vulnerability

SUSE: CVE-2016-2315: SUSE Linux Security Advisory

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
10	(AV:N/AC:L/Au:N/C:C/I:C/A:C)	Mar 16, 2016	Mar 22, 2016	Jun 20, 2021

Severity

CVSS

(AV:N/AC:L/Au:N/C:C/I:C/A:C)

Published

Mar 16, 2016

Added

Mar 22, 2016

Modified

Jun 20, 2021

Description

revision.c in git before 2.7.4 uses an incorrect integer data type, which allows remote attackers to execute arbitrary code via a (1) long filename or (2) many nested trees, leading to a heap-based buffer overflow.

Solution(s)

suse-upgrade-gitsuse-upgrade-git-archsuse-upgrade-git-coresuse-upgrade-git-cvssuse-upgrade-git-daemonsuse-upgrade-git-docsuse-upgrade-git-emailsuse-upgrade-git-guisuse-upgrade-git-svnsuse-upgrade-git-websuse-upgrade-gitk

References

SUSE-SUSE-SU-2016:0796
SUSE-SUSE-SU-2016:0796-1
SUSE-SUSE-SU-2016:0798
SUSE-SUSE-SU-2016:0798-1
REDHAT-RHSA-2016:0496
DEBIAN-DSA-3521
BID-84355
SECTRACK-1035290
UBUNTU-USN-2938-1
GENTOO-GLSA-201605-01
NVD-CVE-2016-2315

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today