vulnerability

Amazon Linux 2023: CVE-2024-32004: Important priority package update for git

Try Surface Command
Back to search
Severity
7
CVSS
(AV:L/AC:M/Au:N/C:C/I:C/A:C)
Published
May 14, 2024
Added
Feb 17, 2025
Modified
Jul 4, 2025

Description

Git is a revision control system. Prior to versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4, an attacker can prepare a local repository in such a way that, when cloned, will execute arbitrary code during the operation. The problem has been patched in versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4. As a workaround, avoid cloning repositories from untrusted sources.
A vulnerability was found in Git. This vulnerability can be exploited by an unauthenticated attacker who places a specialized repository on the target's local system. If the victim clones this repository, the attacker can execute arbitrary code.

Solutions

amazon-linux-2023-upgrade-gitamazon-linux-2023-upgrade-git-allamazon-linux-2023-upgrade-git-coreamazon-linux-2023-upgrade-git-core-debuginfoamazon-linux-2023-upgrade-git-core-docamazon-linux-2023-upgrade-git-credential-libsecretamazon-linux-2023-upgrade-git-credential-libsecret-debuginfoamazon-linux-2023-upgrade-git-cvsamazon-linux-2023-upgrade-git-daemonamazon-linux-2023-upgrade-git-daemon-debuginfoamazon-linux-2023-upgrade-git-debuginfoamazon-linux-2023-upgrade-git-debugsourceamazon-linux-2023-upgrade-git-emailamazon-linux-2023-upgrade-git-guiamazon-linux-2023-upgrade-git-instawebamazon-linux-2023-upgrade-gitkamazon-linux-2023-upgrade-git-p4amazon-linux-2023-upgrade-git-subtreeamazon-linux-2023-upgrade-git-svnamazon-linux-2023-upgrade-gitwebamazon-linux-2023-upgrade-perl-gitamazon-linux-2023-upgrade-perl-git-svn

References

Title
NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today