CVE-2022-29187 - Git is a distributed revision control system. Git prior to versions 2.37.1, 2.36.2, 2.35.4, 2.34.4,

CVE-2022-29187

Summary

Git is a distributed revision control system. Git prior to versions 2.37.1, 2.36.2, 2.35.4, 2.34.4, 2.33.4, 2.32.3, 2.31.4, and 2.30.5, is vulnerable to privilege escalation in all platforms. An unsuspecting user could still be affected by the issue reported in CVE-2022-24765, for example when navigating as root into a shared tmp directory that is owned by them, but where an attacker could create a git repository. Versions 2.37.1, 2.36.2, 2.35.4, 2.34.4, 2.33.4, 2.32.3, 2.31.4, and 2.30.5 contain a patch for this issue. The simplest way to avoid being affected by the exploit described in the example is to avoid running git as root (or an Administrator in Windows), and if needed to reduce its use to a minimum. While a generic workaround is not possible, a system could be hardened from the exploit described in the example by removing any such repository if it exists already and creating one as root to block any future attacks.

References

Vulnerable Configurations

cpe:2.3:a:git-scm:git:2.35.2:*:*:*:*:*:*:*
cpe:2.3:a:git-scm:git:2.35.2:*:*:*:*:*:*:*
cpe:2.3:a:git-scm:git:2.35.3:*:*:*:*:*:*:*
cpe:2.3:a:git-scm:git:2.35.3:*:*:*:*:*:*:*
cpe:2.3:a:git-scm:git:2.34.2:*:*:*:*:*:*:*
cpe:2.3:a:git-scm:git:2.34.2:*:*:*:*:*:*:*
cpe:2.3:a:git-scm:git:2.34.3:*:*:*:*:*:*:*
cpe:2.3:a:git-scm:git:2.34.3:*:*:*:*:*:*:*
cpe:2.3:a:git-scm:git:2.33.2:*:*:*:*:*:*:*
cpe:2.3:a:git-scm:git:2.33.2:*:*:*:*:*:*:*
cpe:2.3:a:git-scm:git:2.33.3:*:*:*:*:*:*:*
cpe:2.3:a:git-scm:git:2.33.3:*:*:*:*:*:*:*
cpe:2.3:a:git-scm:git:2.32.1:*:*:*:*:*:*:*
cpe:2.3:a:git-scm:git:2.32.1:*:*:*:*:*:*:*
cpe:2.3:a:git-scm:git:2.32.2:*:*:*:*:*:*:*
cpe:2.3:a:git-scm:git:2.32.2:*:*:*:*:*:*:*
cpe:2.3:a:git-scm:git:2.31.2:*:*:*:*:*:*:*
cpe:2.3:a:git-scm:git:2.31.2:*:*:*:*:*:*:*
cpe:2.3:a:git-scm:git:2.31.3:*:*:*:*:*:*:*
cpe:2.3:a:git-scm:git:2.31.3:*:*:*:*:*:*:*
cpe:2.3:a:git-scm:git:2.30.3:*:*:*:*:*:*:*
cpe:2.3:a:git-scm:git:2.30.3:*:*:*:*:*:*:*
cpe:2.3:a:git-scm:git:2.30.4:*:*:*:*:*:*:*
cpe:2.3:a:git-scm:git:2.30.4:*:*:*:*:*:*:*
cpe:2.3:a:git-scm:git:2.36.0:-:*:*:*:*:*:*
cpe:2.3:a:git-scm:git:2.36.0:-:*:*:*:*:*:*
cpe:2.3:a:git-scm:git:2.36.0:rc0:*:*:*:*:*:*
cpe:2.3:a:git-scm:git:2.36.0:rc0:*:*:*:*:*:*
cpe:2.3:a:git-scm:git:2.36.0:rc1:*:*:*:*:*:*
cpe:2.3:a:git-scm:git:2.36.0:rc1:*:*:*:*:*:*
cpe:2.3:a:git-scm:git:2.36.0:rc2:*:*:*:*:*:*
cpe:2.3:a:git-scm:git:2.36.0:rc2:*:*:*:*:*:*
cpe:2.3:a:git-scm:git:2.36.1:*:*:*:*:*:*:*
cpe:2.3:a:git-scm:git:2.36.1:*:*:*:*:*:*:*
cpe:2.3:a:git-scm:git:2.37.0:-:*:*:*:*:*:*
cpe:2.3:a:git-scm:git:2.37.0:-:*:*:*:*:*:*
cpe:2.3:a:git-scm:git:2.37.0:rc0:*:*:*:*:*:*
cpe:2.3:a:git-scm:git:2.37.0:rc0:*:*:*:*:*:*
cpe:2.3:a:git-scm:git:2.37.0:rc1:*:*:*:*:*:*
cpe:2.3:a:git-scm:git:2.37.0:rc1:*:*:*:*:*:*
cpe:2.3:a:git-scm:git:2.37.0:rc2:*:*:*:*:*:*
cpe:2.3:a:git-scm:git:2.37.0:rc2:*:*:*:*:*:*
cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:*
cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:*
cpe:2.3:o:fedoraproject:fedora:36:*:*:*:*:*:*:*
cpe:2.3:o:fedoraproject:fedora:36:*:*:*:*:*:*:*
cpe:2.3:o:fedoraproject:fedora:37:*:*:*:*:*:*:*
cpe:2.3:o:fedoraproject:fedora:37:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:-:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:-:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:1.5.0:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:1.5.0:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:2.0.0:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:2.0.0:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:2.1.0:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:2.1.0:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:2.2.0:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:2.2.0:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:2.3.0:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:2.3.0:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:2.4.0:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:2.4.0:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:2.4.1:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:2.4.1:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:3.1:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:3.1:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:3.1.1:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:3.1.1:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:3.1.2:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:3.1.2:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:3.1.3:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:3.1.3:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:3.1.4:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:3.1.4:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:3.2.1:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:3.2.1:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:3.2.2:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:3.2.2:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:3.2.3:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:3.2.3:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:3.2.4:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:3.2.4:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:3.2.5:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:3.2.5:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:4.0:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:4.0:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:4.0.1:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:4.0.1:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:4.0.2:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:4.0.2:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:4.1:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:4.1:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:4.1.1:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:4.1.1:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:4.2:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:4.2:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:4.2.1:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:4.2.1:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:4.3:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:4.3:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:4.3.1:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:4.3.1:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:4.3.2:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:4.3.2:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:4.3.3:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:4.3.3:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:4.4:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:4.4:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:4.4.1:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:4.4.1:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:4.5:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:4.5:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:4.5.1:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:4.5.1:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:4.5.2:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:4.5.2:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:4.6:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:4.6:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:4.6.1:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:4.6.1:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:4.6.2:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:4.6.2:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:4.6.3:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:4.6.3:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:5.0:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:5.0:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:5.0.1:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:5.0.1:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:5.0.2:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:5.0.2:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:5.1:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:5.1:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:5.1.1:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:5.1.1:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:6.0:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:6.0:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:6.0.1:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:6.0.1:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:6.1:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:6.1:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:6.1.1:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:6.1.1:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:6.2:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:6.2:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:6.2:beta_2:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:6.2:beta_2:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:6.3:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:6.3:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:6.3.1:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:6.3.1:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:6.3.2:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:6.3.2:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:6.4:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:6.4:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:7.0:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:7.0:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:7.0.1:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:7.0.1:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:7.1:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:7.1:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:7.1.1:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:7.1.1:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:7.2:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:7.2:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:7.2.1:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:7.2.1:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:7.3:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:7.3:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:7.3.1:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:7.3.1:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:8.0:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:8.0:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:8.1:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:8.1:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:8.2:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:8.2:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:8.2.1:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:8.2.1:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:8.3:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:8.3:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:8.3.1:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:8.3.1:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:8.3.2:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:8.3.2:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:8.3.3:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:8.3.3:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:9.0:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:9.0:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:9.0.1:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:9.0.1:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:9.1:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:9.1:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:9.2:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:9.2:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:9.3:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:9.3:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:9.3.1:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:9.3.1:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:9.4:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:9.4:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:9.4.1:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:9.4.1:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:10:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:10:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:11.0:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:11.0:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:11.2:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:11.2:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:11.3:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:11.3:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:12.0:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:12.0:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:12.4:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:12.4:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:12.5:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:12.5:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:12.5.1:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:12.5.1:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:13.0:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:13.0:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:13.1:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:13.1:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:13.2:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:13.2:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:13.2.1:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:13.2.1:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:13.3:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:13.3:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:14.0:*:*:*:*:*:*:*
cpe:2.3:a:apple:xcode:14.0:*:*:*:*:*:*:*
cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*
cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*

CVSS

Base:	6.9 (as of 14-01-2024 - 10:15)
Impact:
Exploitability:

CWE

CWE-282

CAPEC

Leverage Executable Code in Non-Executable Files
An attack of this type exploits a system's trust in configuration and resource files. When the executable loads the resource (such as an image file or configuration file) the attacker has modified the file to either execute malicious code directly or manipulate the target process (e.g. application server) to execute based on the malicious configuration parameters. Since systems are increasingly interrelated mashing up resources from local and remote sources the possibility of this attack occurring is high.
Using Malicious Files
An attack of this type exploits a system's configuration that allows an attacker to either directly access an executable file, for example through shell access; or in a possible worst case allows an attacker to upload a file and then execute it. Web servers, ftp servers, and message oriented middleware systems which have many integration points are particularly vulnerable, because both the programmers and the administrators must be in synch regarding the interfaces and the correct privileges for each interface.

Access

Vector	Complexity	Authentication
LOCAL	MEDIUM	NONE

Impact

Confidentiality	Integrity	Availability
COMPLETE	COMPLETE	COMPLETE

cvss-vector via4

AV:L/AC:M/Au:N/C:C/I:C/A:C

Last major update

14-01-2024 - 10:15

Published

12-07-2022 - 21:15

Last modified

14-01-2024 - 10:15