grant unauthorized access to system resources or compromise the integrity of Git installations. Although the potential impact of the exploit is substantial, its severity is tempered by the fact that it necessitates user interaction with repositories obtained from untrusted origins.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.src",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-all-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-doc-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-email-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-gui-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-instaweb-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-svn-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitk-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitweb-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.5-1.el8_10.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-32465"
},
{
"category": "external",
"summary": "RHBZ#2280446",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280446"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-32465",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-32465"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-32465",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-32465"
},
{
"category": "external",
"summary": "https://github.com/git/git/security/advisories/GHSA-vm9j-46j9-qvq4",
"url": "https://github.com/git/git/security/advisories/GHSA-vm9j-46j9-qvq4"
}
],
"release_date": "2024-05-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-06-25T08:24:01+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.src",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-all-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-doc-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-email-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-gui-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-instaweb-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-svn-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitk-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitweb-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.5-1.el8_10.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:4084"
},
{
"category": "workaround",
"details": "To reduce the risk of exploitation, users are advised to refrain from using Git in repositories obtained from archives sourced from untrusted origins. This precautionary measure helps to minimize exposure to potential security threats until the necessary patches can be applied.",
"product_ids": [
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.src",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-all-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-doc-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-email-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-gui-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-instaweb-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-svn-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitk-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitweb-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.5-1.el8_10.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "PHYSICAL",
"availabilityImpact": "HIGH",
"baseScore": 7.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.src",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-all-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-doc-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-email-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-gui-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-instaweb-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.5-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-svn-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitk-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitweb-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-0:2.43.5-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.5-1.el8_10.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "git: additional local RCE"
}
]
}
OPENSUSE-SU-2024:13968-1
Vulnerability from csaf_opensuse - Published: 2024-06-15 00:00 - Updated: 2024-06-15 00:00Summary
git-2.45.1-1.1 on GA media
Notes
Title of the patch
git-2.45.1-1.1 on GA media
Description of the patch
These are all security issues fixed in the git-2.45.1-1.1 package on the GA media of openSUSE Tumbleweed.
Patchnames
openSUSE-Tumbleweed-2024-13968
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "git-2.45.1-1.1 on GA media",
"title": "Title of the patch"
},
{
"category": "description",
"text": "These are all security issues fixed in the git-2.45.1-1.1 package on the GA media of openSUSE Tumbleweed.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Tumbleweed-2024-13968",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_13968-1.json"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-32002 page",
"url": "https://www.suse.com/security/cve/CVE-2024-32002/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-32004 page",
"url": "https://www.suse.com/security/cve/CVE-2024-32004/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-32020 page",
"url": "https://www.suse.com/security/cve/CVE-2024-32020/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-32021 page",
"url": "https://www.suse.com/security/cve/CVE-2024-32021/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-32465 page",
"url": "https://www.suse.com/security/cve/CVE-2024-32465/"
}
],
"title": "git-2.45.1-1.1 on GA media",
"tracking": {
"current_release_date": "2024-06-15T00:00:00Z",
"generator": {
"date": "2024-06-15T00:00:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2024:13968-1",
"initial_release_date": "2024-06-15T00:00:00Z",
"revision_history": [
{
"date": "2024-06-15T00:00:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "git-2.45.1-1.1.aarch64",
"product": {
"name": "git-2.45.1-1.1.aarch64",
"product_id": "git-2.45.1-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-arch-2.45.1-1.1.aarch64",
"product": {
"name": "git-arch-2.45.1-1.1.aarch64",
"product_id": "git-arch-2.45.1-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-core-2.45.1-1.1.aarch64",
"product": {
"name": "git-core-2.45.1-1.1.aarch64",
"product_id": "git-core-2.45.1-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-2.45.1-1.1.aarch64",
"product": {
"name": "git-credential-libsecret-2.45.1-1.1.aarch64",
"product_id": "git-credential-libsecret-2.45.1-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-cvs-2.45.1-1.1.aarch64",
"product": {
"name": "git-cvs-2.45.1-1.1.aarch64",
"product_id": "git-cvs-2.45.1-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-daemon-2.45.1-1.1.aarch64",
"product": {
"name": "git-daemon-2.45.1-1.1.aarch64",
"product_id": "git-daemon-2.45.1-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-doc-2.45.1-1.1.aarch64",
"product": {
"name": "git-doc-2.45.1-1.1.aarch64",
"product_id": "git-doc-2.45.1-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-email-2.45.1-1.1.aarch64",
"product": {
"name": "git-email-2.45.1-1.1.aarch64",
"product_id": "git-email-2.45.1-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-gui-2.45.1-1.1.aarch64",
"product": {
"name": "git-gui-2.45.1-1.1.aarch64",
"product_id": "git-gui-2.45.1-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-p4-2.45.1-1.1.aarch64",
"product": {
"name": "git-p4-2.45.1-1.1.aarch64",
"product_id": "git-p4-2.45.1-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-svn-2.45.1-1.1.aarch64",
"product": {
"name": "git-svn-2.45.1-1.1.aarch64",
"product_id": "git-svn-2.45.1-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-web-2.45.1-1.1.aarch64",
"product": {
"name": "git-web-2.45.1-1.1.aarch64",
"product_id": "git-web-2.45.1-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "gitk-2.45.1-1.1.aarch64",
"product": {
"name": "gitk-2.45.1-1.1.aarch64",
"product_id": "gitk-2.45.1-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "perl-Git-2.45.1-1.1.aarch64",
"product": {
"name": "perl-Git-2.45.1-1.1.aarch64",
"product_id": "perl-Git-2.45.1-1.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "git-2.45.1-1.1.ppc64le",
"product": {
"name": "git-2.45.1-1.1.ppc64le",
"product_id": "git-2.45.1-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-arch-2.45.1-1.1.ppc64le",
"product": {
"name": "git-arch-2.45.1-1.1.ppc64le",
"product_id": "git-arch-2.45.1-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-core-2.45.1-1.1.ppc64le",
"product": {
"name": "git-core-2.45.1-1.1.ppc64le",
"product_id": "git-core-2.45.1-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-2.45.1-1.1.ppc64le",
"product": {
"name": "git-credential-libsecret-2.45.1-1.1.ppc64le",
"product_id": "git-credential-libsecret-2.45.1-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-cvs-2.45.1-1.1.ppc64le",
"product": {
"name": "git-cvs-2.45.1-1.1.ppc64le",
"product_id": "git-cvs-2.45.1-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-daemon-2.45.1-1.1.ppc64le",
"product": {
"name": "git-daemon-2.45.1-1.1.ppc64le",
"product_id": "git-daemon-2.45.1-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-doc-2.45.1-1.1.ppc64le",
"product": {
"name": "git-doc-2.45.1-1.1.ppc64le",
"product_id": "git-doc-2.45.1-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-email-2.45.1-1.1.ppc64le",
"product": {
"name": "git-email-2.45.1-1.1.ppc64le",
"product_id": "git-email-2.45.1-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-gui-2.45.1-1.1.ppc64le",
"product": {
"name": "git-gui-2.45.1-1.1.ppc64le",
"product_id": "git-gui-2.45.1-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-p4-2.45.1-1.1.ppc64le",
"product": {
"name": "git-p4-2.45.1-1.1.ppc64le",
"product_id": "git-p4-2.45.1-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-svn-2.45.1-1.1.ppc64le",
"product": {
"name": "git-svn-2.45.1-1.1.ppc64le",
"product_id": "git-svn-2.45.1-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-web-2.45.1-1.1.ppc64le",
"product": {
"name": "git-web-2.45.1-1.1.ppc64le",
"product_id": "git-web-2.45.1-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "gitk-2.45.1-1.1.ppc64le",
"product": {
"name": "gitk-2.45.1-1.1.ppc64le",
"product_id": "gitk-2.45.1-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "perl-Git-2.45.1-1.1.ppc64le",
"product": {
"name": "perl-Git-2.45.1-1.1.ppc64le",
"product_id": "perl-Git-2.45.1-1.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "git-2.45.1-1.1.s390x",
"product": {
"name": "git-2.45.1-1.1.s390x",
"product_id": "git-2.45.1-1.1.s390x"
}
},
{
"category": "product_version",
"name": "git-arch-2.45.1-1.1.s390x",
"product": {
"name": "git-arch-2.45.1-1.1.s390x",
"product_id": "git-arch-2.45.1-1.1.s390x"
}
},
{
"category": "product_version",
"name": "git-core-2.45.1-1.1.s390x",
"product": {
"name": "git-core-2.45.1-1.1.s390x",
"product_id": "git-core-2.45.1-1.1.s390x"
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-2.45.1-1.1.s390x",
"product": {
"name": "git-credential-libsecret-2.45.1-1.1.s390x",
"product_id": "git-credential-libsecret-2.45.1-1.1.s390x"
}
},
{
"category": "product_version",
"name": "git-cvs-2.45.1-1.1.s390x",
"product": {
"name": "git-cvs-2.45.1-1.1.s390x",
"product_id": "git-cvs-2.45.1-1.1.s390x"
}
},
{
"category": "product_version",
"name": "git-daemon-2.45.1-1.1.s390x",
"product": {
"name": "git-daemon-2.45.1-1.1.s390x",
"product_id": "git-daemon-2.45.1-1.1.s390x"
}
},
{
"category": "product_version",
"name": "git-doc-2.45.1-1.1.s390x",
"product": {
"name": "git-doc-2.45.1-1.1.s390x",
"product_id": "git-doc-2.45.1-1.1.s390x"
}
},
{
"category": "product_version",
"name": "git-email-2.45.1-1.1.s390x",
"product": {
"name": "git-email-2.45.1-1.1.s390x",
"product_id": "git-email-2.45.1-1.1.s390x"
}
},
{
"category": "product_version",
"name": "git-gui-2.45.1-1.1.s390x",
"product": {
"name": "git-gui-2.45.1-1.1.s390x",
"product_id": "git-gui-2.45.1-1.1.s390x"
}
},
{
"category": "product_version",
"name": "git-p4-2.45.1-1.1.s390x",
"product": {
"name": "git-p4-2.45.1-1.1.s390x",
"product_id": "git-p4-2.45.1-1.1.s390x"
}
},
{
"category": "product_version",
"name": "git-svn-2.45.1-1.1.s390x",
"product": {
"name": "git-svn-2.45.1-1.1.s390x",
"product_id": "git-svn-2.45.1-1.1.s390x"
}
},
{
"category": "product_version",
"name": "git-web-2.45.1-1.1.s390x",
"product": {
"name": "git-web-2.45.1-1.1.s390x",
"product_id": "git-web-2.45.1-1.1.s390x"
}
},
{
"category": "product_version",
"name": "gitk-2.45.1-1.1.s390x",
"product": {
"name": "gitk-2.45.1-1.1.s390x",
"product_id": "gitk-2.45.1-1.1.s390x"
}
},
{
"category": "product_version",
"name": "perl-Git-2.45.1-1.1.s390x",
"product": {
"name": "perl-Git-2.45.1-1.1.s390x",
"product_id": "perl-Git-2.45.1-1.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "git-2.45.1-1.1.x86_64",
"product": {
"name": "git-2.45.1-1.1.x86_64",
"product_id": "git-2.45.1-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-arch-2.45.1-1.1.x86_64",
"product": {
"name": "git-arch-2.45.1-1.1.x86_64",
"product_id": "git-arch-2.45.1-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-core-2.45.1-1.1.x86_64",
"product": {
"name": "git-core-2.45.1-1.1.x86_64",
"product_id": "git-core-2.45.1-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-2.45.1-1.1.x86_64",
"product": {
"name": "git-credential-libsecret-2.45.1-1.1.x86_64",
"product_id": "git-credential-libsecret-2.45.1-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-cvs-2.45.1-1.1.x86_64",
"product": {
"name": "git-cvs-2.45.1-1.1.x86_64",
"product_id": "git-cvs-2.45.1-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-daemon-2.45.1-1.1.x86_64",
"product": {
"name": "git-daemon-2.45.1-1.1.x86_64",
"product_id": "git-daemon-2.45.1-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-doc-2.45.1-1.1.x86_64",
"product": {
"name": "git-doc-2.45.1-1.1.x86_64",
"product_id": "git-doc-2.45.1-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-email-2.45.1-1.1.x86_64",
"product": {
"name": "git-email-2.45.1-1.1.x86_64",
"product_id": "git-email-2.45.1-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-gui-2.45.1-1.1.x86_64",
"product": {
"name": "git-gui-2.45.1-1.1.x86_64",
"product_id": "git-gui-2.45.1-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-p4-2.45.1-1.1.x86_64",
"product": {
"name": "git-p4-2.45.1-1.1.x86_64",
"product_id": "git-p4-2.45.1-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-svn-2.45.1-1.1.x86_64",
"product": {
"name": "git-svn-2.45.1-1.1.x86_64",
"product_id": "git-svn-2.45.1-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-web-2.45.1-1.1.x86_64",
"product": {
"name": "git-web-2.45.1-1.1.x86_64",
"product_id": "git-web-2.45.1-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "gitk-2.45.1-1.1.x86_64",
"product": {
"name": "gitk-2.45.1-1.1.x86_64",
"product_id": "gitk-2.45.1-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "perl-Git-2.45.1-1.1.x86_64",
"product": {
"name": "perl-Git-2.45.1-1.1.x86_64",
"product_id": "perl-Git-2.45.1-1.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Tumbleweed",
"product": {
"name": "openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:tumbleweed"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.45.1-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:git-2.45.1-1.1.aarch64"
},
"product_reference": "git-2.45.1-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.45.1-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:git-2.45.1-1.1.ppc64le"
},
"product_reference": "git-2.45.1-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.45.1-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:git-2.45.1-1.1.s390x"
},
"product_reference": "git-2.45.1-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.45.1-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:git-2.45.1-1.1.x86_64"
},
"product_reference": "git-2.45.1-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-arch-2.45.1-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:git-arch-2.45.1-1.1.aarch64"
},
"product_reference": "git-arch-2.45.1-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-arch-2.45.1-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:git-arch-2.45.1-1.1.ppc64le"
},
"product_reference": "git-arch-2.45.1-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-arch-2.45.1-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:git-arch-2.45.1-1.1.s390x"
},
"product_reference": "git-arch-2.45.1-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-arch-2.45.1-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:git-arch-2.45.1-1.1.x86_64"
},
"product_reference": "git-arch-2.45.1-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.45.1-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:git-core-2.45.1-1.1.aarch64"
},
"product_reference": "git-core-2.45.1-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.45.1-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:git-core-2.45.1-1.1.ppc64le"
},
"product_reference": "git-core-2.45.1-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.45.1-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:git-core-2.45.1-1.1.s390x"
},
"product_reference": "git-core-2.45.1-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.45.1-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:git-core-2.45.1-1.1.x86_64"
},
"product_reference": "git-core-2.45.1-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-2.45.1-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:git-credential-libsecret-2.45.1-1.1.aarch64"
},
"product_reference": "git-credential-libsecret-2.45.1-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-2.45.1-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:git-credential-libsecret-2.45.1-1.1.ppc64le"
},
"product_reference": "git-credential-libsecret-2.45.1-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-2.45.1-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:git-credential-libsecret-2.45.1-1.1.s390x"
},
"product_reference": "git-credential-libsecret-2.45.1-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-2.45.1-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:git-credential-libsecret-2.45.1-1.1.x86_64"
},
"product_reference": "git-credential-libsecret-2.45.1-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.45.1-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:git-cvs-2.45.1-1.1.aarch64"
},
"product_reference": "git-cvs-2.45.1-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.45.1-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:git-cvs-2.45.1-1.1.ppc64le"
},
"product_reference": "git-cvs-2.45.1-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.45.1-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:git-cvs-2.45.1-1.1.s390x"
},
"product_reference": "git-cvs-2.45.1-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.45.1-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:git-cvs-2.45.1-1.1.x86_64"
},
"product_reference": "git-cvs-2.45.1-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.45.1-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:git-daemon-2.45.1-1.1.aarch64"
},
"product_reference": "git-daemon-2.45.1-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.45.1-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:git-daemon-2.45.1-1.1.ppc64le"
},
"product_reference": "git-daemon-2.45.1-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.45.1-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:git-daemon-2.45.1-1.1.s390x"
},
"product_reference": "git-daemon-2.45.1-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.45.1-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:git-daemon-2.45.1-1.1.x86_64"
},
"product_reference": "git-daemon-2.45.1-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-doc-2.45.1-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:git-doc-2.45.1-1.1.aarch64"
},
"product_reference": "git-doc-2.45.1-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-doc-2.45.1-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:git-doc-2.45.1-1.1.ppc64le"
},
"product_reference": "git-doc-2.45.1-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-doc-2.45.1-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:git-doc-2.45.1-1.1.s390x"
},
"product_reference": "git-doc-2.45.1-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-doc-2.45.1-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:git-doc-2.45.1-1.1.x86_64"
},
"product_reference": "git-doc-2.45.1-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.45.1-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:git-email-2.45.1-1.1.aarch64"
},
"product_reference": "git-email-2.45.1-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.45.1-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:git-email-2.45.1-1.1.ppc64le"
},
"product_reference": "git-email-2.45.1-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.45.1-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:git-email-2.45.1-1.1.s390x"
},
"product_reference": "git-email-2.45.1-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.45.1-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:git-email-2.45.1-1.1.x86_64"
},
"product_reference": "git-email-2.45.1-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.45.1-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:git-gui-2.45.1-1.1.aarch64"
},
"product_reference": "git-gui-2.45.1-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.45.1-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:git-gui-2.45.1-1.1.ppc64le"
},
"product_reference": "git-gui-2.45.1-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.45.1-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:git-gui-2.45.1-1.1.s390x"
},
"product_reference": "git-gui-2.45.1-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.45.1-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:git-gui-2.45.1-1.1.x86_64"
},
"product_reference": "git-gui-2.45.1-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-p4-2.45.1-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:git-p4-2.45.1-1.1.aarch64"
},
"product_reference": "git-p4-2.45.1-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-p4-2.45.1-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:git-p4-2.45.1-1.1.ppc64le"
},
"product_reference": "git-p4-2.45.1-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-p4-2.45.1-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:git-p4-2.45.1-1.1.s390x"
},
"product_reference": "git-p4-2.45.1-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-p4-2.45.1-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:git-p4-2.45.1-1.1.x86_64"
},
"product_reference": "git-p4-2.45.1-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.45.1-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:git-svn-2.45.1-1.1.aarch64"
},
"product_reference": "git-svn-2.45.1-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.45.1-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:git-svn-2.45.1-1.1.ppc64le"
},
"product_reference": "git-svn-2.45.1-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.45.1-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:git-svn-2.45.1-1.1.s390x"
},
"product_reference": "git-svn-2.45.1-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.45.1-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:git-svn-2.45.1-1.1.x86_64"
},
"product_reference": "git-svn-2.45.1-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.45.1-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:git-web-2.45.1-1.1.aarch64"
},
"product_reference": "git-web-2.45.1-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.45.1-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:git-web-2.45.1-1.1.ppc64le"
},
"product_reference": "git-web-2.45.1-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.45.1-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:git-web-2.45.1-1.1.s390x"
},
"product_reference": "git-web-2.45.1-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.45.1-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:git-web-2.45.1-1.1.x86_64"
},
"product_reference": "git-web-2.45.1-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.45.1-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:gitk-2.45.1-1.1.aarch64"
},
"product_reference": "gitk-2.45.1-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.45.1-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:gitk-2.45.1-1.1.ppc64le"
},
"product_reference": "gitk-2.45.1-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.45.1-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:gitk-2.45.1-1.1.s390x"
},
"product_reference": "gitk-2.45.1-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.45.1-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:gitk-2.45.1-1.1.x86_64"
},
"product_reference": "gitk-2.45.1-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.45.1-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:perl-Git-2.45.1-1.1.aarch64"
},
"product_reference": "perl-Git-2.45.1-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.45.1-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:perl-Git-2.45.1-1.1.ppc64le"
},
"product_reference": "perl-Git-2.45.1-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.45.1-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:perl-Git-2.45.1-1.1.s390x"
},
"product_reference": "perl-Git-2.45.1-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.45.1-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:perl-Git-2.45.1-1.1.x86_64"
},
"product_reference": "perl-Git-2.45.1-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-32002",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-32002"
}
],
"notes": [
{
"category": "general",
"text": "Git is a revision control system. Prior to versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4, repositories with submodules can be crafted in a way that exploits a bug in Git whereby it can be fooled into writing files not into the submodule\u0027s worktree but into a `.git/` directory. This allows writing a hook that will be executed while the clone operation is still running, giving the user no opportunity to inspect the code that is being executed. The problem has been patched in versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4. If symbolic link support is disabled in Git (e.g. via `git config --global core.symlinks false`), the described attack won\u0027t work. As always, it is best to avoid cloning repositories from untrusted sources.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:git-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-arch-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-arch-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-arch-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-arch-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-core-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-core-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-core-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-core-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-credential-libsecret-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-credential-libsecret-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-credential-libsecret-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-credential-libsecret-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-cvs-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-cvs-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-cvs-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-cvs-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-daemon-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-daemon-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-daemon-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-daemon-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-doc-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-doc-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-doc-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-doc-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-email-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-email-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-email-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-email-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-gui-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-gui-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-gui-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-gui-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-p4-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-p4-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-p4-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-p4-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-svn-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-svn-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-svn-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-svn-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-web-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-web-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-web-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-web-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:gitk-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:gitk-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:gitk-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:gitk-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:perl-Git-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:perl-Git-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:perl-Git-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:perl-Git-2.45.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-32002",
"url": "https://www.suse.com/security/cve/CVE-2024-32002"
},
{
"category": "external",
"summary": "SUSE Bug 1224168 for CVE-2024-32002",
"url": "https://bugzilla.suse.com/1224168"
},
{
"category": "external",
"summary": "SUSE Bug 1224170 for CVE-2024-32002",
"url": "https://bugzilla.suse.com/1224170"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:git-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-arch-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-arch-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-arch-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-arch-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-core-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-core-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-core-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-core-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-credential-libsecret-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-credential-libsecret-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-credential-libsecret-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-credential-libsecret-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-cvs-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-cvs-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-cvs-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-cvs-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-daemon-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-daemon-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-daemon-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-daemon-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-doc-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-doc-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-doc-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-doc-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-email-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-email-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-email-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-email-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-gui-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-gui-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-gui-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-gui-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-p4-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-p4-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-p4-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-p4-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-svn-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-svn-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-svn-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-svn-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-web-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-web-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-web-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-web-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:gitk-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:gitk-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:gitk-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:gitk-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:perl-Git-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:perl-Git-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:perl-Git-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:perl-Git-2.45.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:git-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-arch-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-arch-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-arch-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-arch-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-core-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-core-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-core-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-core-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-credential-libsecret-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-credential-libsecret-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-credential-libsecret-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-credential-libsecret-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-cvs-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-cvs-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-cvs-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-cvs-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-daemon-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-daemon-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-daemon-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-daemon-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-doc-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-doc-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-doc-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-doc-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-email-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-email-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-email-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-email-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-gui-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-gui-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-gui-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-gui-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-p4-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-p4-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-p4-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-p4-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-svn-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-svn-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-svn-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-svn-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-web-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-web-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-web-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-web-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:gitk-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:gitk-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:gitk-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:gitk-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:perl-Git-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:perl-Git-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:perl-Git-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:perl-Git-2.45.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-32002"
},
{
"cve": "CVE-2024-32004",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-32004"
}
],
"notes": [
{
"category": "general",
"text": "Git is a revision control system. Prior to versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4, an attacker can prepare a local repository in such a way that, when cloned, will execute arbitrary code during the operation. The problem has been patched in versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4. As a workaround, avoid cloning repositories from untrusted sources.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:git-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-arch-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-arch-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-arch-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-arch-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-core-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-core-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-core-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-core-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-credential-libsecret-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-credential-libsecret-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-credential-libsecret-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-credential-libsecret-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-cvs-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-cvs-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-cvs-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-cvs-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-daemon-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-daemon-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-daemon-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-daemon-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-doc-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-doc-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-doc-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-doc-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-email-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-email-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-email-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-email-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-gui-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-gui-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-gui-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-gui-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-p4-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-p4-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-p4-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-p4-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-svn-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-svn-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-svn-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-svn-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-web-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-web-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-web-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-web-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:gitk-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:gitk-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:gitk-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:gitk-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:perl-Git-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:perl-Git-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:perl-Git-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:perl-Git-2.45.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-32004",
"url": "https://www.suse.com/security/cve/CVE-2024-32004"
},
{
"category": "external",
"summary": "SUSE Bug 1224170 for CVE-2024-32004",
"url": "https://bugzilla.suse.com/1224170"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:git-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-arch-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-arch-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-arch-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-arch-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-core-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-core-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-core-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-core-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-credential-libsecret-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-credential-libsecret-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-credential-libsecret-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-credential-libsecret-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-cvs-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-cvs-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-cvs-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-cvs-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-daemon-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-daemon-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-daemon-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-daemon-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-doc-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-doc-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-doc-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-doc-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-email-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-email-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-email-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-email-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-gui-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-gui-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-gui-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-gui-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-p4-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-p4-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-p4-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-p4-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-svn-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-svn-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-svn-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-svn-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-web-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-web-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-web-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-web-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:gitk-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:gitk-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:gitk-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:gitk-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:perl-Git-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:perl-Git-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:perl-Git-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:perl-Git-2.45.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:git-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-arch-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-arch-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-arch-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-arch-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-core-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-core-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-core-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-core-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-credential-libsecret-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-credential-libsecret-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-credential-libsecret-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-credential-libsecret-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-cvs-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-cvs-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-cvs-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-cvs-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-daemon-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-daemon-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-daemon-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-daemon-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-doc-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-doc-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-doc-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-doc-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-email-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-email-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-email-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-email-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-gui-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-gui-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-gui-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-gui-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-p4-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-p4-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-p4-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-p4-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-svn-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-svn-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-svn-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-svn-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-web-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-web-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-web-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-web-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:gitk-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:gitk-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:gitk-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:gitk-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:perl-Git-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:perl-Git-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:perl-Git-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:perl-Git-2.45.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-32004"
},
{
"cve": "CVE-2024-32020",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-32020"
}
],
"notes": [
{
"category": "general",
"text": "Git is a revision control system. Prior to versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4, local clones may end up hardlinking files into the target repository\u0027s object database when source and target repository reside on the same disk. If the source repository is owned by a different user, then those hardlinked files may be rewritten at any point in time by the untrusted user. Cloning local repositories will cause Git to either copy or hardlink files of the source repository into the target repository. This significantly speeds up such local clones compared to doing a \"proper\" clone and saves both disk space and compute time. When cloning a repository located on the same disk that is owned by a different user than the current user we also end up creating such hardlinks. These files will continue to be owned and controlled by the potentially-untrusted user and can be rewritten by them at will in the future. The problem has been patched in versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:git-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-arch-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-arch-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-arch-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-arch-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-core-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-core-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-core-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-core-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-credential-libsecret-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-credential-libsecret-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-credential-libsecret-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-credential-libsecret-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-cvs-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-cvs-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-cvs-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-cvs-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-daemon-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-daemon-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-daemon-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-daemon-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-doc-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-doc-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-doc-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-doc-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-email-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-email-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-email-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-email-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-gui-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-gui-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-gui-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-gui-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-p4-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-p4-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-p4-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-p4-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-svn-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-svn-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-svn-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-svn-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-web-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-web-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-web-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-web-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:gitk-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:gitk-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:gitk-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:gitk-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:perl-Git-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:perl-Git-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:perl-Git-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:perl-Git-2.45.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-32020",
"url": "https://www.suse.com/security/cve/CVE-2024-32020"
},
{
"category": "external",
"summary": "SUSE Bug 1224171 for CVE-2024-32020",
"url": "https://bugzilla.suse.com/1224171"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:git-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-arch-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-arch-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-arch-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-arch-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-core-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-core-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-core-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-core-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-credential-libsecret-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-credential-libsecret-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-credential-libsecret-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-credential-libsecret-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-cvs-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-cvs-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-cvs-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-cvs-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-daemon-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-daemon-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-daemon-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-daemon-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-doc-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-doc-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-doc-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-doc-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-email-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-email-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-email-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-email-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-gui-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-gui-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-gui-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-gui-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-p4-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-p4-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-p4-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-p4-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-svn-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-svn-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-svn-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-svn-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-web-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-web-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-web-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-web-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:gitk-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:gitk-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:gitk-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:gitk-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:perl-Git-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:perl-Git-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:perl-Git-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:perl-Git-2.45.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.9,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:git-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-arch-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-arch-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-arch-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-arch-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-core-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-core-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-core-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-core-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-credential-libsecret-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-credential-libsecret-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-credential-libsecret-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-credential-libsecret-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-cvs-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-cvs-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-cvs-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-cvs-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-daemon-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-daemon-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-daemon-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-daemon-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-doc-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-doc-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-doc-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-doc-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-email-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-email-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-email-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-email-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-gui-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-gui-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-gui-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-gui-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-p4-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-p4-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-p4-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-p4-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-svn-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-svn-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-svn-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-svn-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-web-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-web-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-web-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-web-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:gitk-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:gitk-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:gitk-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:gitk-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:perl-Git-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:perl-Git-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:perl-Git-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:perl-Git-2.45.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2024-32020"
},
{
"cve": "CVE-2024-32021",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-32021"
}
],
"notes": [
{
"category": "general",
"text": "Git is a revision control system. Prior to versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4, when cloning a local source repository that contains symlinks via the filesystem, Git may create hardlinks to arbitrary user-readable files on the same filesystem as the target repository in the `objects/` directory. Cloning a local repository over the filesystem may creating hardlinks to arbitrary user-owned files on the same filesystem in the target Git repository\u0027s `objects/` directory. When cloning a repository over the filesystem (without explicitly specifying the `file://` protocol or `--no-local`), the optimizations for local cloning\nwill be used, which include attempting to hard link the object files instead of copying them. While the code includes checks against symbolic links in the source repository, which were added during the fix for CVE-2022-39253, these checks can still be raced because the hard link operation ultimately follows symlinks. If the object on the filesystem appears as a file during the check, and then a symlink during the operation, this will allow the adversary to bypass the check and create hardlinks in the destination objects directory to arbitrary, user-readable files. The problem has been patched in versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:git-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-arch-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-arch-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-arch-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-arch-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-core-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-core-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-core-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-core-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-credential-libsecret-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-credential-libsecret-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-credential-libsecret-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-credential-libsecret-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-cvs-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-cvs-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-cvs-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-cvs-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-daemon-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-daemon-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-daemon-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-daemon-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-doc-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-doc-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-doc-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-doc-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-email-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-email-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-email-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-email-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-gui-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-gui-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-gui-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-gui-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-p4-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-p4-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-p4-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-p4-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-svn-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-svn-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-svn-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-svn-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-web-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-web-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-web-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-web-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:gitk-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:gitk-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:gitk-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:gitk-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:perl-Git-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:perl-Git-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:perl-Git-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:perl-Git-2.45.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-32021",
"url": "https://www.suse.com/security/cve/CVE-2024-32021"
},
{
"category": "external",
"summary": "SUSE Bug 1224172 for CVE-2024-32021",
"url": "https://bugzilla.suse.com/1224172"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:git-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-arch-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-arch-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-arch-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-arch-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-core-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-core-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-core-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-core-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-credential-libsecret-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-credential-libsecret-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-credential-libsecret-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-credential-libsecret-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-cvs-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-cvs-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-cvs-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-cvs-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-daemon-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-daemon-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-daemon-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-daemon-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-doc-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-doc-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-doc-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-doc-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-email-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-email-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-email-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-email-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-gui-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-gui-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-gui-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-gui-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-p4-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-p4-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-p4-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-p4-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-svn-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-svn-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-svn-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-svn-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-web-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-web-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-web-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-web-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:gitk-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:gitk-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:gitk-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:gitk-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:perl-Git-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:perl-Git-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:perl-Git-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:perl-Git-2.45.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.9,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:git-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-arch-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-arch-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-arch-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-arch-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-core-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-core-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-core-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-core-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-credential-libsecret-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-credential-libsecret-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-credential-libsecret-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-credential-libsecret-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-cvs-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-cvs-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-cvs-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-cvs-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-daemon-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-daemon-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-daemon-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-daemon-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-doc-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-doc-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-doc-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-doc-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-email-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-email-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-email-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-email-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-gui-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-gui-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-gui-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-gui-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-p4-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-p4-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-p4-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-p4-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-svn-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-svn-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-svn-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-svn-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-web-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-web-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-web-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-web-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:gitk-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:gitk-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:gitk-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:gitk-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:perl-Git-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:perl-Git-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:perl-Git-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:perl-Git-2.45.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2024-32021"
},
{
"cve": "CVE-2024-32465",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-32465"
}
],
"notes": [
{
"category": "general",
"text": "Git is a revision control system. The Git project recommends to avoid working in untrusted repositories, and instead to clone it first with `git clone --no-local` to obtain a clean copy. Git has specific protections to make that a safe operation even with an untrusted source repository, but vulnerabilities allow those protections to be bypassed. In the context of cloning local repositories owned by other users, this vulnerability has been covered in CVE-2024-32004. But there are circumstances where the fixes for CVE-2024-32004 are not enough: For example, when obtaining a `.zip` file containing a full copy of a Git repository, it should not be trusted by default to be safe, as e.g. hooks could be configured to run within the context of that repository. The problem has been patched in versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4. As a workaround, avoid using Git in repositories that have been obtained via archives from untrusted sources.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:git-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-arch-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-arch-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-arch-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-arch-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-core-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-core-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-core-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-core-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-credential-libsecret-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-credential-libsecret-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-credential-libsecret-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-credential-libsecret-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-cvs-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-cvs-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-cvs-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-cvs-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-daemon-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-daemon-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-daemon-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-daemon-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-doc-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-doc-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-doc-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-doc-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-email-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-email-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-email-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-email-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-gui-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-gui-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-gui-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-gui-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-p4-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-p4-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-p4-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-p4-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-svn-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-svn-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-svn-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-svn-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-web-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-web-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-web-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-web-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:gitk-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:gitk-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:gitk-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:gitk-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:perl-Git-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:perl-Git-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:perl-Git-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:perl-Git-2.45.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-32465",
"url": "https://www.suse.com/security/cve/CVE-2024-32465"
},
{
"category": "external",
"summary": "SUSE Bug 1224170 for CVE-2024-32465",
"url": "https://bugzilla.suse.com/1224170"
},
{
"category": "external",
"summary": "SUSE Bug 1224173 for CVE-2024-32465",
"url": "https://bugzilla.suse.com/1224173"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:git-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-arch-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-arch-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-arch-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-arch-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-core-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-core-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-core-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-core-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-credential-libsecret-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-credential-libsecret-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-credential-libsecret-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-credential-libsecret-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-cvs-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-cvs-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-cvs-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-cvs-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-daemon-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-daemon-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-daemon-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-daemon-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-doc-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-doc-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-doc-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-doc-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-email-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-email-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-email-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-email-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-gui-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-gui-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-gui-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-gui-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-p4-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-p4-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-p4-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-p4-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-svn-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-svn-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-svn-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-svn-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-web-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-web-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-web-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-web-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:gitk-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:gitk-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:gitk-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:gitk-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:perl-Git-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:perl-Git-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:perl-Git-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:perl-Git-2.45.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:git-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-arch-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-arch-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-arch-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-arch-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-core-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-core-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-core-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-core-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-credential-libsecret-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-credential-libsecret-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-credential-libsecret-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-credential-libsecret-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-cvs-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-cvs-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-cvs-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-cvs-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-daemon-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-daemon-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-daemon-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-daemon-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-doc-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-doc-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-doc-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-doc-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-email-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-email-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-email-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-email-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-gui-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-gui-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-gui-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-gui-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-p4-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-p4-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-p4-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-p4-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-svn-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-svn-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-svn-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-svn-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:git-web-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:git-web-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-web-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:git-web-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:gitk-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:gitk-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:gitk-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:gitk-2.45.1-1.1.x86_64",
"openSUSE Tumbleweed:perl-Git-2.45.1-1.1.aarch64",
"openSUSE Tumbleweed:perl-Git-2.45.1-1.1.ppc64le",
"openSUSE Tumbleweed:perl-Git-2.45.1-1.1.s390x",
"openSUSE Tumbleweed:perl-Git-2.45.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2024-32465"
}
]
}
WID-SEC-W-2025-0794
Vulnerability from csaf_certbund - Published: 2025-04-13 22:00 - Updated: 2025-06-04 22:00Summary
Juniper Junos Space: Mehrere Schwachstellen
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung
Junos Space ist eine Software-Plattform, die eine Reihe von Applikationen für das Netzwerkmanagement beinhaltet.
Angriff
Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Juniper Junos Space ausnutzen, um seine Privilegien zu erhöhen, um einen Denial of Service Zustand herbeizuführen und um andere, nicht näher spezifizierte Auswirkungen zu erzielen.
Betroffene Betriebssysteme
- Juniper Appliance
{
"document": {
"aggregate_severity": {
"text": "hoch"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "Junos Space ist eine Software-Plattform, die eine Reihe von Applikationen f\u00fcr das Netzwerkmanagement beinhaltet.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Juniper Junos Space ausnutzen, um seine Privilegien zu erh\u00f6hen, um einen Denial of Service Zustand herbeizuf\u00fchren und um andere, nicht n\u00e4her spezifizierte Auswirkungen zu erzielen.",
"title": "Angriff"
},
{
"category": "general",
"text": "- Juniper Appliance",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2025-0794 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2025/wid-sec-w-2025-0794.json"
},
{
"category": "self",
"summary": "WID-SEC-2025-0794 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-0794"
},
{
"category": "external",
"summary": "Juniper Security Bulletin JSA96447 vom 2025-04-09",
"url": "https://supportportal.juniper.net/s/article/2025-04-Security-Bulletin-Junos-Space-Multiple-vulnerabilities-resolved-in-24-1R3-release?language=en_US"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:20047-1 vom 2025-06-04",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-June/021306.html"
}
],
"source_lang": "en-US",
"title": "Juniper Junos Space: Mehrere Schwachstellen",
"tracking": {
"current_release_date": "2025-06-04T22:00:00.000+00:00",
"generator": {
"date": "2025-06-05T06:16:59.318+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.3.12"
}
},
"id": "WID-SEC-W-2025-0794",
"initial_release_date": "2025-04-13T22:00:00.000+00:00",
"revision_history": [
{
"date": "2025-04-13T22:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
},
{
"date": "2025-06-04T22:00:00.000+00:00",
"number": "2",
"summary": "Neue Updates von SUSE aufgenommen"
}
],
"status": "final",
"version": "2"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c24.1R3",
"product": {
"name": "Juniper Junos Space \u003c24.1R3",
"product_id": "T042758"
}
},
{
"category": "product_version",
"name": "24.1R3",
"product": {
"name": "Juniper Junos Space 24.1R3",
"product_id": "T042758-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:juniper:junos_space:24.1r3"
}
}
}
],
"category": "product_name",
"name": "Junos Space"
}
],
"category": "vendor",
"name": "Juniper"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux",
"product": {
"name": "SUSE Linux",
"product_id": "T002207",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse_linux:-"
}
}
}
],
"category": "vendor",
"name": "SUSE"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2021-47596",
"product_status": {
"known_affected": [
"T002207",
"T042758"
]
},
"release_date": "2025-04-13T22:00:00.000+00:00",
"title": "CVE-2021-47596"
},
{
"cve": "CVE-2022-24808",
"product_status": {
"known_affected": [
"T002207",
"T042758"
]
},
"release_date": "2025-04-13T22:00:00.000+00:00",
"title": "CVE-2022-24808"
},
{
"cve": "CVE-2022-39253",
"product_status": {
"known_affected": [
"T002207",
"T042758"
]
},
"release_date": "2025-04-13T22:00:00.000+00:00",
"title": "CVE-2022-39253"
},
{
"cve": "CVE-2023-28746",
"product_status": {
"known_affected": [
"T002207",
"T042758"
]
},
"release_date": "2025-04-13T22:00:00.000+00:00",
"title": "CVE-2023-28746"
},
{
"cve": "CVE-2023-48161",
"product_status": {
"known_affected": [
"T002207",
"T042758"
]
},
"release_date": "2025-04-13T22:00:00.000+00:00",
"title": "CVE-2023-48161"
},
{
"cve": "CVE-2023-6597",
"product_status": {
"known_affected": [
"T002207",
"T042758"
]
},
"release_date": "2025-04-13T22:00:00.000+00:00",
"title": "CVE-2023-6597"
},
{
"cve": "CVE-2024-0450",
"product_status": {
"known_affected": [
"T002207",
"T042758"
]
},
"release_date": "2025-04-13T22:00:00.000+00:00",
"title": "CVE-2024-0450"
},
{
"cve": "CVE-2024-1737",
"product_status": {
"known_affected": [
"T002207",
"T042758"
]
},
"release_date": "2025-04-13T22:00:00.000+00:00",
"title": "CVE-2024-1737"
},
{
"cve": "CVE-2024-1975",
"product_status": {
"known_affected": [
"T002207",
"T042758"
]
},
"release_date": "2025-04-13T22:00:00.000+00:00",
"title": "CVE-2024-1975"
},
{
"cve": "CVE-2024-21208",
"product_status": {
"known_affected": [
"T002207",
"T042758"
]
},
"release_date": "2025-04-13T22:00:00.000+00:00",
"title": "CVE-2024-21208"
},
{
"cve": "CVE-2024-21210",
"product_status": {
"known_affected": [
"T002207",
"T042758"
]
},
"release_date": "2025-04-13T22:00:00.000+00:00",
"title": "CVE-2024-21210"
},
{
"cve": "CVE-2024-21217",
"product_status": {
"known_affected": [
"T002207",
"T042758"
]
},
"release_date": "2025-04-13T22:00:00.000+00:00",
"title": "CVE-2024-21217"
},
{
"cve": "CVE-2024-21235",
"product_status": {
"known_affected": [
"T002207",
"T042758"
]
},
"release_date": "2025-04-13T22:00:00.000+00:00",
"title": "CVE-2024-21235"
},
{
"cve": "CVE-2024-21823",
"product_status": {
"known_affected": [
"T002207",
"T042758"
]
},
"release_date": "2025-04-13T22:00:00.000+00:00",
"title": "CVE-2024-21823"
},
{
"cve": "CVE-2024-23271",
"product_status": {
"known_affected": [
"T002207",
"T042758"
]
},
"release_date": "2025-04-13T22:00:00.000+00:00",
"title": "CVE-2024-23271"
},
{
"cve": "CVE-2024-26735",
"product_status": {
"known_affected": [
"T002207",
"T042758"
]
},
"release_date": "2025-04-13T22:00:00.000+00:00",
"title": "CVE-2024-26735"
},
{
"cve": "CVE-2024-26852",
"product_status": {
"known_affected": [
"T002207",
"T042758"
]
},
"release_date": "2025-04-13T22:00:00.000+00:00",
"title": "CVE-2024-26852"
},
{
"cve": "CVE-2024-26993",
"product_status": {
"known_affected": [
"T002207",
"T042758"
]
},
"release_date": "2025-04-13T22:00:00.000+00:00",
"title": "CVE-2024-26993"
},
{
"cve": "CVE-2024-27052",
"product_status": {
"known_affected": [
"T002207",
"T042758"
]
},
"release_date": "2025-04-13T22:00:00.000+00:00",
"title": "CVE-2024-27052"
},
{
"cve": "CVE-2024-27820",
"product_status": {
"known_affected": [
"T002207",
"T042758"
]
},
"release_date": "2025-04-13T22:00:00.000+00:00",
"title": "CVE-2024-27820"
},
{
"cve": "CVE-2024-27838",
"product_status": {
"known_affected": [
"T002207",
"T042758"
]
},
"release_date": "2025-04-13T22:00:00.000+00:00",
"title": "CVE-2024-27838"
},
{
"cve": "CVE-2024-27851",
"product_status": {
"known_affected": [
"T002207",
"T042758"
]
},
"release_date": "2025-04-13T22:00:00.000+00:00",
"title": "CVE-2024-27851"
},
{
"cve": "CVE-2024-28182",
"product_status": {
"known_affected": [
"T002207",
"T042758"
]
},
"release_date": "2025-04-13T22:00:00.000+00:00",
"title": "CVE-2024-28182"
},
{
"cve": "CVE-2024-2961",
"product_status": {
"known_affected": [
"T002207",
"T042758"
]
},
"release_date": "2025-04-13T22:00:00.000+00:00",
"title": "CVE-2024-2961"
},
{
"cve": "CVE-2024-32002",
"product_status": {
"known_affected": [
"T002207",
"T042758"
]
},
"release_date": "2025-04-13T22:00:00.000+00:00",
"title": "CVE-2024-32002"
},
{
"cve": "CVE-2024-32004",
"product_status": {
"known_affected": [
"T002207",
"T042758"
]
},
"release_date": "2025-04-13T22:00:00.000+00:00",
"title": "CVE-2024-32004"
},
{
"cve": "CVE-2024-32020",
"product_status": {
"known_affected": [
"T002207",
"T042758"
]
},
"release_date": "2025-04-13T22:00:00.000+00:00",
"title": "CVE-2024-32020"
},
{
"cve": "CVE-2024-32021",
"product_status": {
"known_affected": [
"T002207",
"T042758"
]
},
"release_date": "2025-04-13T22:00:00.000+00:00",
"title": "CVE-2024-32021"
},
{
"cve": "CVE-2024-32465",
"product_status": {
"known_affected": [
"T002207",
"T042758"
]
},
"release_date": "2025-04-13T22:00:00.000+00:00",
"title": "CVE-2024-32465"
},
{
"cve": "CVE-2024-33599",
"product_status": {
"known_affected": [
"T002207",
"T042758"
]
},
"release_date": "2025-04-13T22:00:00.000+00:00",
"title": "CVE-2024-33599"
},
{
"cve": "CVE-2024-33600",
"product_status": {
"known_affected": [
"T002207",
"T042758"
]
},
"release_date": "2025-04-13T22:00:00.000+00:00",
"title": "CVE-2024-33600"
},
{
"cve": "CVE-2024-33601",
"product_status": {
"known_affected": [
"T002207",
"T042758"
]
},
"release_date": "2025-04-13T22:00:00.000+00:00",
"title": "CVE-2024-33601"
},
{
"cve": "CVE-2024-33602",
"product_status": {
"known_affected": [
"T002207",
"T042758"
]
},
"release_date": "2025-04-13T22:00:00.000+00:00",
"title": "CVE-2024-33602"
},
{
"cve": "CVE-2024-35845",
"product_status": {
"known_affected": [
"T002207",
"T042758"
]
},
"release_date": "2025-04-13T22:00:00.000+00:00",
"title": "CVE-2024-35845"
},
{
"cve": "CVE-2024-35899",
"product_status": {
"known_affected": [
"T002207",
"T042758"
]
},
"release_date": "2025-04-13T22:00:00.000+00:00",
"title": "CVE-2024-35899"
},
{
"cve": "CVE-2024-3651",
"product_status": {
"known_affected": [
"T002207",
"T042758"
]
},
"release_date": "2025-04-13T22:00:00.000+00:00",
"title": "CVE-2024-3651"
},
{
"cve": "CVE-2024-3652",
"product_status": {
"known_affected": [
"T002207",
"T042758"
]
},
"release_date": "2025-04-13T22:00:00.000+00:00",
"title": "CVE-2024-3652"
},
{
"cve": "CVE-2024-36971",
"product_status": {
"known_affected": [
"T002207",
"T042758"
]
},
"release_date": "2025-04-13T22:00:00.000+00:00",
"title": "CVE-2024-36971"
},
{
"cve": "CVE-2024-39487",
"product_status": {
"known_affected": [
"T002207",
"T042758"
]
},
"release_date": "2025-04-13T22:00:00.000+00:00",
"title": "CVE-2024-39487"
},
{
"cve": "CVE-2024-4076",
"product_status": {
"known_affected": [
"T002207",
"T042758"
]
},
"release_date": "2025-04-13T22:00:00.000+00:00",
"title": "CVE-2024-4076"
},
{
"cve": "CVE-2024-40782",
"product_status": {
"known_affected": [
"T002207",
"T042758"
]
},
"release_date": "2025-04-13T22:00:00.000+00:00",
"title": "CVE-2024-40782"
},
{
"cve": "CVE-2024-40789",
"product_status": {
"known_affected": [
"T002207",
"T042758"
]
},
"release_date": "2025-04-13T22:00:00.000+00:00",
"title": "CVE-2024-40789"
},
{
"cve": "CVE-2024-40866",
"product_status": {
"known_affected": [
"T002207",
"T042758"
]
},
"release_date": "2025-04-13T22:00:00.000+00:00",
"title": "CVE-2024-40866"
},
{
"cve": "CVE-2024-40954",
"product_status": {
"known_affected": [
"T002207",
"T042758"
]
},
"release_date": "2025-04-13T22:00:00.000+00:00",
"title": "CVE-2024-40954"
},
{
"cve": "CVE-2024-40958",
"product_status": {
"known_affected": [
"T002207",
"T042758"
]
},
"release_date": "2025-04-13T22:00:00.000+00:00",
"title": "CVE-2024-40958"
},
{
"cve": "CVE-2024-42284",
"product_status": {
"known_affected": [
"T002207",
"T042758"
]
},
"release_date": "2025-04-13T22:00:00.000+00:00",
"title": "CVE-2024-42284"
},
{
"cve": "CVE-2024-42472",
"product_status": {
"known_affected": [
"T002207",
"T042758"
]
},
"release_date": "2025-04-13T22:00:00.000+00:00",
"title": "CVE-2024-42472"
},
{
"cve": "CVE-2024-44187",
"product_status": {
"known_affected": [
"T002207",
"T042758"
]
},
"release_date": "2025-04-13T22:00:00.000+00:00",
"title": "CVE-2024-44187"
},
{
"cve": "CVE-2024-6232",
"product_status": {
"known_affected": [
"T002207",
"T042758"
]
},
"release_date": "2025-04-13T22:00:00.000+00:00",
"title": "CVE-2024-6232"
},
{
"cve": "CVE-2024-7006",
"product_status": {
"known_affected": [
"T002207",
"T042758"
]
},
"release_date": "2025-04-13T22:00:00.000+00:00",
"title": "CVE-2024-7006"
}
]
}
WID-SEC-W-2024-1125
Vulnerability from csaf_certbund - Published: 2024-05-14 22:00 - Updated: 2025-06-04 22:00Summary
git: Mehrere Schwachstellen
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung
Git ist eine freie Software zur verteilten Versionsverwaltung von Dateien.
Angriff
Ein entfernter, anonymer Angreifer oder ein lokaler authentifizierter Angreiferkann mehrere Schwachstellen in git ausnutzen, um beliebigen Programmcode auszuführen und und die Sicherheitsmaßnahmen zu umgehen.
Betroffene Betriebssysteme
- Sonstiges
- UNIX
- Windows
{
"document": {
"aggregate_severity": {
"text": "hoch"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "Git ist eine freie Software zur verteilten Versionsverwaltung von Dateien.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein entfernter, anonymer Angreifer oder ein lokaler authentifizierter Angreiferkann mehrere Schwachstellen in git ausnutzen, um beliebigen Programmcode auszuf\u00fchren und und die Sicherheitsma\u00dfnahmen zu umgehen.",
"title": "Angriff"
},
{
"category": "general",
"text": "- Sonstiges\n- UNIX\n- Windows",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2024-1125 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-1125.json"
},
{
"category": "self",
"summary": "WID-SEC-2024-1125 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-1125"
},
{
"category": "external",
"summary": "OSS Security Mailing List vom 2024-05-14",
"url": "https://seclists.org/oss-sec/2024/q2/241"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-6793-1 vom 2024-05-28",
"url": "https://ubuntu.com/security/notices/USN-6793-1"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2024:1807-1 vom 2024-05-29",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2024-May/018613.html"
},
{
"category": "external",
"summary": "Amazon Linux Security Advisory ALAS-2024-1939 vom 2024-05-30",
"url": "https://alas.aws.amazon.com/ALAS-2024-1939.html"
},
{
"category": "external",
"summary": "Amazon Linux Security Advisory ALAS-2024-2548 vom 2024-05-30",
"url": "https://alas.aws.amazon.com/AL2/ALAS-2024-2548.html"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-6793-2 vom 2024-06-18",
"url": "https://ubuntu.com/security/notices/USN-6793-2"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:4083 vom 2024-06-25",
"url": "https://access.redhat.com/errata/RHSA-2024:4083"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:4084 vom 2024-06-25",
"url": "https://access.redhat.com/errata/RHSA-2024:4084"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2024-4083 vom 2024-06-25",
"url": "https://linux.oracle.com/errata/ELSA-2024-4083.html"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2024-4084 vom 2024-06-25",
"url": "https://linux.oracle.com/errata/ELSA-2024-4084.html"
},
{
"category": "external",
"summary": "Debian Security Advisory DLA-3844 vom 2024-06-26",
"url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00018.html"
},
{
"category": "external",
"summary": "Rocky Linux Security Advisory RLSA-2024:4083 vom 2024-07-02",
"url": "https://errata.build.resf.org/RLSA-2024:4083"
},
{
"category": "external",
"summary": "Rocky Linux Security Advisory RLSA-2024:4084 vom 2024-07-02",
"url": "https://errata.build.resf.org/RLSA-2024:4084"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2024:2277-1 vom 2024-07-02",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2024-July/018849.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:4368 vom 2024-07-08",
"url": "https://access.redhat.com/errata/RHSA-2024:4368"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2024:1807-2 vom 2024-07-12",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2024-July/018956.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:4579 vom 2024-07-17",
"url": "https://access.redhat.com/errata/RHSA-2024:4579"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:4631 vom 2024-07-18",
"url": "https://access.redhat.com/errata/RHSA-2024:4631"
},
{
"category": "external",
"summary": "IBM Security Bulletin 7162077 vom 2024-07-31",
"url": "https://www.ibm.com/support/pages/node/7162077"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2024:1854-1 vom 2024-08-19",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2024-August/019262.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:6028 vom 2024-08-29",
"url": "https://access.redhat.com/errata/RHSA-2024:6028"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:6027 vom 2024-08-29",
"url": "https://access.redhat.com/errata/RHSA-2024:6027"
},
{
"category": "external",
"summary": "Debian Security Advisory DLA-3867 vom 2024-09-03",
"url": "https://lists.debian.org/debian-lts-announce/2024/09/msg00009.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:6610 vom 2024-09-12",
"url": "https://access.redhat.com/errata/RHSA-2024:6610"
},
{
"category": "external",
"summary": "Debian Security Advisory DSA-5769 vom 2024-09-13",
"url": "https://lists.debian.org/debian-security-announce/2024/msg00182.html"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-7023-1 vom 2024-09-19",
"url": "https://ubuntu.com/security/notices/USN-7023-1"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:7701 vom 2024-10-07",
"url": "https://access.redhat.com/errata/RHSA-2024:7701"
},
{
"category": "external",
"summary": "Dell Security Advisory DSA-2024-422 vom 2024-10-10",
"url": "https://www.dell.com/support/kbdoc/de-de/000234730/dsa-2024-422-security-update-for-dell-networker-vproxy-multiple-component-vulnerabilities"
},
{
"category": "external",
"summary": "XEROX Security Advisory XRX24-017 vom 2024-11-21",
"url": "https://securitydocs.business.xerox.com/wp-content/uploads/2024/11/Xerox-Security-Bulletin-XRX24-017-for-Xerox%C2%AE-FreeFlow%C2%AE-Print-Server-v9.pdf"
},
{
"category": "external",
"summary": "Fedora Security Advisory FEDORA-2024-87D30B4FBF vom 2024-12-20",
"url": "https://bodhi.fedoraproject.org/updates/FEDORA-2024-87d30b4fbf"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:0197-1 vom 2025-01-21",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-January/020179.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:20049-1 vom 2025-06-04",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-June/021288.html"
}
],
"source_lang": "en-US",
"title": "git: Mehrere Schwachstellen",
"tracking": {
"current_release_date": "2025-06-04T22:00:00.000+00:00",
"generator": {
"date": "2025-06-05T06:09:43.578+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.3.12"
}
},
"id": "WID-SEC-W-2024-1125",
"initial_release_date": "2024-05-14T22:00:00.000+00:00",
"revision_history": [
{
"date": "2024-05-14T22:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
},
{
"date": "2024-05-28T22:00:00.000+00:00",
"number": "2",
"summary": "Neue Updates von Ubuntu aufgenommen"
},
{
"date": "2024-05-30T22:00:00.000+00:00",
"number": "3",
"summary": "Neue Updates von Amazon aufgenommen"
},
{
"date": "2024-06-18T22:00:00.000+00:00",
"number": "4",
"summary": "Neue Updates von Ubuntu aufgenommen"
},
{
"date": "2024-06-24T22:00:00.000+00:00",
"number": "5",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-06-25T22:00:00.000+00:00",
"number": "6",
"summary": "Neue Updates von Oracle Linux aufgenommen"
},
{
"date": "2024-07-02T22:00:00.000+00:00",
"number": "7",
"summary": "Neue Updates von Rocky Enterprise Software Foundation und SUSE aufgenommen"
},
{
"date": "2024-07-08T22:00:00.000+00:00",
"number": "8",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-07-14T22:00:00.000+00:00",
"number": "9",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2024-07-16T22:00:00.000+00:00",
"number": "10",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-07-18T22:00:00.000+00:00",
"number": "11",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-07-31T22:00:00.000+00:00",
"number": "12",
"summary": "Neue Updates von IBM aufgenommen"
},
{
"date": "2024-08-19T22:00:00.000+00:00",
"number": "13",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2024-08-29T22:00:00.000+00:00",
"number": "14",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-09-02T22:00:00.000+00:00",
"number": "15",
"summary": "Neue Updates von Debian aufgenommen"
},
{
"date": "2024-09-11T22:00:00.000+00:00",
"number": "16",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-09-15T22:00:00.000+00:00",
"number": "17",
"summary": "Neue Updates von Debian aufgenommen"
},
{
"date": "2024-09-18T22:00:00.000+00:00",
"number": "18",
"summary": "Neue Updates von Ubuntu aufgenommen"
},
{
"date": "2024-10-06T22:00:00.000+00:00",
"number": "19",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-10-09T22:00:00.000+00:00",
"number": "20",
"summary": "Neue Updates von Dell aufgenommen"
},
{
"date": "2024-11-21T23:00:00.000+00:00",
"number": "21",
"summary": "Neue Updates von XEROX aufgenommen"
},
{
"date": "2024-12-22T23:00:00.000+00:00",
"number": "22",
"summary": "Neue Updates von Fedora aufgenommen"
},
{
"date": "2025-01-21T23:00:00.000+00:00",
"number": "23",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2025-06-04T22:00:00.000+00:00",
"number": "24",
"summary": "Neue Updates von SUSE aufgenommen"
}
],
"status": "final",
"version": "24"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Amazon Linux 2",
"product": {
"name": "Amazon Linux 2",
"product_id": "398363",
"product_identification_helper": {
"cpe": "cpe:/o:amazon:linux_2:-"
}
}
}
],
"category": "vendor",
"name": "Amazon"
},
{
"branches": [
{
"category": "product_name",
"name": "Debian Linux",
"product": {
"name": "Debian Linux",
"product_id": "2951",
"product_identification_helper": {
"cpe": "cpe:/o:debian:debian_linux:-"
}
}
}
],
"category": "vendor",
"name": "Debian"
},
{
"branches": [
{
"category": "product_name",
"name": "Fedora Linux",
"product": {
"name": "Fedora Linux",
"product_id": "74185",
"product_identification_helper": {
"cpe": "cpe:/o:fedoraproject:fedora:-"
}
}
}
],
"category": "vendor",
"name": "Fedora"
},
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cv2.45.1",
"product": {
"name": "Open Source git \u003cv2.45.1",
"product_id": "T034803"
}
},
{
"category": "product_version",
"name": "v2.45.1",
"product": {
"name": "Open Source git v2.45.1",
"product_id": "T034803-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:open_source:git:v2.45.1"
}
}
},
{
"category": "product_version_range",
"name": "\u003cv2.44.1",
"product": {
"name": "Open Source git \u003cv2.44.1",
"product_id": "T034804"
}
},
{
"category": "product_version",
"name": "v2.44.1",
"product": {
"name": "Open Source git v2.44.1",
"product_id": "T034804-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:open_source:git:v2.44.1"
}
}
},
{
"category": "product_version_range",
"name": "\u003cv2.43.4",
"product": {
"name": "Open Source git \u003cv2.43.4",
"product_id": "T034805"
}
},
{
"category": "product_version",
"name": "v2.43.4",
"product": {
"name": "Open Source git v2.43.4",
"product_id": "T034805-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:open_source:git:v2.43.4"
}
}
},
{
"category": "product_version_range",
"name": "\u003cv2.42.2",
"product": {
"name": "Open Source git \u003cv2.42.2",
"product_id": "T034807"
}
},
{
"category": "product_version",
"name": "v2.42.2",
"product": {
"name": "Open Source git v2.42.2",
"product_id": "T034807-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:open_source:git:v2.42.2"
}
}
},
{
"category": "product_version_range",
"name": "\u003cv2.41.1",
"product": {
"name": "Open Source git \u003cv2.41.1",
"product_id": "T034808"
}
},
{
"category": "product_version",
"name": "v2.41.1",
"product": {
"name": "Open Source git v2.41.1",
"product_id": "T034808-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:open_source:git:v2.41.1"
}
}
},
{
"category": "product_version_range",
"name": "\u003cv2.40.2",
"product": {
"name": "Open Source git \u003cv2.40.2",
"product_id": "T034809"
}
},
{
"category": "product_version",
"name": "v2.40.2",
"product": {
"name": "Open Source git v2.40.2",
"product_id": "T034809-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:open_source:git:v2.40.2"
}
}
},
{
"category": "product_version_range",
"name": "\u003cv2.39.4",
"product": {
"name": "Open Source git \u003cv2.39.4",
"product_id": "T034810"
}
},
{
"category": "product_version",
"name": "v2.39.4",
"product": {
"name": "Open Source git v2.39.4",
"product_id": "T034810-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:open_source:git:v2.39.4"
}
}
}
],
"category": "product_name",
"name": "git"
}
],
"category": "vendor",
"name": "Open Source"
},
{
"branches": [
{
"category": "product_name",
"name": "Oracle Linux",
"product": {
"name": "Oracle Linux",
"product_id": "T004914",
"product_identification_helper": {
"cpe": "cpe:/o:oracle:linux:-"
}
}
}
],
"category": "vendor",
"name": "Oracle"
},
{
"branches": [
{
"category": "product_name",
"name": "RESF Rocky Linux",
"product": {
"name": "RESF Rocky Linux",
"product_id": "T032255",
"product_identification_helper": {
"cpe": "cpe:/o:resf:rocky_linux:-"
}
}
}
],
"category": "vendor",
"name": "RESF"
},
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux",
"product": {
"name": "Red Hat Enterprise Linux",
"product_id": "67646",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:-"
}
}
}
],
"category": "vendor",
"name": "Red Hat"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux",
"product": {
"name": "SUSE Linux",
"product_id": "T002207",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse_linux:-"
}
}
}
],
"category": "vendor",
"name": "SUSE"
},
{
"branches": [
{
"category": "product_name",
"name": "Ubuntu Linux",
"product": {
"name": "Ubuntu Linux",
"product_id": "T000126",
"product_identification_helper": {
"cpe": "cpe:/o:canonical:ubuntu_linux:-"
}
}
}
],
"category": "vendor",
"name": "Ubuntu"
},
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "v9",
"product": {
"name": "Xerox FreeFlow Print Server v9",
"product_id": "T015632",
"product_identification_helper": {
"cpe": "cpe:/a:xerox:freeflow_print_server:v9"
}
}
}
],
"category": "product_name",
"name": "FreeFlow Print Server"
}
],
"category": "vendor",
"name": "Xerox"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-32002",
"product_status": {
"known_affected": [
"T034810",
"T034804",
"67646",
"T034803",
"T015632",
"T004914",
"T032255",
"74185",
"2951",
"T002207",
"T000126",
"T034808",
"T034807",
"398363",
"T034805",
"T034809"
]
},
"release_date": "2024-05-14T22:00:00.000+00:00",
"title": "CVE-2024-32002"
},
{
"cve": "CVE-2024-32004",
"product_status": {
"known_affected": [
"T034810",
"T034804",
"67646",
"T034803",
"T015632",
"T004914",
"T032255",
"74185",
"2951",
"T002207",
"T000126",
"T034808",
"T034807",
"398363",
"T034805",
"T034809"
]
},
"release_date": "2024-05-14T22:00:00.000+00:00",
"title": "CVE-2024-32004"
},
{
"cve": "CVE-2024-32020",
"product_status": {
"known_affected": [
"T034810",
"T034804",
"67646",
"T034803",
"T015632",
"T004914",
"T032255",
"74185",
"2951",
"T002207",
"T000126",
"T034808",
"T034807",
"398363",
"T034805",
"T034809"
]
},
"release_date": "2024-05-14T22:00:00.000+00:00",
"title": "CVE-2024-32020"
},
{
"cve": "CVE-2024-32021",
"product_status": {
"known_affected": [
"T034810",
"T034804",
"67646",
"T034803",
"T015632",
"T004914",
"T032255",
"74185",
"2951",
"T002207",
"T000126",
"T034808",
"T034807",
"398363",
"T034805",
"T034809"
]
},
"release_date": "2024-05-14T22:00:00.000+00:00",
"title": "CVE-2024-32021"
},
{
"cve": "CVE-2024-32465",
"product_status": {
"known_affected": [
"T034810",
"T034804",
"67646",
"T034803",
"T015632",
"T004914",
"T032255",
"74185",
"2951",
"T002207",
"T000126",
"T034808",
"T034807",
"398363",
"T034805",
"T034809"
]
},
"release_date": "2024-05-14T22:00:00.000+00:00",
"title": "CVE-2024-32465"
}
]
}
FKIE_CVE-2024-32020
Vulnerability from fkie_nvd - Published: 2024-05-14 19:15 - Updated: 2024-11-21 09:14
Severity ?
Summary
Git is a revision control system. Prior to versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4, local clones may end up hardlinking files into the target repository's object database when source and target repository reside on the same disk. If the source repository is owned by a different user, then those hardlinked files may be rewritten at any point in time by the untrusted user. Cloning local repositories will cause Git to either copy or hardlink files of the source repository into the target repository. This significantly speeds up such local clones compared to doing a "proper" clone and saves both disk space and compute time. When cloning a repository located on the same disk that is owned by a different user than the current user we also end up creating such hardlinks. These files will continue to be owned and controlled by the potentially-untrusted user and can be rewritten by them at will in the future. The problem has been patched in versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4.
References
| URL | Tags | ||
|---|---|---|---|
| security-advisories@github.com | http://www.openwall.com/lists/oss-security/2024/05/14/2 | ||
| security-advisories@github.com | https://github.com/git/git/commit/1204e1a824c34071019fe106348eaa6d88f9528d | ||
| security-advisories@github.com | https://github.com/git/git/commit/9e65df5eab274bf74c7b570107aacd1303a1e703 | ||
| security-advisories@github.com | https://github.com/git/git/security/advisories/GHSA-5rfh-556j-fhgj | ||
| security-advisories@github.com | https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/S4CK4IYTXEOBZTEM5K3T6LWOIZ3S44AR/ | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://www.openwall.com/lists/oss-security/2024/05/14/2 | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://github.com/git/git/commit/1204e1a824c34071019fe106348eaa6d88f9528d | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://github.com/git/git/commit/9e65df5eab274bf74c7b570107aacd1303a1e703 | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://github.com/git/git/security/advisories/GHSA-5rfh-556j-fhgj | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/S4CK4IYTXEOBZTEM5K3T6LWOIZ3S44AR/ |
Impacted products
| Vendor | Product | Version |
|---|
{
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Git is a revision control system. Prior to versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4, local clones may end up hardlinking files into the target repository\u0027s object database when source and target repository reside on the same disk. If the source repository is owned by a different user, then those hardlinked files may be rewritten at any point in time by the untrusted user. Cloning local repositories will cause Git to either copy or hardlink files of the source repository into the target repository. This significantly speeds up such local clones compared to doing a \"proper\" clone and saves both disk space and compute time. When cloning a repository located on the same disk that is owned by a different user than the current user we also end up creating such hardlinks. These files will continue to be owned and controlled by the potentially-untrusted user and can be rewritten by them at will in the future. The problem has been patched in versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4."
},
{
"lang": "es",
"value": "Git es un sistema de control de revisiones. Antes de las versiones 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2 y 2.39.4, los clones locales pueden terminar vinculando archivos a la base de datos de objetos del repositorio de destino cuando el repositorio de origen y el de destino residen en el mismo disco. Si el repositorio de origen es propiedad de un usuario diferente, el usuario que no es de confianza puede reescribir esos archivos vinculados en cualquier momento. La clonaci\u00f3n de repositorios locales har\u00e1 que Git copie o vincule archivos del repositorio de origen al repositorio de destino. Esto acelera significativamente dichos clones locales en comparaci\u00f3n con realizar un clon \"adecuado\" y ahorra espacio en disco y tiempo de c\u00e1lculo. Al clonar un repositorio ubicado en el mismo disco que es propiedad de un usuario diferente al usuario actual, tambi\u00e9n terminamos creando dichos enlaces f\u00edsicos. Estos archivos seguir\u00e1n siendo propiedad y controlados por el usuario potencialmente no confiable y podr\u00e1n ser reescritos por \u00e9l a voluntad en el futuro. El problema se solucion\u00f3 en las versiones 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2 y 2.39.4."
}
],
"id": "CVE-2024-32020",
"lastModified": "2024-11-21T09:14:20.570",
"metrics": {
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "LOW",
"baseScore": 3.9,
"baseSeverity": "LOW",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:N/I:L/A:L",
"version": "3.1"
},
"exploitabilityScore": 0.8,
"impactScore": 2.7,
"source": "security-advisories@github.com",
"type": "Secondary"
}
]
},
"published": "2024-05-14T19:15:12.240",
"references": [
{
"source": "security-advisories@github.com",
"url": "http://www.openwall.com/lists/oss-security/2024/05/14/2"
},
{
"source": "security-advisories@github.com",
"url": "https://github.com/git/git/commit/1204e1a824c34071019fe106348eaa6d88f9528d"
},
{
"source": "security-advisories@github.com",
"url": "https://github.com/git/git/commit/9e65df5eab274bf74c7b570107aacd1303a1e703"
},
{
"source": "security-advisories@github.com",
"url": "https://github.com/git/git/security/advisories/GHSA-5rfh-556j-fhgj"
},
{
"source": "security-advisories@github.com",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/S4CK4IYTXEOBZTEM5K3T6LWOIZ3S44AR/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.openwall.com/lists/oss-security/2024/05/14/2"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://github.com/git/git/commit/1204e1a824c34071019fe106348eaa6d88f9528d"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://github.com/git/git/commit/9e65df5eab274bf74c7b570107aacd1303a1e703"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://github.com/git/git/security/advisories/GHSA-5rfh-556j-fhgj"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/S4CK4IYTXEOBZTEM5K3T6LWOIZ3S44AR/"
}
],
"sourceIdentifier": "security-advisories@github.com",
"vulnStatus": "Awaiting Analysis",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-281"
}
],
"source": "security-advisories@github.com",
"type": "Secondary"
}
]
}
MSRC_CVE-2024-32020
Vulnerability from csaf_microsoft - Published: 2024-05-02 07:00 - Updated: 2025-05-27 00:00Summary
Cloning local Git repository by untrusted user allows the untrusted user to modify objects in the cloned repository at will
Notes
Additional Resources
To determine the support lifecycle for your software, see the Microsoft Support Lifecycle: https://support.microsoft.com/lifecycle
Disclaimer
The information provided in the Microsoft Knowledge Base is provided \"as is\" without warranty of any kind. Microsoft disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. In no event shall Microsoft Corporation or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Microsoft Corporation or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply.
{
"document": {
"category": "csaf_vex",
"csaf_version": "2.0",
"distribution": {
"text": "Public",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en-US",
"notes": [
{
"category": "general",
"text": "To determine the support lifecycle for your software, see the Microsoft Support Lifecycle: https://support.microsoft.com/lifecycle",
"title": "Additional Resources"
},
{
"category": "legal_disclaimer",
"text": "The information provided in the Microsoft Knowledge Base is provided \\\"as is\\\" without warranty of any kind. Microsoft disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. In no event shall Microsoft Corporation or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Microsoft Corporation or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply.",
"title": "Disclaimer"
}
],
"publisher": {
"category": "vendor",
"contact_details": "secure@microsoft.com",
"name": "Microsoft Security Response Center",
"namespace": "https://msrc.microsoft.com"
},
"references": [
{
"category": "self",
"summary": "CVE-2024-32020 Cloning local Git repository by untrusted user allows the untrusted user to modify objects in the cloned repository at will - VEX",
"url": "https://msrc.microsoft.com/csaf/vex/2024/msrc_cve-2024-32020.json"
},
{
"category": "external",
"summary": "Microsoft Support Lifecycle",
"url": "https://support.microsoft.com/lifecycle"
},
{
"category": "external",
"summary": "Common Vulnerability Scoring System",
"url": "https://www.first.org/cvss"
}
],
"title": "Cloning local Git repository by untrusted user allows the untrusted user to modify objects in the cloned repository at will",
"tracking": {
"current_release_date": "2025-05-27T00:00:00.000Z",
"generator": {
"date": "2025-10-20T01:36:29.175Z",
"engine": {
"name": "MSRC Generator",
"version": "1.0"
}
},
"id": "msrc_CVE-2024-32020",
"initial_release_date": "2024-05-02T07:00:00.000Z",
"revision_history": [
{
"date": "2024-05-17T00:00:00.000Z",
"legacy_version": "1",
"number": "1",
"summary": "Information published."
},
{
"date": "2024-06-30T07:00:00.000Z",
"legacy_version": "1.1",
"number": "2",
"summary": "Information published."
},
{
"date": "2024-08-29T00:00:00.000Z",
"legacy_version": "1.2",
"number": "3",
"summary": "Information published."
},
{
"date": "2024-08-30T00:00:00.000Z",
"legacy_version": "1.3",
"number": "4",
"summary": "Information published."
},
{
"date": "2024-08-31T00:00:00.000Z",
"legacy_version": "1.4",
"number": "5",
"summary": "Information published."
},
{
"date": "2024-09-01T00:00:00.000Z",
"legacy_version": "1.5",
"number": "6",
"summary": "Information published."
},
{
"date": "2024-09-02T00:00:00.000Z",
"legacy_version": "1.6",
"number": "7",
"summary": "Information published."
},
{
"date": "2024-09-03T00:00:00.000Z",
"legacy_version": "1.7",
"number": "8",
"summary": "Information published."
},
{
"date": "2024-09-05T00:00:00.000Z",
"legacy_version": "1.8",
"number": "9",
"summary": "Information published."
},
{
"date": "2024-09-06T00:00:00.000Z",
"legacy_version": "1.9",
"number": "10",
"summary": "Information published."
},
{
"date": "2024-09-07T00:00:00.000Z",
"legacy_version": "2",
"number": "11",
"summary": "Information published."
},
{
"date": "2024-09-08T00:00:00.000Z",
"legacy_version": "2.1",
"number": "12",
"summary": "Information published."
},
{
"date": "2024-09-11T00:00:00.000Z",
"legacy_version": "2.2",
"number": "13",
"summary": "Information published."
},
{
"date": "2024-09-12T00:00:00.000Z",
"legacy_version": "2.3",
"number": "14",
"summary": "Information published."
},
{
"date": "2024-09-13T00:00:00.000Z",
"legacy_version": "2.4",
"number": "15",
"summary": "Information published."
},
{
"date": "2024-09-14T00:00:00.000Z",
"legacy_version": "2.5",
"number": "16",
"summary": "Information published."
},
{
"date": "2024-09-15T00:00:00.000Z",
"legacy_version": "2.6",
"number": "17",
"summary": "Information published."
},
{
"date": "2024-09-16T00:00:00.000Z",
"legacy_version": "2.7",
"number": "18",
"summary": "Information published."
},
{
"date": "2024-09-17T00:00:00.000Z",
"legacy_version": "2.8",
"number": "19",
"summary": "Information published."
},
{
"date": "2024-09-18T00:00:00.000Z",
"legacy_version": "2.9",
"number": "20",
"summary": "Information published."
},
{
"date": "2024-09-19T00:00:00.000Z",
"legacy_version": "3",
"number": "21",
"summary": "Information published."
},
{
"date": "2024-09-20T00:00:00.000Z",
"legacy_version": "3.1",
"number": "22",
"summary": "Information published."
},
{
"date": "2024-09-21T00:00:00.000Z",
"legacy_version": "3.2",
"number": "23",
"summary": "Information published."
},
{
"date": "2024-09-22T00:00:00.000Z",
"legacy_version": "3.3",
"number": "24",
"summary": "Information published."
},
{
"date": "2024-09-23T00:00:00.000Z",
"legacy_version": "3.4",
"number": "25",
"summary": "Information published."
},
{
"date": "2024-09-24T00:00:00.000Z",
"legacy_version": "3.5",
"number": "26",
"summary": "Information published."
},
{
"date": "2024-09-25T00:00:00.000Z",
"legacy_version": "3.6",
"number": "27",
"summary": "Information published."
},
{
"date": "2024-09-26T00:00:00.000Z",
"legacy_version": "3.7",
"number": "28",
"summary": "Information published."
},
{
"date": "2024-09-27T00:00:00.000Z",
"legacy_version": "3.8",
"number": "29",
"summary": "Information published."
},
{
"date": "2024-09-28T00:00:00.000Z",
"legacy_version": "3.9",
"number": "30",
"summary": "Information published."
},
{
"date": "2024-09-29T00:00:00.000Z",
"legacy_version": "4",
"number": "31",
"summary": "Information published."
},
{
"date": "2024-09-30T00:00:00.000Z",
"legacy_version": "4.1",
"number": "32",
"summary": "Information published."
},
{
"date": "2024-10-01T00:00:00.000Z",
"legacy_version": "4.2",
"number": "33",
"summary": "Information published."
},
{
"date": "2024-10-02T00:00:00.000Z",
"legacy_version": "4.3",
"number": "34",
"summary": "Information published."
},
{
"date": "2024-10-03T00:00:00.000Z",
"legacy_version": "4.4",
"number": "35",
"summary": "Information published."
},
{
"date": "2024-10-04T00:00:00.000Z",
"legacy_version": "4.5",
"number": "36",
"summary": "Information published."
},
{
"date": "2024-10-05T00:00:00.000Z",
"legacy_version": "4.6",
"number": "37",
"summary": "Information published."
},
{
"date": "2024-10-06T00:00:00.000Z",
"legacy_version": "4.7",
"number": "38",
"summary": "Information published."
},
{
"date": "2024-10-07T00:00:00.000Z",
"legacy_version": "4.8",
"number": "39",
"summary": "Information published."
},
{
"date": "2024-10-08T00:00:00.000Z",
"legacy_version": "4.9",
"number": "40",
"summary": "Information published."
},
{
"date": "2024-10-09T00:00:00.000Z",
"legacy_version": "5",
"number": "41",
"summary": "Information published."
},
{
"date": "2024-10-10T00:00:00.000Z",
"legacy_version": "5.1",
"number": "42",
"summary": "Information published."
},
{
"date": "2024-10-11T00:00:00.000Z",
"legacy_version": "5.2",
"number": "43",
"summary": "Information published."
},
{
"date": "2024-10-12T00:00:00.000Z",
"legacy_version": "5.3",
"number": "44",
"summary": "Information published."
},
{
"date": "2024-10-13T00:00:00.000Z",
"legacy_version": "5.4",
"number": "45",
"summary": "Information published."
},
{
"date": "2024-10-14T00:00:00.000Z",
"legacy_version": "5.5",
"number": "46",
"summary": "Information published."
},
{
"date": "2024-10-15T00:00:00.000Z",
"legacy_version": "5.6",
"number": "47",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2024-10-16T00:00:00.000Z",
"legacy_version": "5.7",
"number": "48",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2024-10-17T00:00:00.000Z",
"legacy_version": "5.8",
"number": "49",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2024-10-18T00:00:00.000Z",
"legacy_version": "5.9",
"number": "50",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2024-10-19T00:00:00.000Z",
"legacy_version": "6",
"number": "51",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2024-10-20T00:00:00.000Z",
"legacy_version": "6.1",
"number": "52",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2024-10-21T00:00:00.000Z",
"legacy_version": "6.2",
"number": "53",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2024-10-22T00:00:00.000Z",
"legacy_version": "6.3",
"number": "54",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2024-10-23T00:00:00.000Z",
"legacy_version": "6.4",
"number": "55",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2024-10-24T00:00:00.000Z",
"legacy_version": "6.5",
"number": "56",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2024-10-25T00:00:00.000Z",
"legacy_version": "6.6",
"number": "57",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2024-10-26T00:00:00.000Z",
"legacy_version": "6.7",
"number": "58",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2024-10-27T00:00:00.000Z",
"legacy_version": "6.8",
"number": "59",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2024-10-28T00:00:00.000Z",
"legacy_version": "6.9",
"number": "60",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2024-10-29T00:00:00.000Z",
"legacy_version": "7",
"number": "61",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2024-10-30T00:00:00.000Z",
"legacy_version": "7.1",
"number": "62",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2024-10-31T00:00:00.000Z",
"legacy_version": "7.2",
"number": "63",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2024-11-01T00:00:00.000Z",
"legacy_version": "7.3",
"number": "64",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2024-11-02T00:00:00.000Z",
"legacy_version": "7.4",
"number": "65",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2024-11-04T00:00:00.000Z",
"legacy_version": "7.5",
"number": "66",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2024-11-05T00:00:00.000Z",
"legacy_version": "7.6",
"number": "67",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2024-11-06T00:00:00.000Z",
"legacy_version": "7.7",
"number": "68",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2024-11-07T00:00:00.000Z",
"legacy_version": "7.8",
"number": "69",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2024-11-08T00:00:00.000Z",
"legacy_version": "7.9",
"number": "70",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2024-11-09T00:00:00.000Z",
"legacy_version": "8",
"number": "71",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2024-11-10T00:00:00.000Z",
"legacy_version": "8.1",
"number": "72",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2024-11-11T00:00:00.000Z",
"legacy_version": "8.2",
"number": "73",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2024-11-12T00:00:00.000Z",
"legacy_version": "8.3",
"number": "74",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2024-11-13T00:00:00.000Z",
"legacy_version": "8.4",
"number": "75",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2024-11-14T00:00:00.000Z",
"legacy_version": "8.5",
"number": "76",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2024-11-15T00:00:00.000Z",
"legacy_version": "8.6",
"number": "77",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2024-11-16T00:00:00.000Z",
"legacy_version": "8.7",
"number": "78",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2024-11-17T00:00:00.000Z",
"legacy_version": "8.8",
"number": "79",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2024-11-18T00:00:00.000Z",
"legacy_version": "8.9",
"number": "80",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2024-11-19T00:00:00.000Z",
"legacy_version": "9",
"number": "81",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2024-11-20T00:00:00.000Z",
"legacy_version": "9.1",
"number": "82",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2024-11-21T00:00:00.000Z",
"legacy_version": "9.2",
"number": "83",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2024-11-23T00:00:00.000Z",
"legacy_version": "9.3",
"number": "84",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2024-11-24T00:00:00.000Z",
"legacy_version": "9.4",
"number": "85",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2024-11-25T00:00:00.000Z",
"legacy_version": "9.5",
"number": "86",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2024-11-26T00:00:00.000Z",
"legacy_version": "9.6",
"number": "87",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2024-11-27T00:00:00.000Z",
"legacy_version": "9.7",
"number": "88",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2024-11-28T00:00:00.000Z",
"legacy_version": "9.8",
"number": "89",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2024-11-29T00:00:00.000Z",
"legacy_version": "9.9",
"number": "90",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2024-11-30T00:00:00.000Z",
"legacy_version": "1",
"number": "91",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2024-12-01T00:00:00.000Z",
"legacy_version": "10.1",
"number": "92",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2024-12-02T00:00:00.000Z",
"legacy_version": "10.2",
"number": "93",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2024-12-03T00:00:00.000Z",
"legacy_version": "10.3",
"number": "94",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2024-12-04T00:00:00.000Z",
"legacy_version": "10.4",
"number": "95",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2024-12-05T00:00:00.000Z",
"legacy_version": "10.5",
"number": "96",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2024-12-07T00:00:00.000Z",
"legacy_version": "10.6",
"number": "97",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2024-12-08T00:00:00.000Z",
"legacy_version": "10.7",
"number": "98",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2024-12-09T00:00:00.000Z",
"legacy_version": "10.8",
"number": "99",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2024-12-10T00:00:00.000Z",
"legacy_version": "10.9",
"number": "100",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2024-12-11T00:00:00.000Z",
"legacy_version": "11",
"number": "101",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2024-12-12T00:00:00.000Z",
"legacy_version": "11.1",
"number": "102",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2024-12-13T00:00:00.000Z",
"legacy_version": "11.2",
"number": "103",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2024-12-14T00:00:00.000Z",
"legacy_version": "11.3",
"number": "104",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2024-12-15T00:00:00.000Z",
"legacy_version": "11.4",
"number": "105",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2024-12-16T00:00:00.000Z",
"legacy_version": "11.5",
"number": "106",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2024-12-17T00:00:00.000Z",
"legacy_version": "11.6",
"number": "107",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2024-12-18T00:00:00.000Z",
"legacy_version": "11.7",
"number": "108",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2024-12-19T00:00:00.000Z",
"legacy_version": "11.8",
"number": "109",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2024-12-20T00:00:00.000Z",
"legacy_version": "11.9",
"number": "110",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2024-12-21T00:00:00.000Z",
"legacy_version": "12",
"number": "111",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2024-12-22T00:00:00.000Z",
"legacy_version": "12.1",
"number": "112",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2024-12-23T00:00:00.000Z",
"legacy_version": "12.2",
"number": "113",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2024-12-24T00:00:00.000Z",
"legacy_version": "12.3",
"number": "114",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2024-12-25T00:00:00.000Z",
"legacy_version": "12.4",
"number": "115",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2024-12-26T00:00:00.000Z",
"legacy_version": "12.5",
"number": "116",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2024-12-27T00:00:00.000Z",
"legacy_version": "12.6",
"number": "117",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2024-12-28T00:00:00.000Z",
"legacy_version": "12.7",
"number": "118",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2024-12-29T00:00:00.000Z",
"legacy_version": "12.8",
"number": "119",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2024-12-30T00:00:00.000Z",
"legacy_version": "12.9",
"number": "120",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2024-12-31T00:00:00.000Z",
"legacy_version": "13",
"number": "121",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-01-01T00:00:00.000Z",
"legacy_version": "13.1",
"number": "122",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-01-02T00:00:00.000Z",
"legacy_version": "13.2",
"number": "123",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-01-03T00:00:00.000Z",
"legacy_version": "13.3",
"number": "124",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-01-04T00:00:00.000Z",
"legacy_version": "13.4",
"number": "125",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-01-05T00:00:00.000Z",
"legacy_version": "13.5",
"number": "126",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-01-06T00:00:00.000Z",
"legacy_version": "13.6",
"number": "127",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-01-07T00:00:00.000Z",
"legacy_version": "13.7",
"number": "128",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-01-08T00:00:00.000Z",
"legacy_version": "13.8",
"number": "129",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-01-09T00:00:00.000Z",
"legacy_version": "13.9",
"number": "130",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-01-10T00:00:00.000Z",
"legacy_version": "14",
"number": "131",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-01-11T00:00:00.000Z",
"legacy_version": "14.1",
"number": "132",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-01-12T00:00:00.000Z",
"legacy_version": "14.2",
"number": "133",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-01-13T00:00:00.000Z",
"legacy_version": "14.3",
"number": "134",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-01-15T00:00:00.000Z",
"legacy_version": "14.4",
"number": "135",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-01-16T00:00:00.000Z",
"legacy_version": "14.5",
"number": "136",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-01-17T00:00:00.000Z",
"legacy_version": "14.6",
"number": "137",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-01-18T00:00:00.000Z",
"legacy_version": "14.7",
"number": "138",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-01-19T00:00:00.000Z",
"legacy_version": "14.8",
"number": "139",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-01-20T00:00:00.000Z",
"legacy_version": "14.9",
"number": "140",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-01-21T00:00:00.000Z",
"legacy_version": "15",
"number": "141",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-01-22T00:00:00.000Z",
"legacy_version": "15.1",
"number": "142",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-01-23T00:00:00.000Z",
"legacy_version": "15.2",
"number": "143",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-01-24T00:00:00.000Z",
"legacy_version": "15.3",
"number": "144",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-01-25T00:00:00.000Z",
"legacy_version": "15.4",
"number": "145",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-01-27T00:00:00.000Z",
"legacy_version": "15.5",
"number": "146",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-01-28T00:00:00.000Z",
"legacy_version": "15.6",
"number": "147",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-01-29T00:00:00.000Z",
"legacy_version": "15.7",
"number": "148",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-01-30T00:00:00.000Z",
"legacy_version": "15.8",
"number": "149",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-02-01T00:00:00.000Z",
"legacy_version": "15.9",
"number": "150",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-02-02T00:00:00.000Z",
"legacy_version": "16",
"number": "151",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-02-03T00:00:00.000Z",
"legacy_version": "16.1",
"number": "152",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-02-04T00:00:00.000Z",
"legacy_version": "16.2",
"number": "153",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-02-05T00:00:00.000Z",
"legacy_version": "16.3",
"number": "154",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-02-07T00:00:00.000Z",
"legacy_version": "16.4",
"number": "155",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-02-08T00:00:00.000Z",
"legacy_version": "16.5",
"number": "156",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-02-09T00:00:00.000Z",
"legacy_version": "16.6",
"number": "157",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-02-10T00:00:00.000Z",
"legacy_version": "16.7",
"number": "158",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-02-11T00:00:00.000Z",
"legacy_version": "16.8",
"number": "159",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-02-12T00:00:00.000Z",
"legacy_version": "16.9",
"number": "160",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-02-13T00:00:00.000Z",
"legacy_version": "17",
"number": "161",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-02-14T00:00:00.000Z",
"legacy_version": "17.1",
"number": "162",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-02-15T00:00:00.000Z",
"legacy_version": "17.2",
"number": "163",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-02-16T00:00:00.000Z",
"legacy_version": "17.3",
"number": "164",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-02-17T00:00:00.000Z",
"legacy_version": "17.4",
"number": "165",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-02-18T00:00:00.000Z",
"legacy_version": "17.5",
"number": "166",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-02-19T00:00:00.000Z",
"legacy_version": "17.6",
"number": "167",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-02-20T00:00:00.000Z",
"legacy_version": "17.7",
"number": "168",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-02-21T00:00:00.000Z",
"legacy_version": "17.8",
"number": "169",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-02-22T00:00:00.000Z",
"legacy_version": "17.9",
"number": "170",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-02-23T00:00:00.000Z",
"legacy_version": "18",
"number": "171",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-02-24T00:00:00.000Z",
"legacy_version": "18.1",
"number": "172",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-02-25T00:00:00.000Z",
"legacy_version": "18.2",
"number": "173",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-02-26T00:00:00.000Z",
"legacy_version": "18.3",
"number": "174",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-02-27T00:00:00.000Z",
"legacy_version": "18.4",
"number": "175",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-02-28T00:00:00.000Z",
"legacy_version": "18.5",
"number": "176",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-03-01T00:00:00.000Z",
"legacy_version": "18.6",
"number": "177",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-03-02T00:00:00.000Z",
"legacy_version": "18.7",
"number": "178",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-03-03T00:00:00.000Z",
"legacy_version": "18.8",
"number": "179",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-03-04T00:00:00.000Z",
"legacy_version": "18.9",
"number": "180",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-03-05T00:00:00.000Z",
"legacy_version": "19",
"number": "181",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-03-06T00:00:00.000Z",
"legacy_version": "19.1",
"number": "182",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-03-08T00:00:00.000Z",
"legacy_version": "19.2",
"number": "183",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-03-09T00:00:00.000Z",
"legacy_version": "19.3",
"number": "184",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-03-10T00:00:00.000Z",
"legacy_version": "19.4",
"number": "185",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-03-11T00:00:00.000Z",
"legacy_version": "19.5",
"number": "186",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-03-12T00:00:00.000Z",
"legacy_version": "19.6",
"number": "187",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-03-13T00:00:00.000Z",
"legacy_version": "19.7",
"number": "188",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-03-14T00:00:00.000Z",
"legacy_version": "19.8",
"number": "189",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-03-15T00:00:00.000Z",
"legacy_version": "19.9",
"number": "190",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-03-16T00:00:00.000Z",
"legacy_version": "2",
"number": "191",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-03-17T00:00:00.000Z",
"legacy_version": "20.1",
"number": "192",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-03-18T00:00:00.000Z",
"legacy_version": "20.2",
"number": "193",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-03-19T00:00:00.000Z",
"legacy_version": "20.3",
"number": "194",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-03-20T00:00:00.000Z",
"legacy_version": "20.4",
"number": "195",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-03-21T00:00:00.000Z",
"legacy_version": "20.5",
"number": "196",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-03-22T00:00:00.000Z",
"legacy_version": "20.6",
"number": "197",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-03-23T00:00:00.000Z",
"legacy_version": "20.7",
"number": "198",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-03-24T00:00:00.000Z",
"legacy_version": "20.8",
"number": "199",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-03-25T00:00:00.000Z",
"legacy_version": "20.9",
"number": "200",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-03-26T00:00:00.000Z",
"legacy_version": "21",
"number": "201",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-03-27T00:00:00.000Z",
"legacy_version": "21.1",
"number": "202",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-03-28T00:00:00.000Z",
"legacy_version": "21.2",
"number": "203",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-03-29T00:00:00.000Z",
"legacy_version": "21.3",
"number": "204",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-03-30T00:00:00.000Z",
"legacy_version": "21.4",
"number": "205",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-03-31T00:00:00.000Z",
"legacy_version": "21.5",
"number": "206",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-04-01T00:00:00.000Z",
"legacy_version": "21.6",
"number": "207",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-04-03T00:00:00.000Z",
"legacy_version": "21.7",
"number": "208",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-04-04T00:00:00.000Z",
"legacy_version": "21.8",
"number": "209",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-04-05T00:00:00.000Z",
"legacy_version": "21.9",
"number": "210",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-04-06T00:00:00.000Z",
"legacy_version": "22",
"number": "211",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-04-07T00:00:00.000Z",
"legacy_version": "22.1",
"number": "212",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-04-08T00:00:00.000Z",
"legacy_version": "22.2",
"number": "213",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-04-09T00:00:00.000Z",
"legacy_version": "22.3",
"number": "214",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-04-11T00:00:00.000Z",
"legacy_version": "22.4",
"number": "215",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-04-12T00:00:00.000Z",
"legacy_version": "22.5",
"number": "216",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-04-13T00:00:00.000Z",
"legacy_version": "22.6",
"number": "217",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-04-14T00:00:00.000Z",
"legacy_version": "22.7",
"number": "218",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-04-15T00:00:00.000Z",
"legacy_version": "22.8",
"number": "219",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-04-16T00:00:00.000Z",
"legacy_version": "22.9",
"number": "220",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-04-17T00:00:00.000Z",
"legacy_version": "23",
"number": "221",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-04-18T00:00:00.000Z",
"legacy_version": "23.1",
"number": "222",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-04-19T00:00:00.000Z",
"legacy_version": "23.2",
"number": "223",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-04-20T00:00:00.000Z",
"legacy_version": "23.3",
"number": "224",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-04-21T00:00:00.000Z",
"legacy_version": "23.4",
"number": "225",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-04-22T00:00:00.000Z",
"legacy_version": "23.5",
"number": "226",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-04-23T00:00:00.000Z",
"legacy_version": "23.6",
"number": "227",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-04-24T00:00:00.000Z",
"legacy_version": "23.7",
"number": "228",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-04-25T00:00:00.000Z",
"legacy_version": "23.8",
"number": "229",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-04-26T00:00:00.000Z",
"legacy_version": "23.9",
"number": "230",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-04-28T00:00:00.000Z",
"legacy_version": "24",
"number": "231",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-04-29T00:00:00.000Z",
"legacy_version": "24.1",
"number": "232",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-04-30T00:00:00.000Z",
"legacy_version": "24.2",
"number": "233",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-05-01T00:00:00.000Z",
"legacy_version": "24.3",
"number": "234",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-05-02T00:00:00.000Z",
"legacy_version": "24.4",
"number": "235",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-05-03T00:00:00.000Z",
"legacy_version": "24.5",
"number": "236",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-05-04T00:00:00.000Z",
"legacy_version": "24.6",
"number": "237",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-05-05T00:00:00.000Z",
"legacy_version": "24.7",
"number": "238",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-05-06T00:00:00.000Z",
"legacy_version": "24.8",
"number": "239",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-05-07T00:00:00.000Z",
"legacy_version": "24.9",
"number": "240",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-05-08T00:00:00.000Z",
"legacy_version": "25",
"number": "241",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-05-09T00:00:00.000Z",
"legacy_version": "25.1",
"number": "242",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-05-10T00:00:00.000Z",
"legacy_version": "25.2",
"number": "243",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-05-11T00:00:00.000Z",
"legacy_version": "25.3",
"number": "244",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-05-12T00:00:00.000Z",
"legacy_version": "25.4",
"number": "245",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-05-13T00:00:00.000Z",
"legacy_version": "25.5",
"number": "246",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-05-14T00:00:00.000Z",
"legacy_version": "25.6",
"number": "247",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-05-15T00:00:00.000Z",
"legacy_version": "25.7",
"number": "248",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-05-16T00:00:00.000Z",
"legacy_version": "25.8",
"number": "249",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-05-17T00:00:00.000Z",
"legacy_version": "25.9",
"number": "250",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-05-18T00:00:00.000Z",
"legacy_version": "26",
"number": "251",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-05-19T00:00:00.000Z",
"legacy_version": "26.1",
"number": "252",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-05-20T00:00:00.000Z",
"legacy_version": "26.2",
"number": "253",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-05-21T00:00:00.000Z",
"legacy_version": "26.3",
"number": "254",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-05-22T00:00:00.000Z",
"legacy_version": "26.4",
"number": "255",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-05-23T00:00:00.000Z",
"legacy_version": "26.5",
"number": "256",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-05-24T00:00:00.000Z",
"legacy_version": "26.6",
"number": "257",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-05-25T00:00:00.000Z",
"legacy_version": "26.7",
"number": "258",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-05-26T00:00:00.000Z",
"legacy_version": "26.8",
"number": "259",
"summary": "Added git to CBL-Mariner 2.0"
},
{
"date": "2025-05-27T00:00:00.000Z",
"legacy_version": "26.9",
"number": "260",
"summary": "Added git to CBL-Mariner 2.0"
}
],
"status": "final",
"version": "260"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "2.0",
"product": {
"name": "CBL Mariner 2.0",
"product_id": "17086"
}
},
{
"category": "product_version",
"name": "3.0",
"product": {
"name": "Azure Linux 3.0",
"product_id": "17084"
}
}
],
"category": "product_name",
"name": "Azure Linux"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003ccbl2 git 2.39.4-1",
"product": {
"name": "\u003ccbl2 git 2.39.4-1",
"product_id": "3"
}
},
{
"category": "product_version",
"name": "cbl2 git 2.39.4-1",
"product": {
"name": "cbl2 git 2.39.4-1",
"product_id": "17333"
}
},
{
"category": "product_version_range",
"name": "\u003cazl3 git 2.45.2-1",
"product": {
"name": "\u003cazl3 git 2.45.2-1",
"product_id": "4"
}
},
{
"category": "product_version",
"name": "azl3 git 2.45.2-1",
"product": {
"name": "azl3 git 2.45.2-1",
"product_id": "16899"
}
},
{
"category": "product_version_range",
"name": "\u003ccbl2 git 2.33.8-2",
"product": {
"name": "\u003ccbl2 git 2.33.8-2",
"product_id": "1"
}
},
{
"category": "product_version",
"name": "cbl2 git 2.33.8-2",
"product": {
"name": "cbl2 git 2.33.8-2",
"product_id": "20118"
}
},
{
"category": "product_version_range",
"name": "\u003cazl3 git 2.42.0-2",
"product": {
"name": "\u003cazl3 git 2.42.0-2",
"product_id": "2"
}
},
{
"category": "product_version",
"name": "azl3 git 2.42.0-2",
"product": {
"name": "azl3 git 2.42.0-2",
"product_id": "19689"
}
}
],
"category": "product_name",
"name": "git"
}
],
"category": "vendor",
"name": "Microsoft"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "\u003ccbl2 git 2.39.4-1 as a component of CBL Mariner 2.0",
"product_id": "17086-3"
},
"product_reference": "3",
"relates_to_product_reference": "17086"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cbl2 git 2.39.4-1 as a component of CBL Mariner 2.0",
"product_id": "17333-17086"
},
"product_reference": "17333",
"relates_to_product_reference": "17086"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "\u003cazl3 git 2.45.2-1 as a component of Azure Linux 3.0",
"product_id": "17084-4"
},
"product_reference": "4",
"relates_to_product_reference": "17084"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "azl3 git 2.45.2-1 as a component of Azure Linux 3.0",
"product_id": "16899-17084"
},
"product_reference": "16899",
"relates_to_product_reference": "17084"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "\u003ccbl2 git 2.33.8-2 as a component of CBL Mariner 2.0",
"product_id": "17086-1"
},
"product_reference": "1",
"relates_to_product_reference": "17086"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cbl2 git 2.33.8-2 as a component of CBL Mariner 2.0",
"product_id": "20118-17086"
},
"product_reference": "20118",
"relates_to_product_reference": "17086"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "\u003cazl3 git 2.42.0-2 as a component of Azure Linux 3.0",
"product_id": "17084-2"
},
"product_reference": "2",
"relates_to_product_reference": "17084"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "azl3 git 2.42.0-2 as a component of Azure Linux 3.0",
"product_id": "19689-17084"
},
"product_reference": "19689",
"relates_to_product_reference": "17084"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-32020",
"cwe": {
"id": "CWE-281",
"name": "Improper Preservation of Permissions"
},
"notes": [
{
"category": "general",
"text": "GitHub_M",
"title": "Assigning CNA"
}
],
"product_status": {
"fixed": [
"17333-17086",
"16899-17084",
"20118-17086",
"19689-17084"
],
"known_affected": [
"17086-3",
"17084-4",
"17086-1",
"17084-2"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-32020 Cloning local Git repository by untrusted user allows the untrusted user to modify objects in the cloned repository at will - VEX",
"url": "https://msrc.microsoft.com/csaf/vex/2024/msrc_cve-2024-32020.json"
}
],
"remediations": [
{
"category": "vendor_fix",
"date": "2024-05-17T00:00:00.000Z",
"details": "2.39.4-1:Security Update:https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade",
"product_ids": [
"17086-3",
"17086-1"
],
"url": "https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade"
},
{
"category": "vendor_fix",
"date": "2024-05-17T00:00:00.000Z",
"details": "2.45.2-1:Security Update:https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade",
"product_ids": [
"17084-4",
"17084-2"
],
"url": "https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "LOW",
"baseScore": 3.9,
"baseSeverity": "LOW",
"confidentialityImpact": "NONE",
"environmentalsScore": 0.0,
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"temporalScore": 3.9,
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"17086-3",
"17084-4",
"17086-1",
"17084-2"
]
}
],
"title": "Cloning local Git repository by untrusted user allows the untrusted user to modify objects in the cloned repository at will"
}
]
}
GSD-2024-32020
Vulnerability from gsd - Updated: 2024-04-11 05:03Details
** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.
Aliases
{
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2024-32020"
],
"id": "GSD-2024-32020",
"modified": "2024-04-11T05:03:18.974758Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2024-32020",
"STATE": "RESERVED"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
}
]
}
}
}
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…