vulnerability

Ubuntu: USN-2938-1 (CVE-2016-2315): Git vulnerabilities

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
10	(AV:N/AC:L/Au:N/C:C/I:C/A:C)	Mar 21, 2016	Mar 22, 2016	Mar 27, 2026

Severity

CVSS

(AV:N/AC:L/Au:N/C:C/I:C/A:C)

Published

Mar 21, 2016

Added

Mar 22, 2016

Modified

Mar 27, 2026

Description

revision.c in git before 2.7.4 uses an incorrect integer data type, which allows remote attackers to execute arbitrary code via a (1) long filename or (2) many nested trees, leading to a heap-based buffer overflow.

Solution

ubuntu-upgrade-git

References

CVE-2016-2315
https://attackerkb.com/topics/CVE-2016-2315
CWE-119
DEBIAN-DSA-3521
EUVD-EUVD-2016-3399
NVD-CVE-2016-2315
UBUNTU-USN-2938-1
https://euvd.enisa.europa.eu/vulnerability/EUVD-2016-3399

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today