vulnerability
FreeBSD: VID-3445e4b6-d2b8-11ef-9ff3-43c2b5d6c4c8 (CVE-2024-52006): git -- multiple vulnerabilities
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 8 | (AV:N/AC:L/Au:N/C:C/I:N/A:N) | Jan 14, 2025 | Jan 16, 2025 | Jan 27, 2026 |
Severity
8
CVSS
(AV:N/AC:L/Au:N/C:C/I:N/A:N)
Published
Jan 14, 2025
Added
Jan 16, 2025
Modified
Jan 27, 2026
Description
Git development team reports: CVE-2024-50349: Printing unsanitized URLs when asking for credentials made the user susceptible to crafted URLs (e.g. in recursive clones) that mislead the user into typing in passwords for trusted sites that would then be sent to untrusted sites instead. CVE-2024-52006: Git may pass on Carriage Returns via the credential protocol to credential helpers which use line-reading functions that interpret said Carriage Returns as line endings, even though Git did not intend that.
Solutions
freebsd-upgrade-package-gitfreebsd-upgrade-package-git-cvsfreebsd-upgrade-package-git-guifreebsd-upgrade-package-git-p4freebsd-upgrade-package-git-svn
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.