[CVE-2008-3546] PATH buffer overflow in diff_addremove(), diff_change() in git leading to arbitrary code execution
Bug #256617 reported by
Till Ulen
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
git-core (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned |
Bug Description
Binary package hint: git-core
CVE-2008-3546 description:
"Stack-based buffer overflow in the (1) diff_addremove and (2) diff_change functions in GIT before 1.5.6.4 might allow local users to execute arbitrary code via a PATH whose length is larger than the system's PATH_MAX when running GIT utilities such as git-diff or git-grep."
http://
http://
http://
CVE References
Changed in git-core: | |
status: | New → Confirmed |
To post a comment you must log in.
Adding CVE reference: CVE-2008-3546