vulnerability
Oracle Solaris 11: CVE-2016-2315: Vulnerability in Git
Severity | CVSS | Published | Added | Modified |
---|---|---|---|---|
10 | (AV:N/AC:L/Au:N/C:C/I:C/A:C) | Apr 8, 2016 | May 29, 2017 | Feb 1, 2022 |
Severity
10
CVSS
(AV:N/AC:L/Au:N/C:C/I:C/A:C)
Published
Apr 8, 2016
Added
May 29, 2017
Modified
Feb 1, 2022
Description
revision.c in git before 2.7.4 uses an incorrect integer data type, which allows remote attackers to execute arbitrary code via a (1) long filename or (2) many nested trees, leading to a heap-based buffer overflow.
Solution
oracle-solaris-11-3-upgrade-developer-versioning-git-2-7-4-0-175-3-8-0-2-0

NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.