Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2025-48384 (GCVE-0-2025-48384)
Vulnerability from cvelistv5
Published
2025-07-08 18:23
Modified
2025-11-04 21:11
Severity ?
VLAI Severity ?
EPSS score ?
CWE
Summary
Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full access to internals. When reading a config value, Git strips any trailing carriage return and line feed (CRLF). When writing a config entry, values with a trailing CR are not quoted, causing the CR to be lost when the config is later read. When initializing a submodule, if the submodule path contains a trailing CR, the altered path is read resulting in the submodule being checked out to an incorrect location. If a symlink exists that points the altered path to the submodule hooks directory, and the submodule contains an executable post-checkout hook, the script may be unintentionally executed after checkout. This vulnerability is fixed in v2.43.7, v2.44.4, v2.45.4, v2.46.4, v2.47.3, v2.48.2, v2.49.1, and v2.50.1.
References
| URL | Tags | ||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||
Impacted products
CISA Known Exploited Vulnerability
Data from the CISA Known Exploited Vulnerabilities Catalog
Date added: 2025-08-25
Due date: 2025-09-15
Required action: Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
Used in ransomware: Unknown
Notes: This vulnerability affects a common open-source component, third-party library, or a protocol used by different products. For more information, please see: https://github.com/git/git/security/advisories/GHSA-vwqx-4fm8-6qc9 ; https://access.redhat.com/errata/RHSA-2025:13933 ; https://alas.aws.amazon.com/AL2/ALAS2-2025-2941.html ; https://linux.oracle.com/errata/ELSA-2025-11534.html ; https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-48384 ; https://nvd.nist.gov/vuln/detail/CVE-2025-48384
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2025-48384",
"options": [
{
"Exploitation": "active"
},
{
"Automatable": "no"
},
{
"Technical Impact": "total"
}
],
"role": "CISA Coordinator",
"timestamp": "2025-08-26T03:55:23.181071Z",
"version": "2.0.3"
},
"type": "ssvc"
}
},
{
"other": {
"content": {
"dateAdded": "2025-08-25",
"reference": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2025-48384"
},
"type": "kev"
}
}
],
"providerMetadata": {
"dateUpdated": "2025-10-21T22:45:22.728Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"references": [
{
"tags": [
"government-resource"
],
"url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2025-48384"
}
],
"timeline": [
{
"lang": "en",
"time": "2025-08-25T00:00:00+00:00",
"value": "CVE-2025-48384 added to CISA KEV"
}
],
"title": "CISA ADP Vulnrichment"
},
{
"providerMetadata": {
"dateUpdated": "2025-11-04T21:11:00.255Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"url": "https://lists.debian.org/debian-lts-announce/2025/10/msg00003.html"
},
{
"url": "http://seclists.org/fulldisclosure/2025/Sep/60"
},
{
"url": "http://www.openwall.com/lists/oss-security/2025/07/08/4"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "git",
"vendor": "git",
"versions": [
{
"status": "affected",
"version": "\u003c 2.43.7"
},
{
"status": "affected",
"version": "\u003e= 2.44.0-rc0, \u003c 2.44.4"
},
{
"status": "affected",
"version": "\u003e= 2.45.0-rc0, \u003c 2.45.4"
},
{
"status": "affected",
"version": "\u003e= 2.46.0-rc0, \u003c 2.46.4"
},
{
"status": "affected",
"version": "\u003e= 2.47.0-rc0, \u003c 2.47.3"
},
{
"status": "affected",
"version": "\u003e= 2.48.0-rc0, \u003c 2.48.2"
},
{
"status": "affected",
"version": "\u003e= 2.49.0-rc0, \u003c 2.49.1"
},
{
"status": "affected",
"version": "\u003e= 2.50.0-rc0, \u003c 2.50.1"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full access to internals. When reading a config value, Git strips any trailing carriage return and line feed (CRLF). When writing a config entry, values with a trailing CR are not quoted, causing the CR to be lost when the config is later read. When initializing a submodule, if the submodule path contains a trailing CR, the altered path is read resulting in the submodule being checked out to an incorrect location. If a symlink exists that points the altered path to the submodule hooks directory, and the submodule contains an executable post-checkout hook, the script may be unintentionally executed after checkout. This vulnerability is fixed in v2.43.7, v2.44.4, v2.45.4, v2.46.4, v2.47.3, v2.48.2, v2.49.1, and v2.50.1."
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H",
"version": "3.1"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-436",
"description": "CWE-436: Interpretation Conflict",
"lang": "en",
"type": "CWE"
}
]
},
{
"descriptions": [
{
"cweId": "CWE-59",
"description": "CWE-59: Improper Link Resolution Before File Access (\u0027Link Following\u0027)",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2025-07-08T18:23:48.710Z",
"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
"shortName": "GitHub_M"
},
"references": [
{
"name": "https://github.com/git/git/security/advisories/GHSA-vwqx-4fm8-6qc9",
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://github.com/git/git/security/advisories/GHSA-vwqx-4fm8-6qc9"
}
],
"source": {
"advisory": "GHSA-vwqx-4fm8-6qc9",
"discovery": "UNKNOWN"
},
"title": "Git allows arbitrary code execution through broken config quoting"
}
},
"cveMetadata": {
"assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
"assignerShortName": "GitHub_M",
"cveId": "CVE-2025-48384",
"datePublished": "2025-07-08T18:23:48.710Z",
"dateReserved": "2025-05-19T15:46:00.397Z",
"dateUpdated": "2025-11-04T21:11:00.255Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2",
"vulnerability-lookup:meta": {
"cisa_known_exploited": {
"cveID": "CVE-2025-48384",
"cwes": "[\"CWE-59\", \"CWE-436\"]",
"dateAdded": "2025-08-25",
"dueDate": "2025-09-15",
"knownRansomwareCampaignUse": "Unknown",
"notes": "This vulnerability affects a common open-source component, third-party library, or a protocol used by different products. For more information, please see: https://github.com/git/git/security/advisories/GHSA-vwqx-4fm8-6qc9 ; https://access.redhat.com/errata/RHSA-2025:13933 ; https://alas.aws.amazon.com/AL2/ALAS2-2025-2941.html ; https://linux.oracle.com/errata/ELSA-2025-11534.html ; https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-48384 ; https://nvd.nist.gov/vuln/detail/CVE-2025-48384",
"product": "Git",
"requiredAction": "Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.",
"shortDescription": "Git contains a link following vulnerability that stems from Git\u2019s inconsistent handling of carriage return characters in configuration files.",
"vendorProject": "Git",
"vulnerabilityName": "Git Link Following Vulnerability"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2025-48384\",\"sourceIdentifier\":\"security-advisories@github.com\",\"published\":\"2025-07-08T19:15:42.800\",\"lastModified\":\"2025-11-06T14:52:47.590\",\"vulnStatus\":\"Analyzed\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full access to internals. When reading a config value, Git strips any trailing carriage return and line feed (CRLF). When writing a config entry, values with a trailing CR are not quoted, causing the CR to be lost when the config is later read. When initializing a submodule, if the submodule path contains a trailing CR, the altered path is read resulting in the submodule being checked out to an incorrect location. If a symlink exists that points the altered path to the submodule hooks directory, and the submodule contains an executable post-checkout hook, the script may be unintentionally executed after checkout. This vulnerability is fixed in v2.43.7, v2.44.4, v2.45.4, v2.46.4, v2.47.3, v2.48.2, v2.49.1, and v2.50.1.\"},{\"lang\":\"es\",\"value\":\"Git es un sistema de control de versiones distribuido, r\u00e1pido y escalable, con un conjunto de comandos excepcionalmente completo que proporciona operaciones de alto nivel y acceso completo a su funcionamiento interno. Al leer un valor de configuraci\u00f3n, Git elimina cualquier retorno de carro y avance de l\u00ednea (CRLF) final. Al escribir una entrada de configuraci\u00f3n, los valores con un CR final no se entrecomillan, lo que provoca que el CR se pierda al leer la configuraci\u00f3n posteriormente. Al inicializar un subm\u00f3dulo, si la ruta del subm\u00f3dulo contiene un CR final, se lee la ruta modificada, lo que provoca que el subm\u00f3dulo se extraiga a una ubicaci\u00f3n incorrecta. Si existe un enlace simb\u00f3lico que apunta la ruta modificada al directorio de ganchos del subm\u00f3dulo, y este contiene un gancho ejecutable posterior a la extracci\u00f3n, el script podr\u00eda ejecutarse accidentalmente despu\u00e9s de la extracci\u00f3n. Esta vulnerabilidad se ha corregido en v2.43.7, v2.44.4, v2.45.4, v2.46.4, v2.47.3, v2.48.2, v2.49.1 y v2.50.1.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"security-advisories@github.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H\",\"baseScore\":8.0,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"HIGH\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"REQUIRED\",\"scope\":\"CHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.3,\"impactScore\":6.0}]},\"cisaExploitAdd\":\"2025-08-25\",\"cisaActionDue\":\"2025-09-15\",\"cisaRequiredAction\":\"Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.\",\"cisaVulnerabilityName\":\"Git Link Following Vulnerability\",\"weaknesses\":[{\"source\":\"security-advisories@github.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-59\"},{\"lang\":\"en\",\"value\":\"CWE-436\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:git-scm:git:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"2.43.7\",\"matchCriteriaId\":\"BB276680-D286-4DF6-BCB7-CAC1D9D77E08\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:git-scm:git:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"2.44.0\",\"versionEndExcluding\":\"2.44.4\",\"matchCriteriaId\":\"856A8970-74E2-4F8F-A1A6-2AB1C0C87E45\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:git-scm:git:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"2.45.0\",\"versionEndExcluding\":\"2.45.4\",\"matchCriteriaId\":\"6D1DB9BA-3D91-4F7D-931E-A664737129F0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:git-scm:git:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"2.46.0\",\"versionEndExcluding\":\"2.46.4\",\"matchCriteriaId\":\"01BDA55C-F398-4286-ABC6-979A783BDC65\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:git-scm:git:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"2.47.0\",\"versionEndExcluding\":\"2.47.3\",\"matchCriteriaId\":\"FF4A2ACC-0996-4869-884D-734D6006C032\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:git-scm:git:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"2.48.0\",\"versionEndExcluding\":\"2.48.2\",\"matchCriteriaId\":\"0DD21A83-8D62-4EE4-914B-B5ACA19A84A2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:git-scm:git:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"2.49.0\",\"versionEndExcluding\":\"2.49.1\",\"matchCriteriaId\":\"95C1825C-B7A2-46E9-93D7-2D196DB2515E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:git-scm:git:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"2.50.0\",\"versionEndExcluding\":\"2.50.1\",\"matchCriteriaId\":\"18F948AD-22C0-4B2E-B497-899F3A94B70A\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FA6FEEC2-9F11-4643-8827-749718254FED\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apple:xcode:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"26.0\",\"matchCriteriaId\":\"37CC7F40-CC3A-4AEB-9260-B621FE64735A\"}]}]}],\"references\":[{\"url\":\"https://github.com/git/git/security/advisories/GHSA-vwqx-4fm8-6qc9\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://seclists.org/fulldisclosure/2025/Sep/60\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2025/07/08/4\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2025/10/msg00003.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2025-48384\",\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"tags\":[\"US Government Resource\"]}]}}",
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"https://lists.debian.org/debian-lts-announce/2025/10/msg00003.html\"}, {\"url\": \"http://seclists.org/fulldisclosure/2025/Sep/60\"}, {\"url\": \"http://www.openwall.com/lists/oss-security/2025/07/08/4\"}], \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2025-11-04T21:11:00.255Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2025-48384\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"active\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"total\"}], \"version\": \"2.0.3\", \"timestamp\": \"2025-08-26T03:55:23.181071Z\"}}}, {\"other\": {\"type\": \"kev\", \"content\": {\"dateAdded\": \"2025-08-25\", \"reference\": \"https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2025-48384\"}}}], \"timeline\": [{\"lang\": \"en\", \"time\": \"2025-08-25T00:00:00+00:00\", \"value\": \"CVE-2025-48384 added to CISA KEV\"}], \"references\": [{\"url\": \"https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2025-48384\", \"tags\": [\"government-resource\"]}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2025-07-08T18:35:20.601Z\"}}], \"cna\": {\"title\": \"Git allows arbitrary code execution through broken config quoting\", \"source\": {\"advisory\": \"GHSA-vwqx-4fm8-6qc9\", \"discovery\": \"UNKNOWN\"}, \"metrics\": [{\"cvssV3_1\": {\"scope\": \"CHANGED\", \"version\": \"3.1\", \"baseScore\": 8.1, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H\", \"integrityImpact\": \"HIGH\", \"userInteraction\": \"REQUIRED\", \"attackComplexity\": \"HIGH\", \"availabilityImpact\": \"HIGH\", \"privilegesRequired\": \"LOW\", \"confidentialityImpact\": \"HIGH\"}}], \"affected\": [{\"vendor\": \"git\", \"product\": \"git\", \"versions\": [{\"status\": \"affected\", \"version\": \"\u003c 2.43.7\"}, {\"status\": \"affected\", \"version\": \"\u003e= 2.44.0-rc0, \u003c 2.44.4\"}, {\"status\": \"affected\", \"version\": \"\u003e= 2.45.0-rc0, \u003c 2.45.4\"}, {\"status\": \"affected\", \"version\": \"\u003e= 2.46.0-rc0, \u003c 2.46.4\"}, {\"status\": \"affected\", \"version\": \"\u003e= 2.47.0-rc0, \u003c 2.47.3\"}, {\"status\": \"affected\", \"version\": \"\u003e= 2.48.0-rc0, \u003c 2.48.2\"}, {\"status\": \"affected\", \"version\": \"\u003e= 2.49.0-rc0, \u003c 2.49.1\"}, {\"status\": \"affected\", \"version\": \"\u003e= 2.50.0-rc0, \u003c 2.50.1\"}]}], \"references\": [{\"url\": \"https://github.com/git/git/security/advisories/GHSA-vwqx-4fm8-6qc9\", \"name\": \"https://github.com/git/git/security/advisories/GHSA-vwqx-4fm8-6qc9\", \"tags\": [\"x_refsource_CONFIRM\"]}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full access to internals. When reading a config value, Git strips any trailing carriage return and line feed (CRLF). When writing a config entry, values with a trailing CR are not quoted, causing the CR to be lost when the config is later read. When initializing a submodule, if the submodule path contains a trailing CR, the altered path is read resulting in the submodule being checked out to an incorrect location. If a symlink exists that points the altered path to the submodule hooks directory, and the submodule contains an executable post-checkout hook, the script may be unintentionally executed after checkout. This vulnerability is fixed in v2.43.7, v2.44.4, v2.45.4, v2.46.4, v2.47.3, v2.48.2, v2.49.1, and v2.50.1.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-436\", \"description\": \"CWE-436: Interpretation Conflict\"}]}, {\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-59\", \"description\": \"CWE-59: Improper Link Resolution Before File Access (\u0027Link Following\u0027)\"}]}], \"providerMetadata\": {\"orgId\": \"a0819718-46f1-4df5-94e2-005712e83aaa\", \"shortName\": \"GitHub_M\", \"dateUpdated\": \"2025-07-08T18:23:48.710Z\"}}}",
"cveMetadata": "{\"cveId\": \"CVE-2025-48384\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2025-11-04T21:11:00.255Z\", \"dateReserved\": \"2025-05-19T15:46:00.397Z\", \"assignerOrgId\": \"a0819718-46f1-4df5-94e2-005712e83aaa\", \"datePublished\": \"2025-07-08T18:23:48.710Z\", \"assignerShortName\": \"GitHub_M\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
}
}
wid-sec-w-2025-1905
Vulnerability from csaf_certbund
Published
2025-08-25 22:00
Modified
2025-08-27 22:00
Summary
IBM QRadar SIEM Komponente: Mehrere Schwachstellen
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung
IBM QRadar Security Information and Event Management (SIEM) bietet Unterstützung bei der Erkennung und Priorisierung von Sicherheitsbedrohungen im Unternehmen.
Angriff
Ein Angreifer kann mehrere Schwachstellen in IBM QRadar SIEM Komponenten ausnutzen, um Daten zu manipulieren, um einen Denial of Service Angriff durchzuführen, um beliebigen Programmcode auszuführen, um Sicherheitsvorkehrungen zu umgehen, und um Informationen offenzulegen.
Betroffene Betriebssysteme
- Linux
- UNIX
{
"document": {
"aggregate_severity": {
"text": "hoch"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "IBM QRadar Security Information and Event Management (SIEM) bietet Unterst\u00fctzung bei der Erkennung und Priorisierung von Sicherheitsbedrohungen im Unternehmen.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein Angreifer kann mehrere Schwachstellen in IBM QRadar SIEM Komponenten ausnutzen, um Daten zu manipulieren, um einen Denial of Service Angriff durchzuf\u00fchren, um beliebigen Programmcode auszuf\u00fchren, um Sicherheitsvorkehrungen zu umgehen, und um Informationen offenzulegen.",
"title": "Angriff"
},
{
"category": "general",
"text": "- Linux\n- UNIX",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2025-1905 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2025/wid-sec-w-2025-1905.json"
},
{
"category": "self",
"summary": "WID-SEC-2025-1905 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-1905"
},
{
"category": "external",
"summary": "IBM Security Bulletin 7243011 vom 2025-08-25",
"url": "https://www.ibm.com/support/pages/node/7243011"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:14746 vom 2025-08-27",
"url": "https://access.redhat.com/errata/RHSA-2025:14746"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:14748 vom 2025-08-27",
"url": "https://access.redhat.com/errata/RHSA-2025:14748"
}
],
"source_lang": "en-US",
"title": "IBM QRadar SIEM Komponente: Mehrere Schwachstellen",
"tracking": {
"current_release_date": "2025-08-27T22:00:00.000+00:00",
"generator": {
"date": "2025-08-28T05:52:03.530+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.4.0"
}
},
"id": "WID-SEC-W-2025-1905",
"initial_release_date": "2025-08-25T22:00:00.000+00:00",
"revision_history": [
{
"date": "2025-08-25T22:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
},
{
"date": "2025-08-27T22:00:00.000+00:00",
"number": "2",
"summary": "Neue Updates von Red Hat aufgenommen"
}
],
"status": "final",
"version": "2"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c7.5.0 UP13 IF01",
"product": {
"name": "IBM QRadar SIEM \u003c7.5.0 UP13 IF01",
"product_id": "T046492"
}
},
{
"category": "product_version",
"name": "7.5.0 UP13 IF01",
"product": {
"name": "IBM QRadar SIEM 7.5.0 UP13 IF01",
"product_id": "T046492-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:qradar_siem:7.5.0_up13_if01"
}
}
}
],
"category": "product_name",
"name": "QRadar SIEM"
}
],
"category": "vendor",
"name": "IBM"
},
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux",
"product": {
"name": "Red Hat Enterprise Linux",
"product_id": "67646",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:-"
}
}
}
],
"category": "vendor",
"name": "Red Hat"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2019-17543",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2019-17543"
},
{
"cve": "CVE-2019-5427",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2019-5427"
},
{
"cve": "CVE-2020-5260",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2020-5260"
},
{
"cve": "CVE-2022-49058",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2022-49058"
},
{
"cve": "CVE-2022-49111",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2022-49111"
},
{
"cve": "CVE-2022-49136",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2022-49136"
},
{
"cve": "CVE-2022-49788",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2022-49788"
},
{
"cve": "CVE-2022-49846",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2022-49846"
},
{
"cve": "CVE-2022-49977",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2022-49977"
},
{
"cve": "CVE-2022-50020",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2022-50020"
},
{
"cve": "CVE-2024-23337",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2024-23337"
},
{
"cve": "CVE-2024-28956",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2024-28956"
},
{
"cve": "CVE-2024-34397",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2024-34397"
},
{
"cve": "CVE-2024-43420",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2024-43420"
},
{
"cve": "CVE-2024-45332",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2024-45332"
},
{
"cve": "CVE-2024-50154",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2024-50154"
},
{
"cve": "CVE-2024-50349",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2024-50349"
},
{
"cve": "CVE-2024-52006",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2024-52006"
},
{
"cve": "CVE-2024-52533",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2024-52533"
},
{
"cve": "CVE-2024-53920",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2024-53920"
},
{
"cve": "CVE-2024-54661",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2024-54661"
},
{
"cve": "CVE-2024-57980",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2024-57980"
},
{
"cve": "CVE-2024-58002",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2024-58002"
},
{
"cve": "CVE-2024-6531",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2024-6531"
},
{
"cve": "CVE-2025-20012",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-20012"
},
{
"cve": "CVE-2025-20623",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-20623"
},
{
"cve": "CVE-2025-21905",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-21905"
},
{
"cve": "CVE-2025-21919",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-21919"
},
{
"cve": "CVE-2025-21928",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-21928"
},
{
"cve": "CVE-2025-21991",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-21991"
},
{
"cve": "CVE-2025-22004",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-22004"
},
{
"cve": "CVE-2025-22020",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-22020"
},
{
"cve": "CVE-2025-23150",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-23150"
},
{
"cve": "CVE-2025-24495",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-24495"
},
{
"cve": "CVE-2025-27613",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-27613"
},
{
"cve": "CVE-2025-27614",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-27614"
},
{
"cve": "CVE-2025-32415",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-32415"
},
{
"cve": "CVE-2025-37738",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-37738"
},
{
"cve": "CVE-2025-37890",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-37890"
},
{
"cve": "CVE-2025-38052",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-38052"
},
{
"cve": "CVE-2025-38079",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-38079"
},
{
"cve": "CVE-2025-38086",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-38086"
},
{
"cve": "CVE-2025-4373",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-4373"
},
{
"cve": "CVE-2025-46835",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-46835"
},
{
"cve": "CVE-2025-47273",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-47273"
},
{
"cve": "CVE-2025-48060",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-48060"
},
{
"cve": "CVE-2025-48384",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-48384"
},
{
"cve": "CVE-2025-48385",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-48385"
},
{
"cve": "CVE-2025-49794",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-49794"
},
{
"cve": "CVE-2025-49796",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-49796"
},
{
"cve": "CVE-2025-52434",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-52434"
},
{
"cve": "CVE-2025-52520",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-52520"
},
{
"cve": "CVE-2025-53506",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-53506"
},
{
"cve": "CVE-2025-55668",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-55668"
},
{
"cve": "CVE-2025-6021",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-6021"
},
{
"cve": "CVE-2025-6965",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-6965"
},
{
"cve": "CVE-2025-7425",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-7425"
}
]
}
wid-sec-w-2025-1485
Vulnerability from csaf_certbund
Published
2025-07-08 22:00
Modified
2025-09-17 22:00
Summary
Microsoft Developer Tools und git: Mehrere Schwachstellen
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung
Microsoft Visual Studio ist eine integrierte Entwicklungsumgebung für Hochsprachen.
Visual Studio Code ist ein Quelltext-Editor von Microsoft.
Git ist eine freie Software zur verteilten Versionsverwaltung von Dateien.
Angriff
Ein Angreifer kann mehrere Schwachstellen in Microsoft Visual Studio, Microsoft Visual Studio Code und git ausnutzen, um Administratorrechte zu erlangen, beliebigen Code auszuführen, Daten zu manipulieren, einen Denial-of-Service-Zustand zu erzeugen und andere nicht spezifizierte Auswirkungen zu verursachen.
Betroffene Betriebssysteme
- Linux
- MacOS X
- UNIX
- Windows
{
"document": {
"aggregate_severity": {
"text": "hoch"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "Microsoft Visual Studio ist eine integrierte Entwicklungsumgebung f\u00fcr Hochsprachen.\r\nVisual Studio Code ist ein Quelltext-Editor von Microsoft.\r\nGit ist eine freie Software zur verteilten Versionsverwaltung von Dateien.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein Angreifer kann mehrere Schwachstellen in Microsoft Visual Studio, Microsoft Visual Studio Code und git ausnutzen, um Administratorrechte zu erlangen, beliebigen Code auszuf\u00fchren, Daten zu manipulieren, einen Denial-of-Service-Zustand zu erzeugen und andere nicht spezifizierte Auswirkungen zu verursachen.",
"title": "Angriff"
},
{
"category": "general",
"text": "- Linux\n- MacOS X\n- UNIX\n- Windows",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2025-1485 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2025/wid-sec-w-2025-1485.json"
},
{
"category": "self",
"summary": "WID-SEC-2025-1485 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-1485"
},
{
"category": "external",
"summary": "Microsoft Leitfaden f\u00fcr Sicherheitsupdates",
"url": "https://msrc.microsoft.com/update-guide/"
},
{
"category": "external",
"summary": "Mailing List OSS Security vom 2025-07-18",
"url": "https://seclists.org/oss-sec/2025/q3/13"
},
{
"category": "external",
"summary": "Fedora Security Advisory FEDORA-2025-B5FE483928 vom 2025-07-09",
"url": "https://bodhi.fedoraproject.org/updates/FEDORA-2025-b5fe483928"
},
{
"category": "external",
"summary": "Fedora Security Advisory FEDORA-2025-0B7E43532E vom 2025-07-09",
"url": "https://bodhi.fedoraproject.org/updates/FEDORA-2025-0b7e43532e"
},
{
"category": "external",
"summary": "Gentoo Linux Security Advisory GLSA-202507-09 vom 2025-07-09",
"url": "https://security.gentoo.org/glsa/202507-09"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-7626-1 vom 2025-07-08",
"url": "https://ubuntu.com/security/notices/USN-7626-1"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-7626-2 vom 2025-07-09",
"url": "https://ubuntu.com/security/notices/USN-7626-2"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-7626-3 vom 2025-07-11",
"url": "https://ubuntu.com/security/notices/USN-7626-3"
},
{
"category": "external",
"summary": "openSUSE Security Update OPENSUSE-SU-2025:15337-1 vom 2025-07-12",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/PEXXCKK2SHLP467JELDLXOF647W7254W/"
},
{
"category": "external",
"summary": "PoC von Datadog vom 2025-07-14",
"url": "https://securitylabs.datadoghq.com/articles/git-arbitrary-file-write/"
},
{
"category": "external",
"summary": "cPanel \u0026 WHM Change Log vom 2025-07-14",
"url": "https://docs.cpanel.net/changelogs/130-change-log/"
},
{
"category": "external",
"summary": "Gitea Release Notes vom 2025-07-16",
"url": "https://blog.gitea.com/release-of-1.24.3"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2025-11462 vom 2025-07-22",
"url": "https://linux.oracle.com/errata/ELSA-2025-11462.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:11462 vom 2025-07-21",
"url": "https://access.redhat.com/errata/RHSA-2025:11462"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2025-11534 vom 2025-07-23",
"url": "https://linux.oracle.com/errata/ELSA-2025-11534.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:11533 vom 2025-07-22",
"url": "https://access.redhat.com/errata/RHSA-2025:11533"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:11534 vom 2025-07-22",
"url": "https://access.redhat.com/errata/RHSA-2025:11534"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2025-11533 vom 2025-07-23",
"url": "https://linux.oracle.com/errata/ELSA-2025-11533.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:11688 vom 2025-07-24",
"url": "https://access.redhat.com/errata/RHSA-2025:11688"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:11686 vom 2025-07-24",
"url": "https://access.redhat.com/errata/RHSA-2025:11686"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:11793 vom 2025-07-25",
"url": "https://access.redhat.com/errata/RHSA-2025:11793"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:11801 vom 2025-07-28",
"url": "https://access.redhat.com/errata/RHSA-2025:11801"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:11800 vom 2025-07-28",
"url": "https://access.redhat.com/errata/RHSA-2025:11800"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:11794 vom 2025-07-28",
"url": "https://access.redhat.com/errata/RHSA-2025:11794"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:11796 vom 2025-07-28",
"url": "https://access.redhat.com/errata/RHSA-2025:11796"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:11795 vom 2025-07-28",
"url": "https://access.redhat.com/errata/RHSA-2025:11795"
},
{
"category": "external",
"summary": "Amazon Linux Security Advisory ALAS2-2025-2941 vom 2025-07-30",
"url": "https://alas.aws.amazon.com/AL2/ALAS2-2025-2941.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:13276 vom 2025-08-07",
"url": "https://access.redhat.com/errata/RHSA-2025:13276"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:13325 vom 2025-08-13",
"url": "https://access.redhat.com/errata/RHSA-2025:13325"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2025-11688 vom 2025-08-14",
"url": "https://linux.oracle.com/errata/ELSA-2025-11688.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:13933 vom 2025-08-20",
"url": "https://access.redhat.com/errata/RHSA-2025:13933"
},
{
"category": "external",
"summary": "CISA KEV Catalog vom 2025-08-26",
"url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:14396 vom 2025-08-28",
"url": "https://access.redhat.com/errata/RHSA-2025:14396"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:14059 vom 2025-08-28",
"url": "https://access.redhat.com/errata/RHSA-2025:14059"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:03012-1 vom 2025-08-29",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-August/022328.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:03022-1 vom 2025-08-29",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-August/022330.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:03037-1 vom 2025-09-01",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/ND5DRF6G47U5LGV54CLRCRAWDF7ADJUG/"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:14853 vom 2025-09-04",
"url": "https://access.redhat.com/errata/RHSA-2025:14853"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:14858 vom 2025-09-04",
"url": "https://access.redhat.com/errata/RHSA-2025:14858"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:15308 vom 2025-09-11",
"url": "https://access.redhat.com/errata/RHSA-2025:15308"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:15828 vom 2025-09-15",
"url": "https://access.redhat.com/errata/RHSA-2025:15828"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:15827 vom 2025-09-15",
"url": "https://access.redhat.com/errata/RHSA-2025:15827"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:15672 vom 2025-09-18",
"url": "https://access.redhat.com/errata/RHSA-2025:15672"
}
],
"source_lang": "en-US",
"title": "Microsoft Developer Tools und git: Mehrere Schwachstellen",
"tracking": {
"current_release_date": "2025-09-17T22:00:00.000+00:00",
"generator": {
"date": "2025-09-18T07:06:20.421+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.4.0"
}
},
"id": "WID-SEC-W-2025-1485",
"initial_release_date": "2025-07-08T22:00:00.000+00:00",
"revision_history": [
{
"date": "2025-07-08T22:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
},
{
"date": "2025-07-09T22:00:00.000+00:00",
"number": "2",
"summary": "Neue Updates von Ubuntu aufgenommen"
},
{
"date": "2025-07-10T22:00:00.000+00:00",
"number": "3",
"summary": "Neue Updates von European Union Vulnerability Database und Ubuntu aufgenommen"
},
{
"date": "2025-07-13T22:00:00.000+00:00",
"number": "4",
"summary": "Neue Updates von openSUSE aufgenommen"
},
{
"date": "2025-07-14T22:00:00.000+00:00",
"number": "5",
"summary": "PoC aufgenommen"
},
{
"date": "2025-07-16T22:00:00.000+00:00",
"number": "6",
"summary": "Neue Updates aufgenommen"
},
{
"date": "2025-07-21T22:00:00.000+00:00",
"number": "7",
"summary": "Neue Updates von Oracle Linux aufgenommen"
},
{
"date": "2025-07-22T22:00:00.000+00:00",
"number": "8",
"summary": "Neue Updates von Oracle Linux und Red Hat aufgenommen"
},
{
"date": "2025-07-23T22:00:00.000+00:00",
"number": "9",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2025-07-24T22:00:00.000+00:00",
"number": "10",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2025-07-27T22:00:00.000+00:00",
"number": "11",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2025-07-30T22:00:00.000+00:00",
"number": "12",
"summary": "Neue Updates von Amazon aufgenommen"
},
{
"date": "2025-08-06T22:00:00.000+00:00",
"number": "13",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2025-08-12T22:00:00.000+00:00",
"number": "14",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2025-08-13T22:00:00.000+00:00",
"number": "15",
"summary": "Neue Updates von Oracle Linux aufgenommen"
},
{
"date": "2025-08-19T22:00:00.000+00:00",
"number": "16",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2025-08-25T22:00:00.000+00:00",
"number": "17",
"summary": "Exploit aufgenommen"
},
{
"date": "2025-08-27T22:00:00.000+00:00",
"number": "18",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2025-08-28T22:00:00.000+00:00",
"number": "19",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2025-08-31T22:00:00.000+00:00",
"number": "20",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2025-09-01T22:00:00.000+00:00",
"number": "21",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2025-09-04T22:00:00.000+00:00",
"number": "22",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2025-09-11T22:00:00.000+00:00",
"number": "23",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2025-09-15T22:00:00.000+00:00",
"number": "24",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2025-09-17T22:00:00.000+00:00",
"number": "25",
"summary": "Neue Updates von Red Hat aufgenommen"
}
],
"status": "final",
"version": "25"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Amazon Linux 2",
"product": {
"name": "Amazon Linux 2",
"product_id": "398363",
"product_identification_helper": {
"cpe": "cpe:/o:amazon:linux_2:-"
}
}
}
],
"category": "vendor",
"name": "Amazon"
},
{
"branches": [
{
"category": "product_name",
"name": "Fedora Linux",
"product": {
"name": "Fedora Linux",
"product_id": "74185",
"product_identification_helper": {
"cpe": "cpe:/o:fedoraproject:fedora:-"
}
}
}
],
"category": "vendor",
"name": "Fedora"
},
{
"branches": [
{
"category": "product_name",
"name": "Gentoo Linux",
"product": {
"name": "Gentoo Linux",
"product_id": "T012167",
"product_identification_helper": {
"cpe": "cpe:/o:gentoo:linux:-"
}
}
}
],
"category": "vendor",
"name": "Gentoo"
},
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "Update 3",
"product": {
"name": "Microsoft Visual Studio 2015 Update 3",
"product_id": "T045168",
"product_identification_helper": {
"cpe": "cpe:/a:microsoft:visual_studio_2015:update_3"
}
}
}
],
"category": "product_name",
"name": "Visual Studio 2015"
},
{
"branches": [
{
"category": "product_version_range",
"name": "version 15.9 (includes 15.0-15.8)",
"product": {
"name": "Microsoft Visual Studio 2017 version 15.9 (includes 15.0-15.8)",
"product_id": "T045169"
}
}
],
"category": "product_name",
"name": "Visual Studio 2017"
},
{
"branches": [
{
"category": "product_version_range",
"name": "version 16.11 (includes 16.0-16.10)",
"product": {
"name": "Microsoft Visual Studio 2019 version 16.11 (includes 16.0-16.10)",
"product_id": "T045171"
}
}
],
"category": "product_name",
"name": "Visual Studio 2019"
},
{
"branches": [
{
"category": "product_version_range",
"name": "version 17.8",
"product": {
"name": "Microsoft Visual Studio 2022 version 17.8",
"product_id": "T045172"
}
},
{
"category": "product_version_range",
"name": "version 17.10",
"product": {
"name": "Microsoft Visual Studio 2022 version 17.10",
"product_id": "T045173"
}
},
{
"category": "product_version_range",
"name": "version 17.12",
"product": {
"name": "Microsoft Visual Studio 2022 version 17.12",
"product_id": "T045174"
}
},
{
"category": "product_version_range",
"name": "version 17.14",
"product": {
"name": "Microsoft Visual Studio 2022 version 17.14",
"product_id": "T045175"
}
}
],
"category": "product_name",
"name": "Visual Studio 2022"
},
{
"branches": [
{
"category": "product_version",
"name": "Python extension for Visual Studio Code",
"product": {
"name": "Microsoft Visual Studio Code Python extension for Visual Studio Code",
"product_id": "T045170",
"product_identification_helper": {
"cpe": "cpe:/a:microsoft:visual_studio_code:python_extension_for_visual_studio_code"
}
}
}
],
"category": "product_name",
"name": "Visual Studio Code"
}
],
"category": "vendor",
"name": "Microsoft"
},
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c1.24.3",
"product": {
"name": "Open Source Gitea \u003c1.24.3",
"product_id": "T045470"
}
},
{
"category": "product_version",
"name": "1.24.3",
"product": {
"name": "Open Source Gitea 1.24.3",
"product_id": "T045470-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:gitea:gitea:1.24.3"
}
}
}
],
"category": "product_name",
"name": "Gitea"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c2.43.7",
"product": {
"name": "Open Source git \u003c2.43.7",
"product_id": "T045193"
}
},
{
"category": "product_version",
"name": "2.43.7",
"product": {
"name": "Open Source git 2.43.7",
"product_id": "T045193-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:open_source:git:2.43.7"
}
}
},
{
"category": "product_version_range",
"name": "\u003c2.44.4",
"product": {
"name": "Open Source git \u003c2.44.4",
"product_id": "T045194"
}
},
{
"category": "product_version",
"name": "2.44.4",
"product": {
"name": "Open Source git 2.44.4",
"product_id": "T045194-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:open_source:git:2.44.4"
}
}
},
{
"category": "product_version_range",
"name": "\u003c2.45.4",
"product": {
"name": "Open Source git \u003c2.45.4",
"product_id": "T045195"
}
},
{
"category": "product_version",
"name": "2.45.4",
"product": {
"name": "Open Source git 2.45.4",
"product_id": "T045195-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:open_source:git:2.45.4"
}
}
},
{
"category": "product_version_range",
"name": "\u003c2.46.4",
"product": {
"name": "Open Source git \u003c2.46.4",
"product_id": "T045196"
}
},
{
"category": "product_version",
"name": "2.46.4",
"product": {
"name": "Open Source git 2.46.4",
"product_id": "T045196-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:open_source:git:2.46.4"
}
}
},
{
"category": "product_version_range",
"name": "\u003c2.47.3",
"product": {
"name": "Open Source git \u003c2.47.3",
"product_id": "T045197"
}
},
{
"category": "product_version",
"name": "2.47.3",
"product": {
"name": "Open Source git 2.47.3",
"product_id": "T045197-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:open_source:git:2.47.3"
}
}
},
{
"category": "product_version_range",
"name": "\u003c2.48.2",
"product": {
"name": "Open Source git \u003c2.48.2",
"product_id": "T045198"
}
},
{
"category": "product_version",
"name": "2.48.2",
"product": {
"name": "Open Source git 2.48.2",
"product_id": "T045198-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:open_source:git:2.48.2"
}
}
},
{
"category": "product_version_range",
"name": "\u003c2.49.1",
"product": {
"name": "Open Source git \u003c2.49.1",
"product_id": "T045199"
}
},
{
"category": "product_version",
"name": "2.49.1",
"product": {
"name": "Open Source git 2.49.1",
"product_id": "T045199-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:open_source:git:2.49.1"
}
}
}
],
"category": "product_name",
"name": "git"
}
],
"category": "vendor",
"name": "Open Source"
},
{
"branches": [
{
"category": "product_name",
"name": "Oracle Linux",
"product": {
"name": "Oracle Linux",
"product_id": "T004914",
"product_identification_helper": {
"cpe": "cpe:/o:oracle:linux:-"
}
}
}
],
"category": "vendor",
"name": "Oracle"
},
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux",
"product": {
"name": "Red Hat Enterprise Linux",
"product_id": "67646",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:-"
}
}
},
{
"branches": [
{
"category": "product_version",
"name": "Container Platform",
"product": {
"name": "Red Hat OpenShift Container Platform",
"product_id": "T040130",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:container_platform"
}
}
},
{
"category": "product_version_range",
"name": "Container Platform \u003c4.18.22",
"product": {
"name": "Red Hat OpenShift Container Platform \u003c4.18.22",
"product_id": "T046065"
}
},
{
"category": "product_version",
"name": "Container Platform 4.18.22",
"product": {
"name": "Red Hat OpenShift Container Platform 4.18.22",
"product_id": "T046065-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:container_platform__4.18.22"
}
}
},
{
"category": "product_version_range",
"name": "Container Platform \u003c4.15.57",
"product": {
"name": "Red Hat OpenShift Container Platform \u003c4.15.57",
"product_id": "T046523"
}
},
{
"category": "product_version",
"name": "Container Platform 4.15.57",
"product": {
"name": "Red Hat OpenShift Container Platform 4.15.57",
"product_id": "T046523-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:container_platform__4.15.57"
}
}
},
{
"category": "product_version_range",
"name": "Container Platform \u003c4.17.38",
"product": {
"name": "Red Hat OpenShift Container Platform \u003c4.17.38",
"product_id": "T046524"
}
},
{
"category": "product_version",
"name": "Container Platform 4.17.38",
"product": {
"name": "Red Hat OpenShift Container Platform 4.17.38",
"product_id": "T046524-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:container_platform__4.17.38"
}
}
},
{
"category": "product_version_range",
"name": "Container Platform \u003c4.12.80",
"product": {
"name": "Red Hat OpenShift Container Platform \u003c4.12.80",
"product_id": "T046943"
}
},
{
"category": "product_version",
"name": "Container Platform 4.12.80",
"product": {
"name": "Red Hat OpenShift Container Platform 4.12.80",
"product_id": "T046943-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:container_platform__4.12.80"
}
}
}
],
"category": "product_name",
"name": "OpenShift"
}
],
"category": "vendor",
"name": "Red Hat"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux",
"product": {
"name": "SUSE Linux",
"product_id": "T002207",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse_linux:-"
}
}
},
{
"category": "product_name",
"name": "SUSE openSUSE",
"product": {
"name": "SUSE openSUSE",
"product_id": "T027843",
"product_identification_helper": {
"cpe": "cpe:/o:suse:opensuse:-"
}
}
}
],
"category": "vendor",
"name": "SUSE"
},
{
"branches": [
{
"category": "product_name",
"name": "Ubuntu Linux",
"product": {
"name": "Ubuntu Linux",
"product_id": "T000126",
"product_identification_helper": {
"cpe": "cpe:/o:canonical:ubuntu_linux:-"
}
}
}
],
"category": "vendor",
"name": "Ubuntu"
},
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c130.0.2",
"product": {
"name": "cPanel cPanel/WHM \u003c130.0.2",
"product_id": "T045349"
}
},
{
"category": "product_version",
"name": "130.0.2",
"product": {
"name": "cPanel cPanel/WHM 130.0.2",
"product_id": "T045349-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:cpanel:cpanel_whm:130.0.2"
}
}
}
],
"category": "product_name",
"name": "cPanel/WHM"
}
],
"category": "vendor",
"name": "cPanel"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-27613",
"product_status": {
"known_affected": [
"67646",
"T004914",
"T040130",
"T045349",
"398363",
"T045169",
"T045168",
"T045170",
"T045172",
"T045194",
"T045171",
"T045193",
"T012167",
"74185",
"T046943",
"T046523",
"T046524",
"T002207",
"T000126",
"T027843",
"T045174",
"T045196",
"T045173",
"T045195",
"T045470",
"T045198",
"T045175",
"T045197",
"T046065",
"T045199"
]
},
"release_date": "2025-07-08T22:00:00.000+00:00",
"title": "CVE-2025-27613"
},
{
"cve": "CVE-2025-27614",
"product_status": {
"known_affected": [
"67646",
"T004914",
"T040130",
"T045349",
"398363",
"T045169",
"T045168",
"T045170",
"T045172",
"T045194",
"T045171",
"T045193",
"T012167",
"74185",
"T046943",
"T046523",
"T046524",
"T002207",
"T000126",
"T027843",
"T045174",
"T045196",
"T045173",
"T045195",
"T045470",
"T045198",
"T045175",
"T045197",
"T046065",
"T045199"
]
},
"release_date": "2025-07-08T22:00:00.000+00:00",
"title": "CVE-2025-27614"
},
{
"cve": "CVE-2025-46334",
"product_status": {
"known_affected": [
"67646",
"T004914",
"T040130",
"T045349",
"398363",
"T045169",
"T045168",
"T045170",
"T045172",
"T045194",
"T045171",
"T045193",
"T012167",
"74185",
"T046943",
"T046523",
"T046524",
"T002207",
"T000126",
"T027843",
"T045174",
"T045196",
"T045173",
"T045195",
"T045470",
"T045198",
"T045175",
"T045197",
"T046065",
"T045199"
]
},
"release_date": "2025-07-08T22:00:00.000+00:00",
"title": "CVE-2025-46334"
},
{
"cve": "CVE-2025-46835",
"product_status": {
"known_affected": [
"67646",
"T004914",
"T040130",
"T045349",
"398363",
"T045169",
"T045168",
"T045170",
"T045172",
"T045194",
"T045171",
"T045193",
"T012167",
"74185",
"T046943",
"T046523",
"T046524",
"T002207",
"T000126",
"T027843",
"T045174",
"T045196",
"T045173",
"T045195",
"T045470",
"T045198",
"T045175",
"T045197",
"T046065",
"T045199"
]
},
"release_date": "2025-07-08T22:00:00.000+00:00",
"title": "CVE-2025-46835"
},
{
"cve": "CVE-2025-48384",
"product_status": {
"known_affected": [
"67646",
"T004914",
"T040130",
"T045349",
"398363",
"T045169",
"T045168",
"T045170",
"T045172",
"T045194",
"T045171",
"T045193",
"T012167",
"74185",
"T046943",
"T046523",
"T046524",
"T002207",
"T000126",
"T027843",
"T045174",
"T045196",
"T045173",
"T045195",
"T045470",
"T045198",
"T045175",
"T045197",
"T046065",
"T045199"
]
},
"release_date": "2025-07-08T22:00:00.000+00:00",
"title": "CVE-2025-48384"
},
{
"cve": "CVE-2025-48385",
"product_status": {
"known_affected": [
"67646",
"T004914",
"T040130",
"T045349",
"398363",
"T045169",
"T045168",
"T045170",
"T045172",
"T045194",
"T045171",
"T045193",
"T012167",
"74185",
"T046943",
"T046523",
"T046524",
"T002207",
"T000126",
"T027843",
"T045174",
"T045196",
"T045173",
"T045195",
"T045470",
"T045198",
"T045175",
"T045197",
"T046065",
"T045199"
]
},
"release_date": "2025-07-08T22:00:00.000+00:00",
"title": "CVE-2025-48385"
},
{
"cve": "CVE-2025-48386",
"product_status": {
"known_affected": [
"67646",
"T004914",
"T040130",
"T045349",
"398363",
"T045169",
"T045168",
"T045170",
"T045172",
"T045194",
"T045171",
"T045193",
"T012167",
"74185",
"T046943",
"T046523",
"T046524",
"T002207",
"T000126",
"T027843",
"T045174",
"T045196",
"T045173",
"T045195",
"T045470",
"T045198",
"T045175",
"T045197",
"T046065",
"T045199"
]
},
"release_date": "2025-07-08T22:00:00.000+00:00",
"title": "CVE-2025-48386"
},
{
"cve": "CVE-2025-49714",
"product_status": {
"known_affected": [
"67646",
"T004914",
"T040130",
"T045349",
"398363",
"T045169",
"T045168",
"T045170",
"T045172",
"T045194",
"T045171",
"T045193",
"T012167",
"74185",
"T046943",
"T046523",
"T046524",
"T002207",
"T000126",
"T027843",
"T045174",
"T045196",
"T045173",
"T045195",
"T045470",
"T045198",
"T045175",
"T045197",
"T046065",
"T045199"
]
},
"release_date": "2025-07-08T22:00:00.000+00:00",
"title": "CVE-2025-49714"
},
{
"cve": "CVE-2025-49739",
"product_status": {
"known_affected": [
"67646",
"T004914",
"T040130",
"T045349",
"398363",
"T045169",
"T045168",
"T045170",
"T045172",
"T045194",
"T045171",
"T045193",
"T012167",
"74185",
"T046943",
"T046523",
"T046524",
"T002207",
"T000126",
"T027843",
"T045174",
"T045196",
"T045173",
"T045195",
"T045470",
"T045198",
"T045175",
"T045197",
"T046065",
"T045199"
]
},
"release_date": "2025-07-08T22:00:00.000+00:00",
"title": "CVE-2025-49739"
}
]
}
rhsa-2025:14858
Vulnerability from csaf_redhat
Published
2025-09-04 17:05
Modified
2025-11-12 20:09
Summary
Red Hat Security Advisory: OpenShift Container Platform 4.16.47 bug fix and security update
Notes
Topic
Red Hat OpenShift Container Platform release 4.16.47 is now available with
updates to packages and images that fix several bugs and add enhancements.
This release includes a security update for Red Hat OpenShift Container
Platform 4.16.
Red Hat Product Security has rated this update as having a security impact
of Important. A Common Vulnerability Scoring System (CVSS) base score,
which gives a detailed severity rating, is available for each vulnerability
from the CVE link(s) in the References section.
Details
Red Hat OpenShift Container Platform is Red Hat's cloud computing
Kubernetes application platform solution designed for on-premise or private
cloud deployments.
This advisory contains the container images for Red Hat OpenShift Container
Platform 4.16.47. See the following advisory for the RPM packages for this
release:
https://access.redhat.com/errata/RHBA-2025:14854
Space precludes documenting all of the container images in this advisory.
See the following Release Notes documentation, which will be updated
shortly for this release, for details about these changes:
https://docs.redhat.com/en/documentation/openshift_container_platform/4.16/html/release_notes/
Security Fix(es):
* libxslt: Heap Use-After-Free in libxslt caused by atype corruption in
xmlAttrPtr (CVE-2025-7425)
* git: Git arbitrary code execution (CVE-2025-48384)
* git: Git arbitrary file writes (CVE-2025-48385)
* libxml2: Out-of-Bounds Read in libxml2 (CVE-2025-32414)
* libxml2: Out-of-bounds Read in xmlSchemaIDCFillNodeTables
(CVE-2025-32415)
For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE
page(s) listed in the References section.
All OpenShift Container Platform 4.16 users are advised to upgrade to these
updated packages and images when they are available in the appropriate
release channel. To check for available updates, use the OpenShift CLI (oc)
or web console. Instructions for upgrading a cluster are available at
https://docs.redhat.com/en/documentation/openshift_container_platform/4.16/html-single/updating_clusters/index#updating-cluster-cli.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat OpenShift Container Platform release 4.16.47 is now available with\nupdates to packages and images that fix several bugs and add enhancements.\n\n This release includes a security update for Red Hat OpenShift Container\nPlatform 4.16.\n\nRed Hat Product Security has rated this update as having a security impact\nof Important. A Common Vulnerability Scoring System (CVSS) base score,\nwhich gives a detailed severity rating, is available for each vulnerability\nfrom the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat OpenShift Container Platform is Red Hat\u0027s cloud computing\nKubernetes application platform solution designed for on-premise or private\ncloud deployments.\n\nThis advisory contains the container images for Red Hat OpenShift Container\nPlatform 4.16.47. See the following advisory for the RPM packages for this\nrelease:\n\nhttps://access.redhat.com/errata/RHBA-2025:14854\n\nSpace precludes documenting all of the container images in this advisory.\nSee the following Release Notes documentation, which will be updated\nshortly for this release, for details about these changes:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.16/html/release_notes/\n\nSecurity Fix(es):\n\n* libxslt: Heap Use-After-Free in libxslt caused by atype corruption in\nxmlAttrPtr (CVE-2025-7425)\n* git: Git arbitrary code execution (CVE-2025-48384)\n* git: Git arbitrary file writes (CVE-2025-48385)\n* libxml2: Out-of-Bounds Read in libxml2 (CVE-2025-32414)\n* libxml2: Out-of-bounds Read in xmlSchemaIDCFillNodeTables\n(CVE-2025-32415)\n\nFor more details about the security issue(s), including the impact, a CVSS\nscore, acknowledgments, and other related information, refer to the CVE\npage(s) listed in the References section.\n\nAll OpenShift Container Platform 4.16 users are advised to upgrade to these\nupdated packages and images when they are available in the appropriate\nrelease channel. To check for available updates, use the OpenShift CLI (oc)\nor web console. Instructions for upgrading a cluster are available at\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.16/html-single/updating_clusters/index#updating-cluster-cli.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:14858",
"url": "https://access.redhat.com/errata/RHSA-2025:14858"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2358121",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2358121"
},
{
"category": "external",
"summary": "2360768",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2360768"
},
{
"category": "external",
"summary": "2378806",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2378806"
},
{
"category": "external",
"summary": "2378808",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2378808"
},
{
"category": "external",
"summary": "2379274",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2379274"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_14858.json"
}
],
"title": "Red Hat Security Advisory: OpenShift Container Platform 4.16.47 bug fix and security update",
"tracking": {
"current_release_date": "2025-11-12T20:09:35+00:00",
"generator": {
"date": "2025-11-12T20:09:35+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.12"
}
},
"id": "RHSA-2025:14858",
"initial_release_date": "2025-09-04T17:05:36+00:00",
"revision_history": [
{
"date": "2025-09-04T17:05:36+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-09-04T17:05:36+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-12T20:09:35+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat OpenShift Container Platform 4.16",
"product": {
"name": "Red Hat OpenShift Container Platform 4.16",
"product_id": "9Base-RHOSE-4.16",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:4.16::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift Enterprise"
},
{
"branches": [
{
"category": "product_version",
"name": "rhcos-aarch64-416.94.202508261955-0",
"product": {
"name": "rhcos-aarch64-416.94.202508261955-0",
"product_id": "rhcos-aarch64-416.94.202508261955-0",
"product_identification_helper": {
"purl": "pkg:generic/redhat/rhcos@416.94.202508261955?arch=aarch64"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "rhcos-ppc64le-416.94.202508261955-0",
"product": {
"name": "rhcos-ppc64le-416.94.202508261955-0",
"product_id": "rhcos-ppc64le-416.94.202508261955-0",
"product_identification_helper": {
"purl": "pkg:generic/redhat/rhcos@416.94.202508261955?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "rhcos-s390x-416.94.202508261955-0",
"product": {
"name": "rhcos-s390x-416.94.202508261955-0",
"product_id": "rhcos-s390x-416.94.202508261955-0",
"product_identification_helper": {
"purl": "pkg:generic/redhat/rhcos@416.94.202508261955?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "rhcos-x86_64-416.94.202508261955-0",
"product": {
"name": "rhcos-x86_64-416.94.202508261955-0",
"product_id": "rhcos-x86_64-416.94.202508261955-0",
"product_identification_helper": {
"purl": "pkg:generic/redhat/rhcos@416.94.202508261955?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "rhcos-aarch64-416.94.202508261955-0 as a component of Red Hat OpenShift Container Platform 4.16",
"product_id": "9Base-RHOSE-4.16:rhcos-aarch64-416.94.202508261955-0"
},
"product_reference": "rhcos-aarch64-416.94.202508261955-0",
"relates_to_product_reference": "9Base-RHOSE-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhcos-ppc64le-416.94.202508261955-0 as a component of Red Hat OpenShift Container Platform 4.16",
"product_id": "9Base-RHOSE-4.16:rhcos-ppc64le-416.94.202508261955-0"
},
"product_reference": "rhcos-ppc64le-416.94.202508261955-0",
"relates_to_product_reference": "9Base-RHOSE-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhcos-s390x-416.94.202508261955-0 as a component of Red Hat OpenShift Container Platform 4.16",
"product_id": "9Base-RHOSE-4.16:rhcos-s390x-416.94.202508261955-0"
},
"product_reference": "rhcos-s390x-416.94.202508261955-0",
"relates_to_product_reference": "9Base-RHOSE-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhcos-x86_64-416.94.202508261955-0 as a component of Red Hat OpenShift Container Platform 4.16",
"product_id": "9Base-RHOSE-4.16:rhcos-x86_64-416.94.202508261955-0"
},
"product_reference": "rhcos-x86_64-416.94.202508261955-0",
"relates_to_product_reference": "9Base-RHOSE-4.16"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Sergei Glazunov"
],
"organization": "Google Project Zero"
}
],
"cve": "CVE-2025-7425",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"discovery_date": "2025-07-10T09:37:28.172000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2379274"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in libxslt where the attribute type, atype, flags are modified in a way that corrupts internal memory management. When XSLT functions, such as the key() process, result in tree fragments, this corruption prevents the proper cleanup of ID attributes. As a result, the system may access freed memory, causing crashes or enabling attackers to trigger heap corruption.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "libxslt: Heap Use-After-Free in libxslt caused by atype corruption in xmlAttrPtr",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This heap-use-after-free vulnerability in libxslt is rated Important because it can lead to memory corruption and application crashes. The flaw arises when internal attribute metadata (atype) is modified by libxslt\u0027s xsltSetSourceNodeFlags() function during processing of result tree fragments. If the flag corruption prevents proper removal of ID references, later memory cleanup routines may operate on already-freed memory. Since libxslt is commonly used in server-side XML processing, this could result in denial-of-service or potentially facilitate code execution under certain memory reuse conditions.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHOSE-4.16:rhcos-aarch64-416.94.202508261955-0",
"9Base-RHOSE-4.16:rhcos-ppc64le-416.94.202508261955-0",
"9Base-RHOSE-4.16:rhcos-s390x-416.94.202508261955-0",
"9Base-RHOSE-4.16:rhcos-x86_64-416.94.202508261955-0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-7425"
},
{
"category": "external",
"summary": "RHBZ#2379274",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2379274"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-7425",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-7425"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-7425",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-7425"
},
{
"category": "external",
"summary": "https://gitlab.gnome.org/GNOME/libxslt/-/issues/140",
"url": "https://gitlab.gnome.org/GNOME/libxslt/-/issues/140"
}
],
"release_date": "2025-07-10T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-09-04T17:05:36+00:00",
"details": "For OpenShift Container Platform 4.16 see the following documentation,\nwhich will be updated shortly for this release, for important instructions\non how to upgrade your cluster and fully apply this asynchronous errata\nupdate:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.16/html/release_notes/\n\nYou may download the oc tool and use it to inspect release image metadata\nfor x86_64, s390x, ppc64le, and aarch64 architectures. The image digests\nmay be found at\nhttps://quay.io/repository/openshift-release-dev/ocp-release?tab=tags.\n\nThe sha values for the release are as follows:\n\n (For x86_64 architecture)\n The image digest is sha256:b2d8af25d1a0440fce3e16a7d5481a228c29bdf7510f9c2bbef241e495004992\n\n (For s390x architecture)\n The image digest is sha256:b8fa63beeecb258529d2b8b22fdd90ef4846691c8e41aaff2d02279d72563a25\n\n (For ppc64le architecture)\n The image digest is sha256:6847316b4a13f663f32227107ae23f31a223dcc3b7d1718da837b8a539e97212\n\n (For aarch64 architecture)\n The image digest is sha256:6a66ef4370c883267c500672f7c9b53293a431049fd0ec2496c9ab5ecdcc0ce5\n\nAll OpenShift Container Platform 4.16 users are advised to upgrade to these\nupdated packages and images when they are available in the appropriate\nrelease channel. To check for available updates, use the OpenShift CLI (oc)\nor web console. Instructions for upgrading a cluster are available at\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.16/html-single/updating_clusters/index#updating-cluster-cli.",
"product_ids": [
"9Base-RHOSE-4.16:rhcos-aarch64-416.94.202508261955-0",
"9Base-RHOSE-4.16:rhcos-ppc64le-416.94.202508261955-0",
"9Base-RHOSE-4.16:rhcos-s390x-416.94.202508261955-0",
"9Base-RHOSE-4.16:rhcos-x86_64-416.94.202508261955-0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:14858"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHOSE-4.16:rhcos-aarch64-416.94.202508261955-0",
"9Base-RHOSE-4.16:rhcos-ppc64le-416.94.202508261955-0",
"9Base-RHOSE-4.16:rhcos-s390x-416.94.202508261955-0",
"9Base-RHOSE-4.16:rhcos-x86_64-416.94.202508261955-0"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"9Base-RHOSE-4.16:rhcos-aarch64-416.94.202508261955-0",
"9Base-RHOSE-4.16:rhcos-ppc64le-416.94.202508261955-0",
"9Base-RHOSE-4.16:rhcos-s390x-416.94.202508261955-0",
"9Base-RHOSE-4.16:rhcos-x86_64-416.94.202508261955-0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "libxslt: Heap Use-After-Free in libxslt caused by atype corruption in xmlAttrPtr"
},
{
"cve": "CVE-2025-32414",
"cwe": {
"id": "CWE-393",
"name": "Return of Wrong Status Code"
},
"discovery_date": "2025-04-08T04:00:51.284113+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2358121"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in libxml2. This vulnerability allows out-of-bounds memory access due to incorrect handling of return values in xmlPythonFileRead and xmlPythonFileReadRaw. This is caused by a mismatch between the length of the file in bytes vs the length in characters, as unicode characters can occupy up to 4 bytes per character.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "libxml2: Out-of-Bounds Read in libxml2",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This bug affects parsing of text streams using:\n- the Python bindings (pending deprecation: https://gitlab.gnome.org/GNOME/libxml2/-/issues/891)\n- the libxml2 SAX driver drv_libxml2,\n- the XML Reader API\n\nParsing of binary streams is not affected by this vulnerability.\n\nThe vulnerability exists in the libxml2 package the bug arises because of a mismatch between characters vs. bytes handling: functions xmlPythonFileRead and xmlPythonFileReadRaw may compute a length incorrectly (mistaking character count for byte count), but for a succesful exploitation of this bug requires local access, on top of that the path to exploiation is non trivial, where handling of python binding\u0027s and specific input handling of bytes and charcters are required which makes this outside the scope of an attacker and increases the attack complexity, for these reasons this has been marked as moderate by redhat.\n\n\nWithin regulated environments, a combination of the following controls acts as a significant barrier to successfully exploiting a CWE-393: Return of Wrong Status Code vulnerability and therefore downgrades the severity of this particular CVE from Moderate to Low.\n\nThe platform enforces hardening guidelines to apply the most restrictive settings necessary for operational needs, while baseline configurations maintain secure system and software states. A defense-in-depth monitoring strategy includes perimeter firewalls and endpoint protection services that detect and respond to threats in real time, helping prevent or limit exploitation attempts. Robust input validation and error handling ensure all user inputs are thoroughly validated, supporting consistent and secure system responses.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHOSE-4.16:rhcos-aarch64-416.94.202508261955-0",
"9Base-RHOSE-4.16:rhcos-ppc64le-416.94.202508261955-0",
"9Base-RHOSE-4.16:rhcos-s390x-416.94.202508261955-0",
"9Base-RHOSE-4.16:rhcos-x86_64-416.94.202508261955-0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-32414"
},
{
"category": "external",
"summary": "RHBZ#2358121",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2358121"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-32414",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-32414"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-32414",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-32414"
},
{
"category": "external",
"summary": "https://gitlab.gnome.org/GNOME/libxml2/-/issues/889",
"url": "https://gitlab.gnome.org/GNOME/libxml2/-/issues/889"
}
],
"release_date": "2025-04-08T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-09-04T17:05:36+00:00",
"details": "For OpenShift Container Platform 4.16 see the following documentation,\nwhich will be updated shortly for this release, for important instructions\non how to upgrade your cluster and fully apply this asynchronous errata\nupdate:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.16/html/release_notes/\n\nYou may download the oc tool and use it to inspect release image metadata\nfor x86_64, s390x, ppc64le, and aarch64 architectures. The image digests\nmay be found at\nhttps://quay.io/repository/openshift-release-dev/ocp-release?tab=tags.\n\nThe sha values for the release are as follows:\n\n (For x86_64 architecture)\n The image digest is sha256:b2d8af25d1a0440fce3e16a7d5481a228c29bdf7510f9c2bbef241e495004992\n\n (For s390x architecture)\n The image digest is sha256:b8fa63beeecb258529d2b8b22fdd90ef4846691c8e41aaff2d02279d72563a25\n\n (For ppc64le architecture)\n The image digest is sha256:6847316b4a13f663f32227107ae23f31a223dcc3b7d1718da837b8a539e97212\n\n (For aarch64 architecture)\n The image digest is sha256:6a66ef4370c883267c500672f7c9b53293a431049fd0ec2496c9ab5ecdcc0ce5\n\nAll OpenShift Container Platform 4.16 users are advised to upgrade to these\nupdated packages and images when they are available in the appropriate\nrelease channel. To check for available updates, use the OpenShift CLI (oc)\nor web console. Instructions for upgrading a cluster are available at\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.16/html-single/updating_clusters/index#updating-cluster-cli.",
"product_ids": [
"9Base-RHOSE-4.16:rhcos-aarch64-416.94.202508261955-0",
"9Base-RHOSE-4.16:rhcos-ppc64le-416.94.202508261955-0",
"9Base-RHOSE-4.16:rhcos-s390x-416.94.202508261955-0",
"9Base-RHOSE-4.16:rhcos-x86_64-416.94.202508261955-0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:14858"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHOSE-4.16:rhcos-aarch64-416.94.202508261955-0",
"9Base-RHOSE-4.16:rhcos-ppc64le-416.94.202508261955-0",
"9Base-RHOSE-4.16:rhcos-s390x-416.94.202508261955-0",
"9Base-RHOSE-4.16:rhcos-x86_64-416.94.202508261955-0"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "LOW",
"baseScore": 5.6,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"9Base-RHOSE-4.16:rhcos-aarch64-416.94.202508261955-0",
"9Base-RHOSE-4.16:rhcos-ppc64le-416.94.202508261955-0",
"9Base-RHOSE-4.16:rhcos-s390x-416.94.202508261955-0",
"9Base-RHOSE-4.16:rhcos-x86_64-416.94.202508261955-0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "libxml2: Out-of-Bounds Read in libxml2"
},
{
"cve": "CVE-2025-32415",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2025-04-17T18:00:46.954384+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2360768"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the libxml2 library. A heap-based underflow can be triggered when a crafted XML document is validated against an XML schema with certain identity constraints or when a crafted XML schema is used, causing a crash to the application linked to the library and resulting in a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "libxml2: Out-of-bounds Read in xmlSchemaIDCFillNodeTables",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "To exploit this issue, an attacker needs to be able to process a specially crafted XML file with the application linked to the libxml2 library. Additionally, the only security impact of this vulnerability is a denial of service.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHOSE-4.16:rhcos-aarch64-416.94.202508261955-0",
"9Base-RHOSE-4.16:rhcos-ppc64le-416.94.202508261955-0",
"9Base-RHOSE-4.16:rhcos-s390x-416.94.202508261955-0",
"9Base-RHOSE-4.16:rhcos-x86_64-416.94.202508261955-0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-32415"
},
{
"category": "external",
"summary": "RHBZ#2360768",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2360768"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-32415",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-32415"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-32415",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-32415"
},
{
"category": "external",
"summary": "https://gitlab.gnome.org/GNOME/libxml2/-/issues/890",
"url": "https://gitlab.gnome.org/GNOME/libxml2/-/issues/890"
}
],
"release_date": "2025-04-17T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-09-04T17:05:36+00:00",
"details": "For OpenShift Container Platform 4.16 see the following documentation,\nwhich will be updated shortly for this release, for important instructions\non how to upgrade your cluster and fully apply this asynchronous errata\nupdate:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.16/html/release_notes/\n\nYou may download the oc tool and use it to inspect release image metadata\nfor x86_64, s390x, ppc64le, and aarch64 architectures. The image digests\nmay be found at\nhttps://quay.io/repository/openshift-release-dev/ocp-release?tab=tags.\n\nThe sha values for the release are as follows:\n\n (For x86_64 architecture)\n The image digest is sha256:b2d8af25d1a0440fce3e16a7d5481a228c29bdf7510f9c2bbef241e495004992\n\n (For s390x architecture)\n The image digest is sha256:b8fa63beeecb258529d2b8b22fdd90ef4846691c8e41aaff2d02279d72563a25\n\n (For ppc64le architecture)\n The image digest is sha256:6847316b4a13f663f32227107ae23f31a223dcc3b7d1718da837b8a539e97212\n\n (For aarch64 architecture)\n The image digest is sha256:6a66ef4370c883267c500672f7c9b53293a431049fd0ec2496c9ab5ecdcc0ce5\n\nAll OpenShift Container Platform 4.16 users are advised to upgrade to these\nupdated packages and images when they are available in the appropriate\nrelease channel. To check for available updates, use the OpenShift CLI (oc)\nor web console. Instructions for upgrading a cluster are available at\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.16/html-single/updating_clusters/index#updating-cluster-cli.",
"product_ids": [
"9Base-RHOSE-4.16:rhcos-aarch64-416.94.202508261955-0",
"9Base-RHOSE-4.16:rhcos-ppc64le-416.94.202508261955-0",
"9Base-RHOSE-4.16:rhcos-s390x-416.94.202508261955-0",
"9Base-RHOSE-4.16:rhcos-x86_64-416.94.202508261955-0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:14858"
},
{
"category": "workaround",
"details": "Do not process untrusted files with the libxml2 library.",
"product_ids": [
"9Base-RHOSE-4.16:rhcos-aarch64-416.94.202508261955-0",
"9Base-RHOSE-4.16:rhcos-ppc64le-416.94.202508261955-0",
"9Base-RHOSE-4.16:rhcos-s390x-416.94.202508261955-0",
"9Base-RHOSE-4.16:rhcos-x86_64-416.94.202508261955-0"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHOSE-4.16:rhcos-aarch64-416.94.202508261955-0",
"9Base-RHOSE-4.16:rhcos-ppc64le-416.94.202508261955-0",
"9Base-RHOSE-4.16:rhcos-s390x-416.94.202508261955-0",
"9Base-RHOSE-4.16:rhcos-x86_64-416.94.202508261955-0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "libxml2: Out-of-bounds Read in xmlSchemaIDCFillNodeTables"
},
{
"cve": "CVE-2025-48384",
"cwe": {
"id": "CWE-59",
"name": "Improper Link Resolution Before File Access (\u0027Link Following\u0027)"
},
"discovery_date": "2025-07-08T19:00:48.297925+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2378806"
}
],
"notes": [
{
"category": "description",
"text": "A line-end handling flaw was found in Git. When writing a config entry, values with a trailing carriage return (CR) are not quoted, resulting in the CR being lost when the config is read later. When initializing a submodule, if the submodule path contains a trailing CR, the altered path is read, resulting in the submodule being checked out to an incorrect location.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "git: Git arbitrary code execution",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability marked as Important and not Moderate flaw because it undermines Git\u2019s path and config integrity by allowing carriage return (\\r) injection to manipulate submodule checkout behavior. Git previously failed to quote config values containing trailing CR, causing the value to be misinterpreted when read back. In the context of submodules, this leads to incorrect path resolution, allowing an attacker to redirect the checkout path via a symlink to a sensitive directory like .git/modules/\u003csubmodule\u003e/hooks. If an executable post-checkout hook exists there, it could be inadvertently executed, resulting in arbitrary code execution during submodule operations. This is particularly dangerous in automated CI/CD pipelines or multi-repo projects where submodules are initialized or updated without manual inspection.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHOSE-4.16:rhcos-aarch64-416.94.202508261955-0",
"9Base-RHOSE-4.16:rhcos-ppc64le-416.94.202508261955-0",
"9Base-RHOSE-4.16:rhcos-s390x-416.94.202508261955-0",
"9Base-RHOSE-4.16:rhcos-x86_64-416.94.202508261955-0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-48384"
},
{
"category": "external",
"summary": "RHBZ#2378806",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2378806"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-48384",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-48384"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-48384",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-48384"
},
{
"category": "external",
"summary": "https://dgl.cx/2025/07/git-clone-submodule-cve-2025-48384",
"url": "https://dgl.cx/2025/07/git-clone-submodule-cve-2025-48384"
},
{
"category": "external",
"summary": "https://github.com/git/git/commit/05e9cd64ee23bbadcea6bcffd6660ed02b8eab89",
"url": "https://github.com/git/git/commit/05e9cd64ee23bbadcea6bcffd6660ed02b8eab89"
},
{
"category": "external",
"summary": "https://github.com/git/git/security/advisories/GHSA-vwqx-4fm8-6qc9",
"url": "https://github.com/git/git/security/advisories/GHSA-vwqx-4fm8-6qc9"
},
{
"category": "external",
"summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog",
"url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
}
],
"release_date": "2025-07-08T18:23:48.710000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-09-04T17:05:36+00:00",
"details": "For OpenShift Container Platform 4.16 see the following documentation,\nwhich will be updated shortly for this release, for important instructions\non how to upgrade your cluster and fully apply this asynchronous errata\nupdate:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.16/html/release_notes/\n\nYou may download the oc tool and use it to inspect release image metadata\nfor x86_64, s390x, ppc64le, and aarch64 architectures. The image digests\nmay be found at\nhttps://quay.io/repository/openshift-release-dev/ocp-release?tab=tags.\n\nThe sha values for the release are as follows:\n\n (For x86_64 architecture)\n The image digest is sha256:b2d8af25d1a0440fce3e16a7d5481a228c29bdf7510f9c2bbef241e495004992\n\n (For s390x architecture)\n The image digest is sha256:b8fa63beeecb258529d2b8b22fdd90ef4846691c8e41aaff2d02279d72563a25\n\n (For ppc64le architecture)\n The image digest is sha256:6847316b4a13f663f32227107ae23f31a223dcc3b7d1718da837b8a539e97212\n\n (For aarch64 architecture)\n The image digest is sha256:6a66ef4370c883267c500672f7c9b53293a431049fd0ec2496c9ab5ecdcc0ce5\n\nAll OpenShift Container Platform 4.16 users are advised to upgrade to these\nupdated packages and images when they are available in the appropriate\nrelease channel. To check for available updates, use the OpenShift CLI (oc)\nor web console. Instructions for upgrading a cluster are available at\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.16/html-single/updating_clusters/index#updating-cluster-cli.",
"product_ids": [
"9Base-RHOSE-4.16:rhcos-aarch64-416.94.202508261955-0",
"9Base-RHOSE-4.16:rhcos-ppc64le-416.94.202508261955-0",
"9Base-RHOSE-4.16:rhcos-s390x-416.94.202508261955-0",
"9Base-RHOSE-4.16:rhcos-x86_64-416.94.202508261955-0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:14858"
},
{
"category": "workaround",
"details": "To mitigate this issue, avoid using --recurse-submodules when cloning repositories from untrusted sources; instead, clone normally and only initialize or update submodules manually after reviewing them.",
"product_ids": [
"9Base-RHOSE-4.16:rhcos-aarch64-416.94.202508261955-0",
"9Base-RHOSE-4.16:rhcos-ppc64le-416.94.202508261955-0",
"9Base-RHOSE-4.16:rhcos-s390x-416.94.202508261955-0",
"9Base-RHOSE-4.16:rhcos-x86_64-416.94.202508261955-0"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.0,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"9Base-RHOSE-4.16:rhcos-aarch64-416.94.202508261955-0",
"9Base-RHOSE-4.16:rhcos-ppc64le-416.94.202508261955-0",
"9Base-RHOSE-4.16:rhcos-s390x-416.94.202508261955-0",
"9Base-RHOSE-4.16:rhcos-x86_64-416.94.202508261955-0"
]
}
],
"threats": [
{
"category": "exploit_status",
"date": "2025-08-25T00:00:00+00:00",
"details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
},
{
"category": "impact",
"details": "Important"
}
],
"title": "git: Git arbitrary code execution"
},
{
"cve": "CVE-2025-48385",
"cwe": {
"id": "CWE-88",
"name": "Improper Neutralization of Argument Delimiters in a Command (\u0027Argument Injection\u0027)"
},
"discovery_date": "2025-07-08T19:00:55.106787+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2378808"
}
],
"notes": [
{
"category": "description",
"text": "A bundled uri handling flaw was found in Git. When cloning a repository, Git knows to optionally fetch a bundle advertised by the remote server, which allows the server side to offload parts of the clone to a CDN. The Git client does not perform sufficient validation of the advertised bundles, which allows the remote side to perform protocol injection.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "git: Git arbitrary file writes",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability marked as Important rather than a Moderate flaw because it enables protocol injection at the transport layer of Git\u0027s bundle-uri mechanism, allowing a remote server to manipulate how and where data is written on the client system during a clone operation. The lack of input sanitization on user-controlled values like the URI and target path means that malformed inputs containing spaces or newlines can break protocol framing, leading to arbitrary file writes. In scenarios such as CI pipelines, developer environments, or recursive clones with submodules, an attacker can exploit this to overwrite critical files or inject malicious content, potentially achieving remote code execution (RCE).",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHOSE-4.16:rhcos-aarch64-416.94.202508261955-0",
"9Base-RHOSE-4.16:rhcos-ppc64le-416.94.202508261955-0",
"9Base-RHOSE-4.16:rhcos-s390x-416.94.202508261955-0",
"9Base-RHOSE-4.16:rhcos-x86_64-416.94.202508261955-0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-48385"
},
{
"category": "external",
"summary": "RHBZ#2378808",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2378808"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-48385",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-48385"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-48385",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-48385"
},
{
"category": "external",
"summary": "https://github.com/git/git/security/advisories/GHSA-m98c-vgpc-9655",
"url": "https://github.com/git/git/security/advisories/GHSA-m98c-vgpc-9655"
}
],
"release_date": "2025-07-08T18:23:44.405000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-09-04T17:05:36+00:00",
"details": "For OpenShift Container Platform 4.16 see the following documentation,\nwhich will be updated shortly for this release, for important instructions\non how to upgrade your cluster and fully apply this asynchronous errata\nupdate:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.16/html/release_notes/\n\nYou may download the oc tool and use it to inspect release image metadata\nfor x86_64, s390x, ppc64le, and aarch64 architectures. The image digests\nmay be found at\nhttps://quay.io/repository/openshift-release-dev/ocp-release?tab=tags.\n\nThe sha values for the release are as follows:\n\n (For x86_64 architecture)\n The image digest is sha256:b2d8af25d1a0440fce3e16a7d5481a228c29bdf7510f9c2bbef241e495004992\n\n (For s390x architecture)\n The image digest is sha256:b8fa63beeecb258529d2b8b22fdd90ef4846691c8e41aaff2d02279d72563a25\n\n (For ppc64le architecture)\n The image digest is sha256:6847316b4a13f663f32227107ae23f31a223dcc3b7d1718da837b8a539e97212\n\n (For aarch64 architecture)\n The image digest is sha256:6a66ef4370c883267c500672f7c9b53293a431049fd0ec2496c9ab5ecdcc0ce5\n\nAll OpenShift Container Platform 4.16 users are advised to upgrade to these\nupdated packages and images when they are available in the appropriate\nrelease channel. To check for available updates, use the OpenShift CLI (oc)\nor web console. Instructions for upgrading a cluster are available at\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.16/html-single/updating_clusters/index#updating-cluster-cli.",
"product_ids": [
"9Base-RHOSE-4.16:rhcos-aarch64-416.94.202508261955-0",
"9Base-RHOSE-4.16:rhcos-ppc64le-416.94.202508261955-0",
"9Base-RHOSE-4.16:rhcos-s390x-416.94.202508261955-0",
"9Base-RHOSE-4.16:rhcos-x86_64-416.94.202508261955-0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:14858"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHOSE-4.16:rhcos-aarch64-416.94.202508261955-0",
"9Base-RHOSE-4.16:rhcos-ppc64le-416.94.202508261955-0",
"9Base-RHOSE-4.16:rhcos-s390x-416.94.202508261955-0",
"9Base-RHOSE-4.16:rhcos-x86_64-416.94.202508261955-0"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 8.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:L",
"version": "3.1"
},
"products": [
"9Base-RHOSE-4.16:rhcos-aarch64-416.94.202508261955-0",
"9Base-RHOSE-4.16:rhcos-ppc64le-416.94.202508261955-0",
"9Base-RHOSE-4.16:rhcos-s390x-416.94.202508261955-0",
"9Base-RHOSE-4.16:rhcos-x86_64-416.94.202508261955-0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "git: Git arbitrary file writes"
}
]
}
rhsa-2025:15828
Vulnerability from csaf_redhat
Published
2025-09-15 15:14
Modified
2025-11-14 16:38
Summary
Red Hat Security Advisory: updated web-terminal/tooling container image
Notes
Topic
Updated web-terminal/tooling container image is now available for Red Hat Web Terminal 1.11 on RHEL 9.
Details
The Red Hat Web Terminal 1.11 on RHEL 9 container images have been updated to fix the following important CVEs: CVE-2025-5914, CVE-2025-49794, CVE-2025-49796, CVE-2025-6020, CVE-2025-48384, CVE-2025-48385, CVE-2025-7425, CVE-2025-6965, CVE-2025-8941.
Users of Red Hat Web Terminal 1.11 on RHEL 9 container images are advised to
upgrade to these updated images, which contain backported patches to correct
these security issues, fix these bugs and add these enhancements. Users of these
images are also encouraged to rebuild all container images that depend on these
images.
You can find images updated by this advisory in Red Hat Container Catalog (see References).
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated web-terminal/tooling container image is now available for Red Hat Web Terminal 1.11 on RHEL 9.",
"title": "Topic"
},
{
"category": "general",
"text": "The Red Hat Web Terminal 1.11 on RHEL 9 container images have been updated to fix the following important CVEs: CVE-2025-5914, CVE-2025-49794, CVE-2025-49796, CVE-2025-6020, CVE-2025-48384, CVE-2025-48385, CVE-2025-7425, CVE-2025-6965, CVE-2025-8941.\n\nUsers of Red Hat Web Terminal 1.11 on RHEL 9 container images are advised to\nupgrade to these updated images, which contain backported patches to correct\nthese security issues, fix these bugs and add these enhancements. Users of these\nimages are also encouraged to rebuild all container images that depend on these\nimages.\n\nYou can find images updated by this advisory in Red Hat Container Catalog (see References).",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:15828",
"url": "https://access.redhat.com/errata/RHSA-2025:15828"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "https://catalog.redhat.com/software/containers/registry/registry.access.redhat.com/repository/web-terminal/tooling",
"url": "https://catalog.redhat.com/software/containers/registry/registry.access.redhat.com/repository/web-terminal/tooling"
},
{
"category": "external",
"summary": "2370861",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2370861"
},
{
"category": "external",
"summary": "2372373",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2372373"
},
{
"category": "external",
"summary": "2372385",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2372385"
},
{
"category": "external",
"summary": "2372512",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2372512"
},
{
"category": "external",
"summary": "2378806",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2378806"
},
{
"category": "external",
"summary": "2378808",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2378808"
},
{
"category": "external",
"summary": "2379274",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2379274"
},
{
"category": "external",
"summary": "2380149",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2380149"
},
{
"category": "external",
"summary": "2388220",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2388220"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_15828.json"
}
],
"title": "Red Hat Security Advisory: updated web-terminal/tooling container image",
"tracking": {
"current_release_date": "2025-11-14T16:38:35+00:00",
"generator": {
"date": "2025-11-14T16:38:35+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.12"
}
},
"id": "RHSA-2025:15828",
"initial_release_date": "2025-09-15T15:14:08+00:00",
"revision_history": [
{
"date": "2025-09-15T15:14:08+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-09-15T15:14:08+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-14T16:38:35+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Web Terminal 1.11 on RHEL 9",
"product": {
"name": "Red Hat Web Terminal 1.11 on RHEL 9",
"product_id": "9Base-WebTerminal-1.11",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:webterminal:1.11::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat Web Terminal"
},
{
"branches": [
{
"category": "product_version",
"name": "web-terminal/web-terminal-rhel9-operator@sha256:97ba3d6db8959c3ccfef82325d9fe8098fb86cc4ecb0bb00933340c693d98603_amd64",
"product": {
"name": "web-terminal/web-terminal-rhel9-operator@sha256:97ba3d6db8959c3ccfef82325d9fe8098fb86cc4ecb0bb00933340c693d98603_amd64",
"product_id": "web-terminal/web-terminal-rhel9-operator@sha256:97ba3d6db8959c3ccfef82325d9fe8098fb86cc4ecb0bb00933340c693d98603_amd64",
"product_identification_helper": {
"purl": "pkg:oci/web-terminal-rhel9-operator@sha256:97ba3d6db8959c3ccfef82325d9fe8098fb86cc4ecb0bb00933340c693d98603?arch=amd64\u0026repository_url=registry.redhat.io/web-terminal/web-terminal-rhel9-operator\u0026tag=1.11-19"
}
}
},
{
"category": "product_version",
"name": "web-terminal/web-terminal-tooling-rhel9@sha256:fcda84411ef1356fb44a6b16d1ab95189f31ca056cc977114c395da0c5b202bf_amd64",
"product": {
"name": "web-terminal/web-terminal-tooling-rhel9@sha256:fcda84411ef1356fb44a6b16d1ab95189f31ca056cc977114c395da0c5b202bf_amd64",
"product_id": "web-terminal/web-terminal-tooling-rhel9@sha256:fcda84411ef1356fb44a6b16d1ab95189f31ca056cc977114c395da0c5b202bf_amd64",
"product_identification_helper": {
"purl": "pkg:oci/web-terminal-tooling-rhel9@sha256:fcda84411ef1356fb44a6b16d1ab95189f31ca056cc977114c395da0c5b202bf?arch=amd64\u0026repository_url=registry.redhat.io/web-terminal/web-terminal-tooling-rhel9\u0026tag=1.11-8"
}
}
}
],
"category": "architecture",
"name": "amd64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "web-terminal/web-terminal-rhel9-operator@sha256:97ba3d6db8959c3ccfef82325d9fe8098fb86cc4ecb0bb00933340c693d98603_amd64 as a component of Red Hat Web Terminal 1.11 on RHEL 9",
"product_id": "9Base-WebTerminal-1.11:web-terminal/web-terminal-rhel9-operator@sha256:97ba3d6db8959c3ccfef82325d9fe8098fb86cc4ecb0bb00933340c693d98603_amd64"
},
"product_reference": "web-terminal/web-terminal-rhel9-operator@sha256:97ba3d6db8959c3ccfef82325d9fe8098fb86cc4ecb0bb00933340c693d98603_amd64",
"relates_to_product_reference": "9Base-WebTerminal-1.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "web-terminal/web-terminal-tooling-rhel9@sha256:fcda84411ef1356fb44a6b16d1ab95189f31ca056cc977114c395da0c5b202bf_amd64 as a component of Red Hat Web Terminal 1.11 on RHEL 9",
"product_id": "9Base-WebTerminal-1.11:web-terminal/web-terminal-tooling-rhel9@sha256:fcda84411ef1356fb44a6b16d1ab95189f31ca056cc977114c395da0c5b202bf_amd64"
},
"product_reference": "web-terminal/web-terminal-tooling-rhel9@sha256:fcda84411ef1356fb44a6b16d1ab95189f31ca056cc977114c395da0c5b202bf_amd64",
"relates_to_product_reference": "9Base-WebTerminal-1.11"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-5914",
"cwe": {
"id": "CWE-415",
"name": "Double Free"
},
"discovery_date": "2025-06-06T17:58:25.491000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2370861"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability has been identified in the libarchive library, specifically within the archive_read_format_rar_seek_data() function. This flaw involves an integer overflow that can ultimately lead to a double-free condition. Exploiting a double-free vulnerability can result in memory corruption, enabling an attacker to execute arbitrary code or cause a denial-of-service condition.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "libarchive: Double free at archive_read_format_rar_seek_data() in archive_read_support_format_rar.c",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The Red Hat Product Security team has rated this vulnerability as Important because it allows a local attacker with limited privileges to trigger a double-free in libarchive\u0027s RAR parser by providing a specially crafted RAR archive. Successful exploitation could result in code execution or application crashes.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-WebTerminal-1.11:web-terminal/web-terminal-rhel9-operator@sha256:97ba3d6db8959c3ccfef82325d9fe8098fb86cc4ecb0bb00933340c693d98603_amd64",
"9Base-WebTerminal-1.11:web-terminal/web-terminal-tooling-rhel9@sha256:fcda84411ef1356fb44a6b16d1ab95189f31ca056cc977114c395da0c5b202bf_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-5914"
},
{
"category": "external",
"summary": "RHBZ#2370861",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2370861"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-5914",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5914"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-5914",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-5914"
},
{
"category": "external",
"summary": "https://github.com/libarchive/libarchive/pull/2598",
"url": "https://github.com/libarchive/libarchive/pull/2598"
},
{
"category": "external",
"summary": "https://github.com/libarchive/libarchive/releases/tag/v3.8.0",
"url": "https://github.com/libarchive/libarchive/releases/tag/v3.8.0"
}
],
"release_date": "2025-05-20T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-09-15T15:14:08+00:00",
"details": "The Red Hat Web Terminal 1.11 on RHEL 9 container images provided by this update\ncan be downloaded from the Red Hat Container Registry at\nregistry.access.redhat.com. Installation instructions for your platform are\navailable at Red Hat Container Catalog (see References).\n\nDockerfiles and scripts should be amended either to refer to this new image\nspecifically, or to the latest image generally.",
"product_ids": [
"9Base-WebTerminal-1.11:web-terminal/web-terminal-rhel9-operator@sha256:97ba3d6db8959c3ccfef82325d9fe8098fb86cc4ecb0bb00933340c693d98603_amd64",
"9Base-WebTerminal-1.11:web-terminal/web-terminal-tooling-rhel9@sha256:fcda84411ef1356fb44a6b16d1ab95189f31ca056cc977114c395da0c5b202bf_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:15828"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"9Base-WebTerminal-1.11:web-terminal/web-terminal-rhel9-operator@sha256:97ba3d6db8959c3ccfef82325d9fe8098fb86cc4ecb0bb00933340c693d98603_amd64",
"9Base-WebTerminal-1.11:web-terminal/web-terminal-tooling-rhel9@sha256:fcda84411ef1356fb44a6b16d1ab95189f31ca056cc977114c395da0c5b202bf_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "libarchive: Double free at archive_read_format_rar_seek_data() in archive_read_support_format_rar.c"
},
{
"acknowledgments": [
{
"names": [
"Olivier BAL-PETRE"
],
"organization": "ANSSI - French Cybersecurity Agency"
}
],
"cve": "CVE-2025-6020",
"cwe": {
"id": "CWE-22",
"name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
},
"discovery_date": "2025-06-12T16:33:01.214000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2372512"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in linux-pam. The module pam_namespace may use access user-controlled paths without proper protection, allowing local users to elevate their privileges to root via multiple symlink attacks and race conditions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "linux-pam: Linux-pam directory Traversal",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability in pam_namespace marked as Important rather than Moderate due to its direct impact on privilege boundaries and the ease of exploitation in common configurations. By leveraging symlink attacks or race conditions in polyinstantiated directories under their control, unprivileged local users can escalate to root, compromising the entire system. Since pam_namespace is often used in multi-user environments (e.g., shared systems, terminal servers, containers), a misconfigured or partially protected setup becomes a single point of failure. The attack does not require special capabilities or kernel-level exploits\u2014just timing and control over certain paths\u2014making it both reliable and low-barrier. Moreover, privilege escalation flaws like this can be chained with other vulnerabilities to persist or evade detection, further amplifying the risk.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-WebTerminal-1.11:web-terminal/web-terminal-rhel9-operator@sha256:97ba3d6db8959c3ccfef82325d9fe8098fb86cc4ecb0bb00933340c693d98603_amd64",
"9Base-WebTerminal-1.11:web-terminal/web-terminal-tooling-rhel9@sha256:fcda84411ef1356fb44a6b16d1ab95189f31ca056cc977114c395da0c5b202bf_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-6020"
},
{
"category": "external",
"summary": "RHBZ#2372512",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2372512"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-6020",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6020"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-6020",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-6020"
}
],
"release_date": "2025-06-17T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-09-15T15:14:08+00:00",
"details": "The Red Hat Web Terminal 1.11 on RHEL 9 container images provided by this update\ncan be downloaded from the Red Hat Container Registry at\nregistry.access.redhat.com. Installation instructions for your platform are\navailable at Red Hat Container Catalog (see References).\n\nDockerfiles and scripts should be amended either to refer to this new image\nspecifically, or to the latest image generally.",
"product_ids": [
"9Base-WebTerminal-1.11:web-terminal/web-terminal-rhel9-operator@sha256:97ba3d6db8959c3ccfef82325d9fe8098fb86cc4ecb0bb00933340c693d98603_amd64",
"9Base-WebTerminal-1.11:web-terminal/web-terminal-tooling-rhel9@sha256:fcda84411ef1356fb44a6b16d1ab95189f31ca056cc977114c395da0c5b202bf_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:15828"
},
{
"category": "workaround",
"details": "Disable the `pam_namespace` module if it is not essential for your environment, or carefully review and configure it to avoid operating on any directories or paths that can be influenced or controlled by unprivileged users, such as user home directories or world-writable locations like `/tmp`.",
"product_ids": [
"9Base-WebTerminal-1.11:web-terminal/web-terminal-rhel9-operator@sha256:97ba3d6db8959c3ccfef82325d9fe8098fb86cc4ecb0bb00933340c693d98603_amd64",
"9Base-WebTerminal-1.11:web-terminal/web-terminal-tooling-rhel9@sha256:fcda84411ef1356fb44a6b16d1ab95189f31ca056cc977114c395da0c5b202bf_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"9Base-WebTerminal-1.11:web-terminal/web-terminal-rhel9-operator@sha256:97ba3d6db8959c3ccfef82325d9fe8098fb86cc4ecb0bb00933340c693d98603_amd64",
"9Base-WebTerminal-1.11:web-terminal/web-terminal-tooling-rhel9@sha256:fcda84411ef1356fb44a6b16d1ab95189f31ca056cc977114c395da0c5b202bf_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "linux-pam: Linux-pam directory Traversal"
},
{
"cve": "CVE-2025-6965",
"cwe": {
"id": "CWE-197",
"name": "Numeric Truncation Error"
},
"discovery_date": "2025-07-15T14:02:19.241458+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2380149"
}
],
"notes": [
{
"category": "description",
"text": "A memory corruption flaw was found in SQLite. Under specific conditions a query can be generated where the number of aggregate terms could exceed the number of columns available. This issue could lead to memory corruption and subsequent unintended behavior.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "sqlite: Integer Truncation in SQLite",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability in SQLite is categorized as Important rather than Critical because, although it involves memory corruption, the conditions required to trigger it are relatively constrained. The flaw arises when a query causes the number of aggregate terms to exceed internal limits, leading to potential buffer overflows or memory mismanagement. However, exploitation requires the ability to craft complex SQL queries and interact with the SQLite engine in a specific manner\u2014typically through direct SQL input. There is no known evidence of arbitrary code execution, privilege escalation, or remote exploitability as a direct result of this flaw. Additionally, most SQLite deployments are embedded in applications where input is tightly controlled or sanitized.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-WebTerminal-1.11:web-terminal/web-terminal-rhel9-operator@sha256:97ba3d6db8959c3ccfef82325d9fe8098fb86cc4ecb0bb00933340c693d98603_amd64",
"9Base-WebTerminal-1.11:web-terminal/web-terminal-tooling-rhel9@sha256:fcda84411ef1356fb44a6b16d1ab95189f31ca056cc977114c395da0c5b202bf_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-6965"
},
{
"category": "external",
"summary": "RHBZ#2380149",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2380149"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-6965",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6965"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-6965",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-6965"
},
{
"category": "external",
"summary": "https://www.sqlite.org/src/info/5508b56fd24016c13981ec280ecdd833007c9d8dd595edb295b984c2b487b5c8",
"url": "https://www.sqlite.org/src/info/5508b56fd24016c13981ec280ecdd833007c9d8dd595edb295b984c2b487b5c8"
}
],
"release_date": "2025-07-15T13:44:00.784000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-09-15T15:14:08+00:00",
"details": "The Red Hat Web Terminal 1.11 on RHEL 9 container images provided by this update\ncan be downloaded from the Red Hat Container Registry at\nregistry.access.redhat.com. Installation instructions for your platform are\navailable at Red Hat Container Catalog (see References).\n\nDockerfiles and scripts should be amended either to refer to this new image\nspecifically, or to the latest image generally.",
"product_ids": [
"9Base-WebTerminal-1.11:web-terminal/web-terminal-rhel9-operator@sha256:97ba3d6db8959c3ccfef82325d9fe8098fb86cc4ecb0bb00933340c693d98603_amd64",
"9Base-WebTerminal-1.11:web-terminal/web-terminal-tooling-rhel9@sha256:fcda84411ef1356fb44a6b16d1ab95189f31ca056cc977114c395da0c5b202bf_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:15828"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-WebTerminal-1.11:web-terminal/web-terminal-rhel9-operator@sha256:97ba3d6db8959c3ccfef82325d9fe8098fb86cc4ecb0bb00933340c693d98603_amd64",
"9Base-WebTerminal-1.11:web-terminal/web-terminal-tooling-rhel9@sha256:fcda84411ef1356fb44a6b16d1ab95189f31ca056cc977114c395da0c5b202bf_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 7.7,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:H/A:L",
"version": "3.1"
},
"products": [
"9Base-WebTerminal-1.11:web-terminal/web-terminal-rhel9-operator@sha256:97ba3d6db8959c3ccfef82325d9fe8098fb86cc4ecb0bb00933340c693d98603_amd64",
"9Base-WebTerminal-1.11:web-terminal/web-terminal-tooling-rhel9@sha256:fcda84411ef1356fb44a6b16d1ab95189f31ca056cc977114c395da0c5b202bf_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "sqlite: Integer Truncation in SQLite"
},
{
"acknowledgments": [
{
"names": [
"Sergei Glazunov"
],
"organization": "Google Project Zero"
}
],
"cve": "CVE-2025-7425",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"discovery_date": "2025-07-10T09:37:28.172000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2379274"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in libxslt where the attribute type, atype, flags are modified in a way that corrupts internal memory management. When XSLT functions, such as the key() process, result in tree fragments, this corruption prevents the proper cleanup of ID attributes. As a result, the system may access freed memory, causing crashes or enabling attackers to trigger heap corruption.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "libxslt: Heap Use-After-Free in libxslt caused by atype corruption in xmlAttrPtr",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This heap-use-after-free vulnerability in libxslt is rated Important because it can lead to memory corruption and application crashes. The flaw arises when internal attribute metadata (atype) is modified by libxslt\u0027s xsltSetSourceNodeFlags() function during processing of result tree fragments. If the flag corruption prevents proper removal of ID references, later memory cleanup routines may operate on already-freed memory. Since libxslt is commonly used in server-side XML processing, this could result in denial-of-service or potentially facilitate code execution under certain memory reuse conditions.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-WebTerminal-1.11:web-terminal/web-terminal-rhel9-operator@sha256:97ba3d6db8959c3ccfef82325d9fe8098fb86cc4ecb0bb00933340c693d98603_amd64",
"9Base-WebTerminal-1.11:web-terminal/web-terminal-tooling-rhel9@sha256:fcda84411ef1356fb44a6b16d1ab95189f31ca056cc977114c395da0c5b202bf_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-7425"
},
{
"category": "external",
"summary": "RHBZ#2379274",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2379274"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-7425",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-7425"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-7425",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-7425"
},
{
"category": "external",
"summary": "https://gitlab.gnome.org/GNOME/libxslt/-/issues/140",
"url": "https://gitlab.gnome.org/GNOME/libxslt/-/issues/140"
}
],
"release_date": "2025-07-10T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-09-15T15:14:08+00:00",
"details": "The Red Hat Web Terminal 1.11 on RHEL 9 container images provided by this update\ncan be downloaded from the Red Hat Container Registry at\nregistry.access.redhat.com. Installation instructions for your platform are\navailable at Red Hat Container Catalog (see References).\n\nDockerfiles and scripts should be amended either to refer to this new image\nspecifically, or to the latest image generally.",
"product_ids": [
"9Base-WebTerminal-1.11:web-terminal/web-terminal-rhel9-operator@sha256:97ba3d6db8959c3ccfef82325d9fe8098fb86cc4ecb0bb00933340c693d98603_amd64",
"9Base-WebTerminal-1.11:web-terminal/web-terminal-tooling-rhel9@sha256:fcda84411ef1356fb44a6b16d1ab95189f31ca056cc977114c395da0c5b202bf_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:15828"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-WebTerminal-1.11:web-terminal/web-terminal-rhel9-operator@sha256:97ba3d6db8959c3ccfef82325d9fe8098fb86cc4ecb0bb00933340c693d98603_amd64",
"9Base-WebTerminal-1.11:web-terminal/web-terminal-tooling-rhel9@sha256:fcda84411ef1356fb44a6b16d1ab95189f31ca056cc977114c395da0c5b202bf_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"9Base-WebTerminal-1.11:web-terminal/web-terminal-rhel9-operator@sha256:97ba3d6db8959c3ccfef82325d9fe8098fb86cc4ecb0bb00933340c693d98603_amd64",
"9Base-WebTerminal-1.11:web-terminal/web-terminal-tooling-rhel9@sha256:fcda84411ef1356fb44a6b16d1ab95189f31ca056cc977114c395da0c5b202bf_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "libxslt: Heap Use-After-Free in libxslt caused by atype corruption in xmlAttrPtr"
},
{
"cve": "CVE-2025-8941",
"cwe": {
"id": "CWE-22",
"name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
},
"discovery_date": "2025-08-13T12:11:55.270000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2388220"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in linux-pam. The pam_namespace module may improperly handle user-controlled paths, allowing local users to exploit symlink attacks and race conditions to elevate their privileges to root. This CVE provides a \"complete\" fix for CVE-2025-6020.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "linux-pam: Incomplete fix for CVE-2025-6020",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability in pam_namespace is rated Important because it allows a local, unprivileged user to escalate privileges to root by exploiting symlink attacks or race conditions in polyinstantiated directories under their control. Successful exploitation requires only the ability to create and manipulate filesystem paths in such directories, without the need for special capabilities or kernel-level vulnerabilities. In multi-user environments\u2014such as shared systems, terminal servers, or certain container deployments, an unprotected or misconfigured pam_namespace configuration can serve as a single point of compromise. Privilege escalation flaws of this nature may also be chained with other vulnerabilities to maintain persistence or evade detection, further increasing the overall impact.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-WebTerminal-1.11:web-terminal/web-terminal-rhel9-operator@sha256:97ba3d6db8959c3ccfef82325d9fe8098fb86cc4ecb0bb00933340c693d98603_amd64",
"9Base-WebTerminal-1.11:web-terminal/web-terminal-tooling-rhel9@sha256:fcda84411ef1356fb44a6b16d1ab95189f31ca056cc977114c395da0c5b202bf_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-8941"
},
{
"category": "external",
"summary": "RHBZ#2388220",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2388220"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-8941",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8941"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-8941",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-8941"
}
],
"release_date": "2025-08-13T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-09-15T15:14:08+00:00",
"details": "The Red Hat Web Terminal 1.11 on RHEL 9 container images provided by this update\ncan be downloaded from the Red Hat Container Registry at\nregistry.access.redhat.com. Installation instructions for your platform are\navailable at Red Hat Container Catalog (see References).\n\nDockerfiles and scripts should be amended either to refer to this new image\nspecifically, or to the latest image generally.",
"product_ids": [
"9Base-WebTerminal-1.11:web-terminal/web-terminal-rhel9-operator@sha256:97ba3d6db8959c3ccfef82325d9fe8098fb86cc4ecb0bb00933340c693d98603_amd64",
"9Base-WebTerminal-1.11:web-terminal/web-terminal-tooling-rhel9@sha256:fcda84411ef1356fb44a6b16d1ab95189f31ca056cc977114c395da0c5b202bf_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:15828"
},
{
"category": "workaround",
"details": "Disable the `pam_namespace` module if it is not essential for your environment, or carefully review and configure it to avoid operating on any directories or paths that can be influenced or controlled by unprivileged users, such as user home directories or world-writable locations like `/tmp`.",
"product_ids": [
"9Base-WebTerminal-1.11:web-terminal/web-terminal-rhel9-operator@sha256:97ba3d6db8959c3ccfef82325d9fe8098fb86cc4ecb0bb00933340c693d98603_amd64",
"9Base-WebTerminal-1.11:web-terminal/web-terminal-tooling-rhel9@sha256:fcda84411ef1356fb44a6b16d1ab95189f31ca056cc977114c395da0c5b202bf_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"9Base-WebTerminal-1.11:web-terminal/web-terminal-rhel9-operator@sha256:97ba3d6db8959c3ccfef82325d9fe8098fb86cc4ecb0bb00933340c693d98603_amd64",
"9Base-WebTerminal-1.11:web-terminal/web-terminal-tooling-rhel9@sha256:fcda84411ef1356fb44a6b16d1ab95189f31ca056cc977114c395da0c5b202bf_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "linux-pam: Incomplete fix for CVE-2025-6020"
},
{
"cve": "CVE-2025-48384",
"cwe": {
"id": "CWE-59",
"name": "Improper Link Resolution Before File Access (\u0027Link Following\u0027)"
},
"discovery_date": "2025-07-08T19:00:48.297925+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2378806"
}
],
"notes": [
{
"category": "description",
"text": "A line-end handling flaw was found in Git. When writing a config entry, values with a trailing carriage return (CR) are not quoted, resulting in the CR being lost when the config is read later. When initializing a submodule, if the submodule path contains a trailing CR, the altered path is read, resulting in the submodule being checked out to an incorrect location.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "git: Git arbitrary code execution",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability marked as Important and not Moderate flaw because it undermines Git\u2019s path and config integrity by allowing carriage return (\\r) injection to manipulate submodule checkout behavior. Git previously failed to quote config values containing trailing CR, causing the value to be misinterpreted when read back. In the context of submodules, this leads to incorrect path resolution, allowing an attacker to redirect the checkout path via a symlink to a sensitive directory like .git/modules/\u003csubmodule\u003e/hooks. If an executable post-checkout hook exists there, it could be inadvertently executed, resulting in arbitrary code execution during submodule operations. This is particularly dangerous in automated CI/CD pipelines or multi-repo projects where submodules are initialized or updated without manual inspection.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-WebTerminal-1.11:web-terminal/web-terminal-rhel9-operator@sha256:97ba3d6db8959c3ccfef82325d9fe8098fb86cc4ecb0bb00933340c693d98603_amd64",
"9Base-WebTerminal-1.11:web-terminal/web-terminal-tooling-rhel9@sha256:fcda84411ef1356fb44a6b16d1ab95189f31ca056cc977114c395da0c5b202bf_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-48384"
},
{
"category": "external",
"summary": "RHBZ#2378806",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2378806"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-48384",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-48384"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-48384",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-48384"
},
{
"category": "external",
"summary": "https://dgl.cx/2025/07/git-clone-submodule-cve-2025-48384",
"url": "https://dgl.cx/2025/07/git-clone-submodule-cve-2025-48384"
},
{
"category": "external",
"summary": "https://github.com/git/git/commit/05e9cd64ee23bbadcea6bcffd6660ed02b8eab89",
"url": "https://github.com/git/git/commit/05e9cd64ee23bbadcea6bcffd6660ed02b8eab89"
},
{
"category": "external",
"summary": "https://github.com/git/git/security/advisories/GHSA-vwqx-4fm8-6qc9",
"url": "https://github.com/git/git/security/advisories/GHSA-vwqx-4fm8-6qc9"
},
{
"category": "external",
"summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog",
"url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
}
],
"release_date": "2025-07-08T18:23:48.710000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-09-15T15:14:08+00:00",
"details": "The Red Hat Web Terminal 1.11 on RHEL 9 container images provided by this update\ncan be downloaded from the Red Hat Container Registry at\nregistry.access.redhat.com. Installation instructions for your platform are\navailable at Red Hat Container Catalog (see References).\n\nDockerfiles and scripts should be amended either to refer to this new image\nspecifically, or to the latest image generally.",
"product_ids": [
"9Base-WebTerminal-1.11:web-terminal/web-terminal-rhel9-operator@sha256:97ba3d6db8959c3ccfef82325d9fe8098fb86cc4ecb0bb00933340c693d98603_amd64",
"9Base-WebTerminal-1.11:web-terminal/web-terminal-tooling-rhel9@sha256:fcda84411ef1356fb44a6b16d1ab95189f31ca056cc977114c395da0c5b202bf_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:15828"
},
{
"category": "workaround",
"details": "To mitigate this issue, avoid using --recurse-submodules when cloning repositories from untrusted sources; instead, clone normally and only initialize or update submodules manually after reviewing them.",
"product_ids": [
"9Base-WebTerminal-1.11:web-terminal/web-terminal-rhel9-operator@sha256:97ba3d6db8959c3ccfef82325d9fe8098fb86cc4ecb0bb00933340c693d98603_amd64",
"9Base-WebTerminal-1.11:web-terminal/web-terminal-tooling-rhel9@sha256:fcda84411ef1356fb44a6b16d1ab95189f31ca056cc977114c395da0c5b202bf_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.0,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"9Base-WebTerminal-1.11:web-terminal/web-terminal-rhel9-operator@sha256:97ba3d6db8959c3ccfef82325d9fe8098fb86cc4ecb0bb00933340c693d98603_amd64",
"9Base-WebTerminal-1.11:web-terminal/web-terminal-tooling-rhel9@sha256:fcda84411ef1356fb44a6b16d1ab95189f31ca056cc977114c395da0c5b202bf_amd64"
]
}
],
"threats": [
{
"category": "exploit_status",
"date": "2025-08-25T00:00:00+00:00",
"details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
},
{
"category": "impact",
"details": "Important"
}
],
"title": "git: Git arbitrary code execution"
},
{
"cve": "CVE-2025-48385",
"cwe": {
"id": "CWE-88",
"name": "Improper Neutralization of Argument Delimiters in a Command (\u0027Argument Injection\u0027)"
},
"discovery_date": "2025-07-08T19:00:55.106787+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2378808"
}
],
"notes": [
{
"category": "description",
"text": "A bundled uri handling flaw was found in Git. When cloning a repository, Git knows to optionally fetch a bundle advertised by the remote server, which allows the server side to offload parts of the clone to a CDN. The Git client does not perform sufficient validation of the advertised bundles, which allows the remote side to perform protocol injection.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "git: Git arbitrary file writes",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability marked as Important rather than a Moderate flaw because it enables protocol injection at the transport layer of Git\u0027s bundle-uri mechanism, allowing a remote server to manipulate how and where data is written on the client system during a clone operation. The lack of input sanitization on user-controlled values like the URI and target path means that malformed inputs containing spaces or newlines can break protocol framing, leading to arbitrary file writes. In scenarios such as CI pipelines, developer environments, or recursive clones with submodules, an attacker can exploit this to overwrite critical files or inject malicious content, potentially achieving remote code execution (RCE).",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-WebTerminal-1.11:web-terminal/web-terminal-rhel9-operator@sha256:97ba3d6db8959c3ccfef82325d9fe8098fb86cc4ecb0bb00933340c693d98603_amd64",
"9Base-WebTerminal-1.11:web-terminal/web-terminal-tooling-rhel9@sha256:fcda84411ef1356fb44a6b16d1ab95189f31ca056cc977114c395da0c5b202bf_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-48385"
},
{
"category": "external",
"summary": "RHBZ#2378808",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2378808"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-48385",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-48385"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-48385",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-48385"
},
{
"category": "external",
"summary": "https://github.com/git/git/security/advisories/GHSA-m98c-vgpc-9655",
"url": "https://github.com/git/git/security/advisories/GHSA-m98c-vgpc-9655"
}
],
"release_date": "2025-07-08T18:23:44.405000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-09-15T15:14:08+00:00",
"details": "The Red Hat Web Terminal 1.11 on RHEL 9 container images provided by this update\ncan be downloaded from the Red Hat Container Registry at\nregistry.access.redhat.com. Installation instructions for your platform are\navailable at Red Hat Container Catalog (see References).\n\nDockerfiles and scripts should be amended either to refer to this new image\nspecifically, or to the latest image generally.",
"product_ids": [
"9Base-WebTerminal-1.11:web-terminal/web-terminal-rhel9-operator@sha256:97ba3d6db8959c3ccfef82325d9fe8098fb86cc4ecb0bb00933340c693d98603_amd64",
"9Base-WebTerminal-1.11:web-terminal/web-terminal-tooling-rhel9@sha256:fcda84411ef1356fb44a6b16d1ab95189f31ca056cc977114c395da0c5b202bf_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:15828"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-WebTerminal-1.11:web-terminal/web-terminal-rhel9-operator@sha256:97ba3d6db8959c3ccfef82325d9fe8098fb86cc4ecb0bb00933340c693d98603_amd64",
"9Base-WebTerminal-1.11:web-terminal/web-terminal-tooling-rhel9@sha256:fcda84411ef1356fb44a6b16d1ab95189f31ca056cc977114c395da0c5b202bf_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 8.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:L",
"version": "3.1"
},
"products": [
"9Base-WebTerminal-1.11:web-terminal/web-terminal-rhel9-operator@sha256:97ba3d6db8959c3ccfef82325d9fe8098fb86cc4ecb0bb00933340c693d98603_amd64",
"9Base-WebTerminal-1.11:web-terminal/web-terminal-tooling-rhel9@sha256:fcda84411ef1356fb44a6b16d1ab95189f31ca056cc977114c395da0c5b202bf_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "git: Git arbitrary file writes"
},
{
"cve": "CVE-2025-49794",
"cwe": {
"id": "CWE-825",
"name": "Expired Pointer Dereference"
},
"discovery_date": "2025-06-11T21:33:43.044000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2372373"
}
],
"notes": [
{
"category": "description",
"text": "A use-after-free vulnerability was found in libxml2. This issue occurs when parsing XPath elements under certain circumstances when the XML schematron has the \u003csch:name path=\"...\"/\u003e schema elements. This flaw allows a malicious actor to craft a malicious XML document used as input for libxml, resulting in the program\u0027s crash using libxml or other possible undefined behaviors.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "libxml: Heap use after free (UAF) leads to Denial of service (DoS)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue was rated with a severity impact of Important by Red Hat Product Security, as libxml can be used to parse XML coming from the network depending on how the program consumes it and uses the library. Additionally, although the initial report shows a crash due to invalid memory access (A:H), other undefined issues that can present data integrity due to the application overwriting sensitive data are not discarded (I:H).",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-WebTerminal-1.11:web-terminal/web-terminal-rhel9-operator@sha256:97ba3d6db8959c3ccfef82325d9fe8098fb86cc4ecb0bb00933340c693d98603_amd64",
"9Base-WebTerminal-1.11:web-terminal/web-terminal-tooling-rhel9@sha256:fcda84411ef1356fb44a6b16d1ab95189f31ca056cc977114c395da0c5b202bf_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-49794"
},
{
"category": "external",
"summary": "RHBZ#2372373",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2372373"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-49794",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-49794"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-49794",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-49794"
}
],
"release_date": "2025-06-10T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-09-15T15:14:08+00:00",
"details": "The Red Hat Web Terminal 1.11 on RHEL 9 container images provided by this update\ncan be downloaded from the Red Hat Container Registry at\nregistry.access.redhat.com. Installation instructions for your platform are\navailable at Red Hat Container Catalog (see References).\n\nDockerfiles and scripts should be amended either to refer to this new image\nspecifically, or to the latest image generally.",
"product_ids": [
"9Base-WebTerminal-1.11:web-terminal/web-terminal-rhel9-operator@sha256:97ba3d6db8959c3ccfef82325d9fe8098fb86cc4ecb0bb00933340c693d98603_amd64",
"9Base-WebTerminal-1.11:web-terminal/web-terminal-tooling-rhel9@sha256:fcda84411ef1356fb44a6b16d1ab95189f31ca056cc977114c395da0c5b202bf_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:15828"
},
{
"category": "workaround",
"details": "There\u0027s no available mitigation other than avoid processing untrusted XML documents before updating to the libxml version containing the fix.",
"product_ids": [
"9Base-WebTerminal-1.11:web-terminal/web-terminal-rhel9-operator@sha256:97ba3d6db8959c3ccfef82325d9fe8098fb86cc4ecb0bb00933340c693d98603_amd64",
"9Base-WebTerminal-1.11:web-terminal/web-terminal-tooling-rhel9@sha256:fcda84411ef1356fb44a6b16d1ab95189f31ca056cc977114c395da0c5b202bf_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"9Base-WebTerminal-1.11:web-terminal/web-terminal-rhel9-operator@sha256:97ba3d6db8959c3ccfef82325d9fe8098fb86cc4ecb0bb00933340c693d98603_amd64",
"9Base-WebTerminal-1.11:web-terminal/web-terminal-tooling-rhel9@sha256:fcda84411ef1356fb44a6b16d1ab95189f31ca056cc977114c395da0c5b202bf_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "libxml: Heap use after free (UAF) leads to Denial of service (DoS)"
},
{
"cve": "CVE-2025-49796",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2025-06-12T00:35:26.470000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2372385"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in libxml2. Processing certain sch:name elements from the input XML file can trigger a memory corruption issue. This flaw allows an attacker to craft a malicious XML input file that can lead libxml to crash, resulting in a denial of service or other possible undefined behavior due to sensitive data being corrupted in memory.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "libxml: Type confusion leads to Denial of service (DoS)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The Red Hat Product Security team has evaluated this vulnerability as having an Important security impact, as libxml can be used to parse XML from the network depending on how the program consumes it using the library. Additionally, although the initial report shows a crash due to invalid memory access (A:H), other undefined issues that can present data integrity due to the application overwriting sensitive data are not discarded (I:H).",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-WebTerminal-1.11:web-terminal/web-terminal-rhel9-operator@sha256:97ba3d6db8959c3ccfef82325d9fe8098fb86cc4ecb0bb00933340c693d98603_amd64",
"9Base-WebTerminal-1.11:web-terminal/web-terminal-tooling-rhel9@sha256:fcda84411ef1356fb44a6b16d1ab95189f31ca056cc977114c395da0c5b202bf_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-49796"
},
{
"category": "external",
"summary": "RHBZ#2372385",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2372385"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-49796",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-49796"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-49796",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-49796"
}
],
"release_date": "2025-06-11T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-09-15T15:14:08+00:00",
"details": "The Red Hat Web Terminal 1.11 on RHEL 9 container images provided by this update\ncan be downloaded from the Red Hat Container Registry at\nregistry.access.redhat.com. Installation instructions for your platform are\navailable at Red Hat Container Catalog (see References).\n\nDockerfiles and scripts should be amended either to refer to this new image\nspecifically, or to the latest image generally.",
"product_ids": [
"9Base-WebTerminal-1.11:web-terminal/web-terminal-rhel9-operator@sha256:97ba3d6db8959c3ccfef82325d9fe8098fb86cc4ecb0bb00933340c693d98603_amd64",
"9Base-WebTerminal-1.11:web-terminal/web-terminal-tooling-rhel9@sha256:fcda84411ef1356fb44a6b16d1ab95189f31ca056cc977114c395da0c5b202bf_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:15828"
},
{
"category": "workaround",
"details": "There\u0027s no available mitigation other than to avoid processing untrusted XML documents if the user is unable/unwilling to update the library.",
"product_ids": [
"9Base-WebTerminal-1.11:web-terminal/web-terminal-rhel9-operator@sha256:97ba3d6db8959c3ccfef82325d9fe8098fb86cc4ecb0bb00933340c693d98603_amd64",
"9Base-WebTerminal-1.11:web-terminal/web-terminal-tooling-rhel9@sha256:fcda84411ef1356fb44a6b16d1ab95189f31ca056cc977114c395da0c5b202bf_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"9Base-WebTerminal-1.11:web-terminal/web-terminal-rhel9-operator@sha256:97ba3d6db8959c3ccfef82325d9fe8098fb86cc4ecb0bb00933340c693d98603_amd64",
"9Base-WebTerminal-1.11:web-terminal/web-terminal-tooling-rhel9@sha256:fcda84411ef1356fb44a6b16d1ab95189f31ca056cc977114c395da0c5b202bf_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "libxml: Type confusion leads to Denial of service (DoS)"
}
]
}
rhsa-2025:14059
Vulnerability from csaf_redhat
Published
2025-08-27 21:46
Modified
2025-11-12 20:09
Summary
Red Hat Security Advisory: OpenShift Container Platform 4.17.38 bug fix and security update
Notes
Topic
Red Hat OpenShift Container Platform release 4.17.38 is now available with updates to packages and images that fix several bugs and add enhancements.
This release includes a security update for Red Hat OpenShift Container Platform 4.17.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments.
This advisory contains the container images for Red Hat OpenShift Container Platform 4.17.38. See the following advisory for the RPM packages for this release:
https://access.redhat.com/errata/RHBA-2025:13976
Space precludes documenting all of the container images in this advisory. See the following Release Notes documentation, which will be updated shortly for this release, for details about these changes:
https://docs.redhat.com/en/documentation/openshift_container_platform/4.17/html/release_notes/
Security Fix(es):
* libxslt: Heap Use-After-Free in libxslt caused by atype corruption in xmlAttrPtr (CVE-2025-7425)
* git: Git arbitrary code execution (CVE-2025-48384)
* git: Git arbitrary file writes (CVE-2025-48385)
* libxml2: Integer Overflow in xmlBuildQName() Leads to Stack Buffer Overflow in libxml2 (CVE-2025-6021)
* libxml2: Out-of-Bounds Read in libxml2 (CVE-2025-32414)
* libxml2: Out-of-bounds Read in xmlSchemaIDCFillNodeTables (CVE-2025-32415)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
All OpenShift Container Platform 4.17 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift CLI (oc) or web console. Instructions for upgrading a cluster are available at https://docs.redhat.com/en/documentation/openshift_container_platform/4.17/html-single/updating_clusters/index#updating-cluster-cli.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat OpenShift Container Platform release 4.17.38 is now available with updates to packages and images that fix several bugs and add enhancements.\n\n This release includes a security update for Red Hat OpenShift Container Platform 4.17.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat OpenShift Container Platform is Red Hat\u0027s cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments.\n\nThis advisory contains the container images for Red Hat OpenShift Container Platform 4.17.38. See the following advisory for the RPM packages for this release:\n\nhttps://access.redhat.com/errata/RHBA-2025:13976\n\nSpace precludes documenting all of the container images in this advisory. See the following Release Notes documentation, which will be updated shortly for this release, for details about these changes:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/html/release_notes/\n\nSecurity Fix(es):\n\n* libxslt: Heap Use-After-Free in libxslt caused by atype corruption in xmlAttrPtr (CVE-2025-7425)\n* git: Git arbitrary code execution (CVE-2025-48384)\n* git: Git arbitrary file writes (CVE-2025-48385)\n* libxml2: Integer Overflow in xmlBuildQName() Leads to Stack Buffer Overflow in libxml2 (CVE-2025-6021)\n* libxml2: Out-of-Bounds Read in libxml2 (CVE-2025-32414)\n* libxml2: Out-of-bounds Read in xmlSchemaIDCFillNodeTables (CVE-2025-32415)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nAll OpenShift Container Platform 4.17 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift CLI (oc) or web console. Instructions for upgrading a cluster are available at https://docs.redhat.com/en/documentation/openshift_container_platform/4.17/html-single/updating_clusters/index#updating-cluster-cli.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:14059",
"url": "https://access.redhat.com/errata/RHSA-2025:14059"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2358121",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2358121"
},
{
"category": "external",
"summary": "2360768",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2360768"
},
{
"category": "external",
"summary": "2372406",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2372406"
},
{
"category": "external",
"summary": "2378806",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2378806"
},
{
"category": "external",
"summary": "2378808",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2378808"
},
{
"category": "external",
"summary": "2379274",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2379274"
},
{
"category": "external",
"summary": "OCPBUGS-54599",
"url": "https://issues.redhat.com/browse/OCPBUGS-54599"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_14059.json"
}
],
"title": "Red Hat Security Advisory: OpenShift Container Platform 4.17.38 bug fix and security update",
"tracking": {
"current_release_date": "2025-11-12T20:09:29+00:00",
"generator": {
"date": "2025-11-12T20:09:29+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.12"
}
},
"id": "RHSA-2025:14059",
"initial_release_date": "2025-08-27T21:46:50+00:00",
"revision_history": [
{
"date": "2025-08-27T21:46:50+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-08-27T21:46:50+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-12T20:09:29+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat OpenShift Container Platform 4.17",
"product": {
"name": "Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:4.17::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift Enterprise"
},
{
"branches": [
{
"category": "product_version",
"name": "rhcos-aarch64-417.94.202508141510-0",
"product": {
"name": "rhcos-aarch64-417.94.202508141510-0",
"product_id": "rhcos-aarch64-417.94.202508141510-0",
"product_identification_helper": {
"purl": "pkg:generic/redhat/rhcos@417.94.202508141510?arch=aarch64"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "rhcos-ppc64le-417.94.202508141510-0",
"product": {
"name": "rhcos-ppc64le-417.94.202508141510-0",
"product_id": "rhcos-ppc64le-417.94.202508141510-0",
"product_identification_helper": {
"purl": "pkg:generic/redhat/rhcos@417.94.202508141510?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "rhcos-s390x-417.94.202508141510-0",
"product": {
"name": "rhcos-s390x-417.94.202508141510-0",
"product_id": "rhcos-s390x-417.94.202508141510-0",
"product_identification_helper": {
"purl": "pkg:generic/redhat/rhcos@417.94.202508141510?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "rhcos-x86_64-417.94.202508141510-0",
"product": {
"name": "rhcos-x86_64-417.94.202508141510-0",
"product_id": "rhcos-x86_64-417.94.202508141510-0",
"product_identification_helper": {
"purl": "pkg:generic/redhat/rhcos@417.94.202508141510?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "rhcos-aarch64-417.94.202508141510-0 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:rhcos-aarch64-417.94.202508141510-0"
},
"product_reference": "rhcos-aarch64-417.94.202508141510-0",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhcos-ppc64le-417.94.202508141510-0 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:rhcos-ppc64le-417.94.202508141510-0"
},
"product_reference": "rhcos-ppc64le-417.94.202508141510-0",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhcos-s390x-417.94.202508141510-0 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:rhcos-s390x-417.94.202508141510-0"
},
"product_reference": "rhcos-s390x-417.94.202508141510-0",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhcos-x86_64-417.94.202508141510-0 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:rhcos-x86_64-417.94.202508141510-0"
},
"product_reference": "rhcos-x86_64-417.94.202508141510-0",
"relates_to_product_reference": "9Base-RHOSE-4.17"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Ahmed Lekssays"
]
}
],
"cve": "CVE-2025-6021",
"cwe": {
"id": "CWE-121",
"name": "Stack-based Buffer Overflow"
},
"discovery_date": "2025-06-12T07:55:45.428000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2372406"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in libxml2\u0027s xmlBuildQName function, where integer overflows in buffer size calculations can lead to a stack-based buffer overflow. This issue can result in memory corruption or a denial of service when processing crafted input.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "libxml2: Integer Overflow in xmlBuildQName() Leads to Stack Buffer Overflow in libxml2",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is rated Moderate due to the lack of confidentiality impact and limited integrity concerns, with the main risk being potential denial-of-service from a crash. Exploitation requires crafted XML input and specific application behavior using xmlBuildQName. While it\u2019s a write overflow, modern mitigations make remote code execution unlikely.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHOSE-4.17:rhcos-aarch64-417.94.202508141510-0",
"9Base-RHOSE-4.17:rhcos-ppc64le-417.94.202508141510-0",
"9Base-RHOSE-4.17:rhcos-s390x-417.94.202508141510-0",
"9Base-RHOSE-4.17:rhcos-x86_64-417.94.202508141510-0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-6021"
},
{
"category": "external",
"summary": "RHBZ#2372406",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2372406"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-6021",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6021"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-6021",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-6021"
}
],
"release_date": "2025-06-12T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-08-27T21:46:50+00:00",
"details": "For OpenShift Container Platform 4.17 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/html/release_notes/\n\nYou may download the oc tool and use it to inspect release image metadata for x86_64, s390x, ppc64le, and aarch64 architectures. The image digests may be found at https://quay.io/repository/openshift-release-dev/ocp-release?tab=tags.\n\nThe sha values for the release are as follows:\n\n (For x86_64 architecture)\n The image digest is sha256:fea49ae633643615f8707ecbe801b484181b87db0746d2d85592768dbddf43c9\n\n (For s390x architecture)\n The image digest is sha256:d3e9032b799e87cc82121c9da006d375845134120205fa2aa2edca033abf97d3\n\n (For ppc64le architecture)\n The image digest is sha256:6c6251666a8e89289819cdb9dd7269d1ab2d90fdcb96c2b15b2e04908d15fd88\n\n (For aarch64 architecture)\n The image digest is sha256:3b83546dc680f6e3975faf101471c4e29fdc76f406327665e22f63ff406246c0\n\nAll OpenShift Container Platform 4.17 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift CLI (oc) or web console. Instructions for upgrading a cluster are available at https://docs.redhat.com/en/documentation/openshift_container_platform/4.17/html-single/updating_clusters/index#updating-cluster-cli.",
"product_ids": [
"9Base-RHOSE-4.17:rhcos-aarch64-417.94.202508141510-0",
"9Base-RHOSE-4.17:rhcos-ppc64le-417.94.202508141510-0",
"9Base-RHOSE-4.17:rhcos-s390x-417.94.202508141510-0",
"9Base-RHOSE-4.17:rhcos-x86_64-417.94.202508141510-0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:14059"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability. Users are strongly advised to apply vendor-supplied patches as soon as they become available to address the underlying integer overflow flaw in the affected code.",
"product_ids": [
"9Base-RHOSE-4.17:rhcos-aarch64-417.94.202508141510-0",
"9Base-RHOSE-4.17:rhcos-ppc64le-417.94.202508141510-0",
"9Base-RHOSE-4.17:rhcos-s390x-417.94.202508141510-0",
"9Base-RHOSE-4.17:rhcos-x86_64-417.94.202508141510-0"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHOSE-4.17:rhcos-aarch64-417.94.202508141510-0",
"9Base-RHOSE-4.17:rhcos-ppc64le-417.94.202508141510-0",
"9Base-RHOSE-4.17:rhcos-s390x-417.94.202508141510-0",
"9Base-RHOSE-4.17:rhcos-x86_64-417.94.202508141510-0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "libxml2: Integer Overflow in xmlBuildQName() Leads to Stack Buffer Overflow in libxml2"
},
{
"acknowledgments": [
{
"names": [
"Sergei Glazunov"
],
"organization": "Google Project Zero"
}
],
"cve": "CVE-2025-7425",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"discovery_date": "2025-07-10T09:37:28.172000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2379274"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in libxslt where the attribute type, atype, flags are modified in a way that corrupts internal memory management. When XSLT functions, such as the key() process, result in tree fragments, this corruption prevents the proper cleanup of ID attributes. As a result, the system may access freed memory, causing crashes or enabling attackers to trigger heap corruption.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "libxslt: Heap Use-After-Free in libxslt caused by atype corruption in xmlAttrPtr",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This heap-use-after-free vulnerability in libxslt is rated Important because it can lead to memory corruption and application crashes. The flaw arises when internal attribute metadata (atype) is modified by libxslt\u0027s xsltSetSourceNodeFlags() function during processing of result tree fragments. If the flag corruption prevents proper removal of ID references, later memory cleanup routines may operate on already-freed memory. Since libxslt is commonly used in server-side XML processing, this could result in denial-of-service or potentially facilitate code execution under certain memory reuse conditions.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHOSE-4.17:rhcos-aarch64-417.94.202508141510-0",
"9Base-RHOSE-4.17:rhcos-ppc64le-417.94.202508141510-0",
"9Base-RHOSE-4.17:rhcos-s390x-417.94.202508141510-0",
"9Base-RHOSE-4.17:rhcos-x86_64-417.94.202508141510-0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-7425"
},
{
"category": "external",
"summary": "RHBZ#2379274",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2379274"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-7425",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-7425"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-7425",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-7425"
},
{
"category": "external",
"summary": "https://gitlab.gnome.org/GNOME/libxslt/-/issues/140",
"url": "https://gitlab.gnome.org/GNOME/libxslt/-/issues/140"
}
],
"release_date": "2025-07-10T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-08-27T21:46:50+00:00",
"details": "For OpenShift Container Platform 4.17 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/html/release_notes/\n\nYou may download the oc tool and use it to inspect release image metadata for x86_64, s390x, ppc64le, and aarch64 architectures. The image digests may be found at https://quay.io/repository/openshift-release-dev/ocp-release?tab=tags.\n\nThe sha values for the release are as follows:\n\n (For x86_64 architecture)\n The image digest is sha256:fea49ae633643615f8707ecbe801b484181b87db0746d2d85592768dbddf43c9\n\n (For s390x architecture)\n The image digest is sha256:d3e9032b799e87cc82121c9da006d375845134120205fa2aa2edca033abf97d3\n\n (For ppc64le architecture)\n The image digest is sha256:6c6251666a8e89289819cdb9dd7269d1ab2d90fdcb96c2b15b2e04908d15fd88\n\n (For aarch64 architecture)\n The image digest is sha256:3b83546dc680f6e3975faf101471c4e29fdc76f406327665e22f63ff406246c0\n\nAll OpenShift Container Platform 4.17 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift CLI (oc) or web console. Instructions for upgrading a cluster are available at https://docs.redhat.com/en/documentation/openshift_container_platform/4.17/html-single/updating_clusters/index#updating-cluster-cli.",
"product_ids": [
"9Base-RHOSE-4.17:rhcos-aarch64-417.94.202508141510-0",
"9Base-RHOSE-4.17:rhcos-ppc64le-417.94.202508141510-0",
"9Base-RHOSE-4.17:rhcos-s390x-417.94.202508141510-0",
"9Base-RHOSE-4.17:rhcos-x86_64-417.94.202508141510-0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:14059"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHOSE-4.17:rhcos-aarch64-417.94.202508141510-0",
"9Base-RHOSE-4.17:rhcos-ppc64le-417.94.202508141510-0",
"9Base-RHOSE-4.17:rhcos-s390x-417.94.202508141510-0",
"9Base-RHOSE-4.17:rhcos-x86_64-417.94.202508141510-0"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"9Base-RHOSE-4.17:rhcos-aarch64-417.94.202508141510-0",
"9Base-RHOSE-4.17:rhcos-ppc64le-417.94.202508141510-0",
"9Base-RHOSE-4.17:rhcos-s390x-417.94.202508141510-0",
"9Base-RHOSE-4.17:rhcos-x86_64-417.94.202508141510-0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "libxslt: Heap Use-After-Free in libxslt caused by atype corruption in xmlAttrPtr"
},
{
"cve": "CVE-2025-32414",
"cwe": {
"id": "CWE-393",
"name": "Return of Wrong Status Code"
},
"discovery_date": "2025-04-08T04:00:51.284113+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2358121"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in libxml2. This vulnerability allows out-of-bounds memory access due to incorrect handling of return values in xmlPythonFileRead and xmlPythonFileReadRaw. This is caused by a mismatch between the length of the file in bytes vs the length in characters, as unicode characters can occupy up to 4 bytes per character.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "libxml2: Out-of-Bounds Read in libxml2",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This bug affects parsing of text streams using:\n- the Python bindings (pending deprecation: https://gitlab.gnome.org/GNOME/libxml2/-/issues/891)\n- the libxml2 SAX driver drv_libxml2,\n- the XML Reader API\n\nParsing of binary streams is not affected by this vulnerability.\n\nThe vulnerability exists in the libxml2 package the bug arises because of a mismatch between characters vs. bytes handling: functions xmlPythonFileRead and xmlPythonFileReadRaw may compute a length incorrectly (mistaking character count for byte count), but for a succesful exploitation of this bug requires local access, on top of that the path to exploiation is non trivial, where handling of python binding\u0027s and specific input handling of bytes and charcters are required which makes this outside the scope of an attacker and increases the attack complexity, for these reasons this has been marked as moderate by redhat.\n\n\nWithin regulated environments, a combination of the following controls acts as a significant barrier to successfully exploiting a CWE-393: Return of Wrong Status Code vulnerability and therefore downgrades the severity of this particular CVE from Moderate to Low.\n\nThe platform enforces hardening guidelines to apply the most restrictive settings necessary for operational needs, while baseline configurations maintain secure system and software states. A defense-in-depth monitoring strategy includes perimeter firewalls and endpoint protection services that detect and respond to threats in real time, helping prevent or limit exploitation attempts. Robust input validation and error handling ensure all user inputs are thoroughly validated, supporting consistent and secure system responses.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHOSE-4.17:rhcos-aarch64-417.94.202508141510-0",
"9Base-RHOSE-4.17:rhcos-ppc64le-417.94.202508141510-0",
"9Base-RHOSE-4.17:rhcos-s390x-417.94.202508141510-0",
"9Base-RHOSE-4.17:rhcos-x86_64-417.94.202508141510-0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-32414"
},
{
"category": "external",
"summary": "RHBZ#2358121",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2358121"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-32414",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-32414"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-32414",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-32414"
},
{
"category": "external",
"summary": "https://gitlab.gnome.org/GNOME/libxml2/-/issues/889",
"url": "https://gitlab.gnome.org/GNOME/libxml2/-/issues/889"
}
],
"release_date": "2025-04-08T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-08-27T21:46:50+00:00",
"details": "For OpenShift Container Platform 4.17 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/html/release_notes/\n\nYou may download the oc tool and use it to inspect release image metadata for x86_64, s390x, ppc64le, and aarch64 architectures. The image digests may be found at https://quay.io/repository/openshift-release-dev/ocp-release?tab=tags.\n\nThe sha values for the release are as follows:\n\n (For x86_64 architecture)\n The image digest is sha256:fea49ae633643615f8707ecbe801b484181b87db0746d2d85592768dbddf43c9\n\n (For s390x architecture)\n The image digest is sha256:d3e9032b799e87cc82121c9da006d375845134120205fa2aa2edca033abf97d3\n\n (For ppc64le architecture)\n The image digest is sha256:6c6251666a8e89289819cdb9dd7269d1ab2d90fdcb96c2b15b2e04908d15fd88\n\n (For aarch64 architecture)\n The image digest is sha256:3b83546dc680f6e3975faf101471c4e29fdc76f406327665e22f63ff406246c0\n\nAll OpenShift Container Platform 4.17 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift CLI (oc) or web console. Instructions for upgrading a cluster are available at https://docs.redhat.com/en/documentation/openshift_container_platform/4.17/html-single/updating_clusters/index#updating-cluster-cli.",
"product_ids": [
"9Base-RHOSE-4.17:rhcos-aarch64-417.94.202508141510-0",
"9Base-RHOSE-4.17:rhcos-ppc64le-417.94.202508141510-0",
"9Base-RHOSE-4.17:rhcos-s390x-417.94.202508141510-0",
"9Base-RHOSE-4.17:rhcos-x86_64-417.94.202508141510-0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:14059"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHOSE-4.17:rhcos-aarch64-417.94.202508141510-0",
"9Base-RHOSE-4.17:rhcos-ppc64le-417.94.202508141510-0",
"9Base-RHOSE-4.17:rhcos-s390x-417.94.202508141510-0",
"9Base-RHOSE-4.17:rhcos-x86_64-417.94.202508141510-0"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "LOW",
"baseScore": 5.6,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"9Base-RHOSE-4.17:rhcos-aarch64-417.94.202508141510-0",
"9Base-RHOSE-4.17:rhcos-ppc64le-417.94.202508141510-0",
"9Base-RHOSE-4.17:rhcos-s390x-417.94.202508141510-0",
"9Base-RHOSE-4.17:rhcos-x86_64-417.94.202508141510-0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "libxml2: Out-of-Bounds Read in libxml2"
},
{
"cve": "CVE-2025-32415",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2025-04-17T18:00:46.954384+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2360768"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the libxml2 library. A heap-based underflow can be triggered when a crafted XML document is validated against an XML schema with certain identity constraints or when a crafted XML schema is used, causing a crash to the application linked to the library and resulting in a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "libxml2: Out-of-bounds Read in xmlSchemaIDCFillNodeTables",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "To exploit this issue, an attacker needs to be able to process a specially crafted XML file with the application linked to the libxml2 library. Additionally, the only security impact of this vulnerability is a denial of service.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHOSE-4.17:rhcos-aarch64-417.94.202508141510-0",
"9Base-RHOSE-4.17:rhcos-ppc64le-417.94.202508141510-0",
"9Base-RHOSE-4.17:rhcos-s390x-417.94.202508141510-0",
"9Base-RHOSE-4.17:rhcos-x86_64-417.94.202508141510-0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-32415"
},
{
"category": "external",
"summary": "RHBZ#2360768",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2360768"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-32415",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-32415"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-32415",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-32415"
},
{
"category": "external",
"summary": "https://gitlab.gnome.org/GNOME/libxml2/-/issues/890",
"url": "https://gitlab.gnome.org/GNOME/libxml2/-/issues/890"
}
],
"release_date": "2025-04-17T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-08-27T21:46:50+00:00",
"details": "For OpenShift Container Platform 4.17 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/html/release_notes/\n\nYou may download the oc tool and use it to inspect release image metadata for x86_64, s390x, ppc64le, and aarch64 architectures. The image digests may be found at https://quay.io/repository/openshift-release-dev/ocp-release?tab=tags.\n\nThe sha values for the release are as follows:\n\n (For x86_64 architecture)\n The image digest is sha256:fea49ae633643615f8707ecbe801b484181b87db0746d2d85592768dbddf43c9\n\n (For s390x architecture)\n The image digest is sha256:d3e9032b799e87cc82121c9da006d375845134120205fa2aa2edca033abf97d3\n\n (For ppc64le architecture)\n The image digest is sha256:6c6251666a8e89289819cdb9dd7269d1ab2d90fdcb96c2b15b2e04908d15fd88\n\n (For aarch64 architecture)\n The image digest is sha256:3b83546dc680f6e3975faf101471c4e29fdc76f406327665e22f63ff406246c0\n\nAll OpenShift Container Platform 4.17 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift CLI (oc) or web console. Instructions for upgrading a cluster are available at https://docs.redhat.com/en/documentation/openshift_container_platform/4.17/html-single/updating_clusters/index#updating-cluster-cli.",
"product_ids": [
"9Base-RHOSE-4.17:rhcos-aarch64-417.94.202508141510-0",
"9Base-RHOSE-4.17:rhcos-ppc64le-417.94.202508141510-0",
"9Base-RHOSE-4.17:rhcos-s390x-417.94.202508141510-0",
"9Base-RHOSE-4.17:rhcos-x86_64-417.94.202508141510-0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:14059"
},
{
"category": "workaround",
"details": "Do not process untrusted files with the libxml2 library.",
"product_ids": [
"9Base-RHOSE-4.17:rhcos-aarch64-417.94.202508141510-0",
"9Base-RHOSE-4.17:rhcos-ppc64le-417.94.202508141510-0",
"9Base-RHOSE-4.17:rhcos-s390x-417.94.202508141510-0",
"9Base-RHOSE-4.17:rhcos-x86_64-417.94.202508141510-0"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHOSE-4.17:rhcos-aarch64-417.94.202508141510-0",
"9Base-RHOSE-4.17:rhcos-ppc64le-417.94.202508141510-0",
"9Base-RHOSE-4.17:rhcos-s390x-417.94.202508141510-0",
"9Base-RHOSE-4.17:rhcos-x86_64-417.94.202508141510-0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "libxml2: Out-of-bounds Read in xmlSchemaIDCFillNodeTables"
},
{
"cve": "CVE-2025-48384",
"cwe": {
"id": "CWE-59",
"name": "Improper Link Resolution Before File Access (\u0027Link Following\u0027)"
},
"discovery_date": "2025-07-08T19:00:48.297925+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2378806"
}
],
"notes": [
{
"category": "description",
"text": "A line-end handling flaw was found in Git. When writing a config entry, values with a trailing carriage return (CR) are not quoted, resulting in the CR being lost when the config is read later. When initializing a submodule, if the submodule path contains a trailing CR, the altered path is read, resulting in the submodule being checked out to an incorrect location.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "git: Git arbitrary code execution",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability marked as Important and not Moderate flaw because it undermines Git\u2019s path and config integrity by allowing carriage return (\\r) injection to manipulate submodule checkout behavior. Git previously failed to quote config values containing trailing CR, causing the value to be misinterpreted when read back. In the context of submodules, this leads to incorrect path resolution, allowing an attacker to redirect the checkout path via a symlink to a sensitive directory like .git/modules/\u003csubmodule\u003e/hooks. If an executable post-checkout hook exists there, it could be inadvertently executed, resulting in arbitrary code execution during submodule operations. This is particularly dangerous in automated CI/CD pipelines or multi-repo projects where submodules are initialized or updated without manual inspection.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHOSE-4.17:rhcos-aarch64-417.94.202508141510-0",
"9Base-RHOSE-4.17:rhcos-ppc64le-417.94.202508141510-0",
"9Base-RHOSE-4.17:rhcos-s390x-417.94.202508141510-0",
"9Base-RHOSE-4.17:rhcos-x86_64-417.94.202508141510-0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-48384"
},
{
"category": "external",
"summary": "RHBZ#2378806",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2378806"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-48384",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-48384"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-48384",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-48384"
},
{
"category": "external",
"summary": "https://dgl.cx/2025/07/git-clone-submodule-cve-2025-48384",
"url": "https://dgl.cx/2025/07/git-clone-submodule-cve-2025-48384"
},
{
"category": "external",
"summary": "https://github.com/git/git/commit/05e9cd64ee23bbadcea6bcffd6660ed02b8eab89",
"url": "https://github.com/git/git/commit/05e9cd64ee23bbadcea6bcffd6660ed02b8eab89"
},
{
"category": "external",
"summary": "https://github.com/git/git/security/advisories/GHSA-vwqx-4fm8-6qc9",
"url": "https://github.com/git/git/security/advisories/GHSA-vwqx-4fm8-6qc9"
},
{
"category": "external",
"summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog",
"url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
}
],
"release_date": "2025-07-08T18:23:48.710000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-08-27T21:46:50+00:00",
"details": "For OpenShift Container Platform 4.17 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/html/release_notes/\n\nYou may download the oc tool and use it to inspect release image metadata for x86_64, s390x, ppc64le, and aarch64 architectures. The image digests may be found at https://quay.io/repository/openshift-release-dev/ocp-release?tab=tags.\n\nThe sha values for the release are as follows:\n\n (For x86_64 architecture)\n The image digest is sha256:fea49ae633643615f8707ecbe801b484181b87db0746d2d85592768dbddf43c9\n\n (For s390x architecture)\n The image digest is sha256:d3e9032b799e87cc82121c9da006d375845134120205fa2aa2edca033abf97d3\n\n (For ppc64le architecture)\n The image digest is sha256:6c6251666a8e89289819cdb9dd7269d1ab2d90fdcb96c2b15b2e04908d15fd88\n\n (For aarch64 architecture)\n The image digest is sha256:3b83546dc680f6e3975faf101471c4e29fdc76f406327665e22f63ff406246c0\n\nAll OpenShift Container Platform 4.17 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift CLI (oc) or web console. Instructions for upgrading a cluster are available at https://docs.redhat.com/en/documentation/openshift_container_platform/4.17/html-single/updating_clusters/index#updating-cluster-cli.",
"product_ids": [
"9Base-RHOSE-4.17:rhcos-aarch64-417.94.202508141510-0",
"9Base-RHOSE-4.17:rhcos-ppc64le-417.94.202508141510-0",
"9Base-RHOSE-4.17:rhcos-s390x-417.94.202508141510-0",
"9Base-RHOSE-4.17:rhcos-x86_64-417.94.202508141510-0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:14059"
},
{
"category": "workaround",
"details": "To mitigate this issue, avoid using --recurse-submodules when cloning repositories from untrusted sources; instead, clone normally and only initialize or update submodules manually after reviewing them.",
"product_ids": [
"9Base-RHOSE-4.17:rhcos-aarch64-417.94.202508141510-0",
"9Base-RHOSE-4.17:rhcos-ppc64le-417.94.202508141510-0",
"9Base-RHOSE-4.17:rhcos-s390x-417.94.202508141510-0",
"9Base-RHOSE-4.17:rhcos-x86_64-417.94.202508141510-0"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.0,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"9Base-RHOSE-4.17:rhcos-aarch64-417.94.202508141510-0",
"9Base-RHOSE-4.17:rhcos-ppc64le-417.94.202508141510-0",
"9Base-RHOSE-4.17:rhcos-s390x-417.94.202508141510-0",
"9Base-RHOSE-4.17:rhcos-x86_64-417.94.202508141510-0"
]
}
],
"threats": [
{
"category": "exploit_status",
"date": "2025-08-25T00:00:00+00:00",
"details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
},
{
"category": "impact",
"details": "Important"
}
],
"title": "git: Git arbitrary code execution"
},
{
"cve": "CVE-2025-48385",
"cwe": {
"id": "CWE-88",
"name": "Improper Neutralization of Argument Delimiters in a Command (\u0027Argument Injection\u0027)"
},
"discovery_date": "2025-07-08T19:00:55.106787+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2378808"
}
],
"notes": [
{
"category": "description",
"text": "A bundled uri handling flaw was found in Git. When cloning a repository, Git knows to optionally fetch a bundle advertised by the remote server, which allows the server side to offload parts of the clone to a CDN. The Git client does not perform sufficient validation of the advertised bundles, which allows the remote side to perform protocol injection.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "git: Git arbitrary file writes",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability marked as Important rather than a Moderate flaw because it enables protocol injection at the transport layer of Git\u0027s bundle-uri mechanism, allowing a remote server to manipulate how and where data is written on the client system during a clone operation. The lack of input sanitization on user-controlled values like the URI and target path means that malformed inputs containing spaces or newlines can break protocol framing, leading to arbitrary file writes. In scenarios such as CI pipelines, developer environments, or recursive clones with submodules, an attacker can exploit this to overwrite critical files or inject malicious content, potentially achieving remote code execution (RCE).",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHOSE-4.17:rhcos-aarch64-417.94.202508141510-0",
"9Base-RHOSE-4.17:rhcos-ppc64le-417.94.202508141510-0",
"9Base-RHOSE-4.17:rhcos-s390x-417.94.202508141510-0",
"9Base-RHOSE-4.17:rhcos-x86_64-417.94.202508141510-0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-48385"
},
{
"category": "external",
"summary": "RHBZ#2378808",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2378808"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-48385",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-48385"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-48385",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-48385"
},
{
"category": "external",
"summary": "https://github.com/git/git/security/advisories/GHSA-m98c-vgpc-9655",
"url": "https://github.com/git/git/security/advisories/GHSA-m98c-vgpc-9655"
}
],
"release_date": "2025-07-08T18:23:44.405000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-08-27T21:46:50+00:00",
"details": "For OpenShift Container Platform 4.17 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/html/release_notes/\n\nYou may download the oc tool and use it to inspect release image metadata for x86_64, s390x, ppc64le, and aarch64 architectures. The image digests may be found at https://quay.io/repository/openshift-release-dev/ocp-release?tab=tags.\n\nThe sha values for the release are as follows:\n\n (For x86_64 architecture)\n The image digest is sha256:fea49ae633643615f8707ecbe801b484181b87db0746d2d85592768dbddf43c9\n\n (For s390x architecture)\n The image digest is sha256:d3e9032b799e87cc82121c9da006d375845134120205fa2aa2edca033abf97d3\n\n (For ppc64le architecture)\n The image digest is sha256:6c6251666a8e89289819cdb9dd7269d1ab2d90fdcb96c2b15b2e04908d15fd88\n\n (For aarch64 architecture)\n The image digest is sha256:3b83546dc680f6e3975faf101471c4e29fdc76f406327665e22f63ff406246c0\n\nAll OpenShift Container Platform 4.17 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift CLI (oc) or web console. Instructions for upgrading a cluster are available at https://docs.redhat.com/en/documentation/openshift_container_platform/4.17/html-single/updating_clusters/index#updating-cluster-cli.",
"product_ids": [
"9Base-RHOSE-4.17:rhcos-aarch64-417.94.202508141510-0",
"9Base-RHOSE-4.17:rhcos-ppc64le-417.94.202508141510-0",
"9Base-RHOSE-4.17:rhcos-s390x-417.94.202508141510-0",
"9Base-RHOSE-4.17:rhcos-x86_64-417.94.202508141510-0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:14059"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHOSE-4.17:rhcos-aarch64-417.94.202508141510-0",
"9Base-RHOSE-4.17:rhcos-ppc64le-417.94.202508141510-0",
"9Base-RHOSE-4.17:rhcos-s390x-417.94.202508141510-0",
"9Base-RHOSE-4.17:rhcos-x86_64-417.94.202508141510-0"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 8.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:L",
"version": "3.1"
},
"products": [
"9Base-RHOSE-4.17:rhcos-aarch64-417.94.202508141510-0",
"9Base-RHOSE-4.17:rhcos-ppc64le-417.94.202508141510-0",
"9Base-RHOSE-4.17:rhcos-s390x-417.94.202508141510-0",
"9Base-RHOSE-4.17:rhcos-x86_64-417.94.202508141510-0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "git: Git arbitrary file writes"
}
]
}
rhsa-2025:14396
Vulnerability from csaf_redhat
Published
2025-08-27 21:47
Modified
2025-11-07 18:40
Summary
Red Hat Security Advisory: OpenShift Container Platform 4.15.57 bug fix and security update
Notes
Topic
Red Hat OpenShift Container Platform release 4.15.57 is now available with
updates to packages and images that fix several bugs and add enhancements.
This release includes a security update for Red Hat OpenShift Container
Platform 4.15.
Red Hat Product Security has rated this update as having a security impact
of Important. A Common Vulnerability Scoring System (CVSS) base score,
which gives a detailed severity rating, is available for each vulnerability
from the CVE link(s) in the References section.
Details
Red Hat OpenShift Container Platform is Red Hat's cloud computing
Kubernetes application platform solution designed for on-premise or private
cloud deployments.
This advisory contains the container images for Red Hat OpenShift Container
Platform 4.15.57. See the following advisory for the RPM packages for this
release:
https://access.redhat.com/errata/RHBA-2025:14395
Space precludes documenting all of the container images in this advisory.
See the following Release Notes documentation, which will be updated
shortly for this release, for details about these changes:
https://docs.redhat.com/en/documentation/openshift_container_platform/4.15/html/release_notes/
Security Fix(es):
* libxslt: Heap Use-After-Free in libxslt caused by atype corruption in
xmlAttrPtr (CVE-2025-7425)
* git: Git arbitrary code execution (CVE-2025-48384)
* git: Git arbitrary file writes (CVE-2025-48385)
* libxml2: Integer Overflow in xmlBuildQName() Leads to Stack Buffer
Overflow in libxml2 (CVE-2025-6021)
* jq: AddressSanitizer: stack-buffer-overflow in jq_fuzz_execute
(jv_string_vfmt) (CVE-2025-48060)
For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE
page(s) listed in the References section.
All OpenShift Container Platform 4.15 users are advised to upgrade to these
updated packages and images when they are available in the appropriate
release channel. To check for available updates, use the OpenShift CLI (oc)
or web console. Instructions for upgrading a cluster are available at
https://docs.redhat.com/en/documentation/openshift_container_platform/4.15/html-single/updating_clusters/index#updating-cluster-cli.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat OpenShift Container Platform release 4.15.57 is now available with\nupdates to packages and images that fix several bugs and add enhancements.\n\n This release includes a security update for Red Hat OpenShift Container\nPlatform 4.15.\n\nRed Hat Product Security has rated this update as having a security impact\nof Important. A Common Vulnerability Scoring System (CVSS) base score,\nwhich gives a detailed severity rating, is available for each vulnerability\nfrom the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat OpenShift Container Platform is Red Hat\u0027s cloud computing\nKubernetes application platform solution designed for on-premise or private\ncloud deployments.\n\nThis advisory contains the container images for Red Hat OpenShift Container\nPlatform 4.15.57. See the following advisory for the RPM packages for this\nrelease:\n\nhttps://access.redhat.com/errata/RHBA-2025:14395\n\nSpace precludes documenting all of the container images in this advisory.\nSee the following Release Notes documentation, which will be updated\nshortly for this release, for details about these changes:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.15/html/release_notes/\n\nSecurity Fix(es):\n\n* libxslt: Heap Use-After-Free in libxslt caused by atype corruption in\nxmlAttrPtr (CVE-2025-7425)\n* git: Git arbitrary code execution (CVE-2025-48384)\n* git: Git arbitrary file writes (CVE-2025-48385)\n* libxml2: Integer Overflow in xmlBuildQName() Leads to Stack Buffer\nOverflow in libxml2 (CVE-2025-6021)\n* jq: AddressSanitizer: stack-buffer-overflow in jq_fuzz_execute\n(jv_string_vfmt) (CVE-2025-48060)\n\nFor more details about the security issue(s), including the impact, a CVSS\nscore, acknowledgments, and other related information, refer to the CVE\npage(s) listed in the References section.\n\nAll OpenShift Container Platform 4.15 users are advised to upgrade to these\nupdated packages and images when they are available in the appropriate\nrelease channel. To check for available updates, use the OpenShift CLI (oc)\nor web console. Instructions for upgrading a cluster are available at\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.15/html-single/updating_clusters/index#updating-cluster-cli.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:14396",
"url": "https://access.redhat.com/errata/RHSA-2025:14396"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2367842",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2367842"
},
{
"category": "external",
"summary": "2372406",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2372406"
},
{
"category": "external",
"summary": "2378806",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2378806"
},
{
"category": "external",
"summary": "2378808",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2378808"
},
{
"category": "external",
"summary": "2379274",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2379274"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_14396.json"
}
],
"title": "Red Hat Security Advisory: OpenShift Container Platform 4.15.57 bug fix and security update",
"tracking": {
"current_release_date": "2025-11-07T18:40:20+00:00",
"generator": {
"date": "2025-11-07T18:40:20+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.12"
}
},
"id": "RHSA-2025:14396",
"initial_release_date": "2025-08-27T21:47:05+00:00",
"revision_history": [
{
"date": "2025-08-27T21:47:05+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-08-27T21:47:05+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-07T18:40:20+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat OpenShift Container Platform 4.15",
"product": {
"name": "Red Hat OpenShift Container Platform 4.15",
"product_id": "9Base-RHOSE-4.15",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:4.15::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift Enterprise"
},
{
"branches": [
{
"category": "product_version",
"name": "rhcos-aarch64-415.92.202508192014-0",
"product": {
"name": "rhcos-aarch64-415.92.202508192014-0",
"product_id": "rhcos-aarch64-415.92.202508192014-0",
"product_identification_helper": {
"purl": "pkg:generic/redhat/rhcos@415.92.202508192014?arch=aarch64"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "rhcos-ppc64le-415.92.202508192014-0",
"product": {
"name": "rhcos-ppc64le-415.92.202508192014-0",
"product_id": "rhcos-ppc64le-415.92.202508192014-0",
"product_identification_helper": {
"purl": "pkg:generic/redhat/rhcos@415.92.202508192014?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "rhcos-s390x-415.92.202508192014-0",
"product": {
"name": "rhcos-s390x-415.92.202508192014-0",
"product_id": "rhcos-s390x-415.92.202508192014-0",
"product_identification_helper": {
"purl": "pkg:generic/redhat/rhcos@415.92.202508192014?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "rhcos-x86_64-415.92.202508192014-0",
"product": {
"name": "rhcos-x86_64-415.92.202508192014-0",
"product_id": "rhcos-x86_64-415.92.202508192014-0",
"product_identification_helper": {
"purl": "pkg:generic/redhat/rhcos@415.92.202508192014?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "rhcos-aarch64-415.92.202508192014-0 as a component of Red Hat OpenShift Container Platform 4.15",
"product_id": "9Base-RHOSE-4.15:rhcos-aarch64-415.92.202508192014-0"
},
"product_reference": "rhcos-aarch64-415.92.202508192014-0",
"relates_to_product_reference": "9Base-RHOSE-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhcos-ppc64le-415.92.202508192014-0 as a component of Red Hat OpenShift Container Platform 4.15",
"product_id": "9Base-RHOSE-4.15:rhcos-ppc64le-415.92.202508192014-0"
},
"product_reference": "rhcos-ppc64le-415.92.202508192014-0",
"relates_to_product_reference": "9Base-RHOSE-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhcos-s390x-415.92.202508192014-0 as a component of Red Hat OpenShift Container Platform 4.15",
"product_id": "9Base-RHOSE-4.15:rhcos-s390x-415.92.202508192014-0"
},
"product_reference": "rhcos-s390x-415.92.202508192014-0",
"relates_to_product_reference": "9Base-RHOSE-4.15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhcos-x86_64-415.92.202508192014-0 as a component of Red Hat OpenShift Container Platform 4.15",
"product_id": "9Base-RHOSE-4.15:rhcos-x86_64-415.92.202508192014-0"
},
"product_reference": "rhcos-x86_64-415.92.202508192014-0",
"relates_to_product_reference": "9Base-RHOSE-4.15"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Ahmed Lekssays"
]
}
],
"cve": "CVE-2025-6021",
"cwe": {
"id": "CWE-121",
"name": "Stack-based Buffer Overflow"
},
"discovery_date": "2025-06-12T07:55:45.428000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2372406"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in libxml2\u0027s xmlBuildQName function, where integer overflows in buffer size calculations can lead to a stack-based buffer overflow. This issue can result in memory corruption or a denial of service when processing crafted input.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "libxml2: Integer Overflow in xmlBuildQName() Leads to Stack Buffer Overflow in libxml2",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is rated Moderate due to the lack of confidentiality impact and limited integrity concerns, with the main risk being potential denial-of-service from a crash. Exploitation requires crafted XML input and specific application behavior using xmlBuildQName. While it\u2019s a write overflow, modern mitigations make remote code execution unlikely.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHOSE-4.15:rhcos-aarch64-415.92.202508192014-0",
"9Base-RHOSE-4.15:rhcos-ppc64le-415.92.202508192014-0",
"9Base-RHOSE-4.15:rhcos-s390x-415.92.202508192014-0",
"9Base-RHOSE-4.15:rhcos-x86_64-415.92.202508192014-0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-6021"
},
{
"category": "external",
"summary": "RHBZ#2372406",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2372406"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-6021",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6021"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-6021",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-6021"
}
],
"release_date": "2025-06-12T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-08-27T21:47:05+00:00",
"details": "For OpenShift Container Platform 4.15 see the following documentation,\nwhich will be updated shortly for this release, for important instructions\non how to upgrade your cluster and fully apply this asynchronous errata\nupdate:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.15/html/release_notes/\n\nYou may download the oc tool and use it to inspect release image metadata\nfor x86_64, s390x, ppc64le, and aarch64 architectures. The image digests\nmay be found at\nhttps://quay.io/repository/openshift-release-dev/ocp-release?tab=tags.\n\nThe sha values for the release are as follows:\n\n (For x86_64 architecture)\n The image digest is sha256:dfeabcb6b9d567eaa9c6a32f0e20cc547e0fa2e972963e5cef6e9c15838328f9\n\n (For s390x architecture)\n The image digest is sha256:0a007b78ea7e6e6a4625c34e7783687a04935462d9b41eafe8663613b31eb753\n\n (For ppc64le architecture)\n The image digest is sha256:b77a48cdf0b9d89eba520588ffcd99268e3edeb56627e17395b223ca3faf8da1\n\n (For aarch64 architecture)\n The image digest is sha256:5eb9c8cac53b255dfe62cea367ff461ecf8aff32aa858df39d898e7ad60d06ab\n\nAll OpenShift Container Platform 4.15 users are advised to upgrade to these\nupdated packages and images when they are available in the appropriate\nrelease channel. To check for available updates, use the OpenShift CLI (oc)\nor web console. Instructions for upgrading a cluster are available at\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.15/html-single/updating_clusters/index#updating-cluster-cli.",
"product_ids": [
"9Base-RHOSE-4.15:rhcos-aarch64-415.92.202508192014-0",
"9Base-RHOSE-4.15:rhcos-ppc64le-415.92.202508192014-0",
"9Base-RHOSE-4.15:rhcos-s390x-415.92.202508192014-0",
"9Base-RHOSE-4.15:rhcos-x86_64-415.92.202508192014-0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:14396"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability. Users are strongly advised to apply vendor-supplied patches as soon as they become available to address the underlying integer overflow flaw in the affected code.",
"product_ids": [
"9Base-RHOSE-4.15:rhcos-aarch64-415.92.202508192014-0",
"9Base-RHOSE-4.15:rhcos-ppc64le-415.92.202508192014-0",
"9Base-RHOSE-4.15:rhcos-s390x-415.92.202508192014-0",
"9Base-RHOSE-4.15:rhcos-x86_64-415.92.202508192014-0"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHOSE-4.15:rhcos-aarch64-415.92.202508192014-0",
"9Base-RHOSE-4.15:rhcos-ppc64le-415.92.202508192014-0",
"9Base-RHOSE-4.15:rhcos-s390x-415.92.202508192014-0",
"9Base-RHOSE-4.15:rhcos-x86_64-415.92.202508192014-0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "libxml2: Integer Overflow in xmlBuildQName() Leads to Stack Buffer Overflow in libxml2"
},
{
"acknowledgments": [
{
"names": [
"Sergei Glazunov"
],
"organization": "Google Project Zero"
}
],
"cve": "CVE-2025-7425",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"discovery_date": "2025-07-10T09:37:28.172000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2379274"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in libxslt where the attribute type, atype, flags are modified in a way that corrupts internal memory management. When XSLT functions, such as the key() process, result in tree fragments, this corruption prevents the proper cleanup of ID attributes. As a result, the system may access freed memory, causing crashes or enabling attackers to trigger heap corruption.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "libxslt: Heap Use-After-Free in libxslt caused by atype corruption in xmlAttrPtr",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This heap-use-after-free vulnerability in libxslt is rated Important because it can lead to memory corruption and application crashes. The flaw arises when internal attribute metadata (atype) is modified by libxslt\u0027s xsltSetSourceNodeFlags() function during processing of result tree fragments. If the flag corruption prevents proper removal of ID references, later memory cleanup routines may operate on already-freed memory. Since libxslt is commonly used in server-side XML processing, this could result in denial-of-service or potentially facilitate code execution under certain memory reuse conditions.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHOSE-4.15:rhcos-aarch64-415.92.202508192014-0",
"9Base-RHOSE-4.15:rhcos-ppc64le-415.92.202508192014-0",
"9Base-RHOSE-4.15:rhcos-s390x-415.92.202508192014-0",
"9Base-RHOSE-4.15:rhcos-x86_64-415.92.202508192014-0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-7425"
},
{
"category": "external",
"summary": "RHBZ#2379274",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2379274"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-7425",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-7425"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-7425",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-7425"
},
{
"category": "external",
"summary": "https://gitlab.gnome.org/GNOME/libxslt/-/issues/140",
"url": "https://gitlab.gnome.org/GNOME/libxslt/-/issues/140"
}
],
"release_date": "2025-07-10T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-08-27T21:47:05+00:00",
"details": "For OpenShift Container Platform 4.15 see the following documentation,\nwhich will be updated shortly for this release, for important instructions\non how to upgrade your cluster and fully apply this asynchronous errata\nupdate:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.15/html/release_notes/\n\nYou may download the oc tool and use it to inspect release image metadata\nfor x86_64, s390x, ppc64le, and aarch64 architectures. The image digests\nmay be found at\nhttps://quay.io/repository/openshift-release-dev/ocp-release?tab=tags.\n\nThe sha values for the release are as follows:\n\n (For x86_64 architecture)\n The image digest is sha256:dfeabcb6b9d567eaa9c6a32f0e20cc547e0fa2e972963e5cef6e9c15838328f9\n\n (For s390x architecture)\n The image digest is sha256:0a007b78ea7e6e6a4625c34e7783687a04935462d9b41eafe8663613b31eb753\n\n (For ppc64le architecture)\n The image digest is sha256:b77a48cdf0b9d89eba520588ffcd99268e3edeb56627e17395b223ca3faf8da1\n\n (For aarch64 architecture)\n The image digest is sha256:5eb9c8cac53b255dfe62cea367ff461ecf8aff32aa858df39d898e7ad60d06ab\n\nAll OpenShift Container Platform 4.15 users are advised to upgrade to these\nupdated packages and images when they are available in the appropriate\nrelease channel. To check for available updates, use the OpenShift CLI (oc)\nor web console. Instructions for upgrading a cluster are available at\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.15/html-single/updating_clusters/index#updating-cluster-cli.",
"product_ids": [
"9Base-RHOSE-4.15:rhcos-aarch64-415.92.202508192014-0",
"9Base-RHOSE-4.15:rhcos-ppc64le-415.92.202508192014-0",
"9Base-RHOSE-4.15:rhcos-s390x-415.92.202508192014-0",
"9Base-RHOSE-4.15:rhcos-x86_64-415.92.202508192014-0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:14396"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHOSE-4.15:rhcos-aarch64-415.92.202508192014-0",
"9Base-RHOSE-4.15:rhcos-ppc64le-415.92.202508192014-0",
"9Base-RHOSE-4.15:rhcos-s390x-415.92.202508192014-0",
"9Base-RHOSE-4.15:rhcos-x86_64-415.92.202508192014-0"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"9Base-RHOSE-4.15:rhcos-aarch64-415.92.202508192014-0",
"9Base-RHOSE-4.15:rhcos-ppc64le-415.92.202508192014-0",
"9Base-RHOSE-4.15:rhcos-s390x-415.92.202508192014-0",
"9Base-RHOSE-4.15:rhcos-x86_64-415.92.202508192014-0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "libxslt: Heap Use-After-Free in libxslt caused by atype corruption in xmlAttrPtr"
},
{
"cve": "CVE-2025-48060",
"cwe": {
"id": "CWE-126",
"name": "Buffer Over-read"
},
"discovery_date": "2025-05-21T18:00:55.721838+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2367842"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in jq, a command line JSON processor. A specially crafted input can cause a heap-based buffer over-read when formatting an empty string because it was not properly null-terminated, causing a crash and resulting in a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "jq: AddressSanitizer: stack-buffer-overflow in jq_fuzz_execute (jv_string_vfmt)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "To exploit this flaw, an attacker needs to trick a user into processing a specially crafted JSON input, allowing an attacker to trigger a buffer over-read of 2 bytes and cause a crash in jq with no other security impact. Due to these reasons, this flaw has been rated with a Moderate severity.\n\nWithin regulated environments, a combination of the following controls acts as a significant barrier to successfully exploiting a CWE-126: Buffer Over-read vulnerability and therefore downgrades the severity of this particular CVE from Moderate to Low.\n\nMemory access boundaries are enforced through secure coding practices, including bounds checking and automated detection of over-read conditions during development. Static analysis and peer reviews catch improper memory handling early, reducing the risk of vulnerabilities reaching production. Memory protection mechanisms restrict access to allocated regions at runtime, and process isolation contains memory faults within the affected workload. Additionally, a defense-in-depth monitoring strategy supports real-time detection of anomalous memory activity, enabling rapid response and limiting potential impact.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHOSE-4.15:rhcos-aarch64-415.92.202508192014-0",
"9Base-RHOSE-4.15:rhcos-ppc64le-415.92.202508192014-0",
"9Base-RHOSE-4.15:rhcos-s390x-415.92.202508192014-0",
"9Base-RHOSE-4.15:rhcos-x86_64-415.92.202508192014-0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-48060"
},
{
"category": "external",
"summary": "RHBZ#2367842",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2367842"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-48060",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-48060"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-48060",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-48060"
},
{
"category": "external",
"summary": "https://github.com/jqlang/jq/security/advisories/GHSA-p7rr-28xf-3m5w",
"url": "https://github.com/jqlang/jq/security/advisories/GHSA-p7rr-28xf-3m5w"
}
],
"release_date": "2025-05-21T17:32:43.602000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-08-27T21:47:05+00:00",
"details": "For OpenShift Container Platform 4.15 see the following documentation,\nwhich will be updated shortly for this release, for important instructions\non how to upgrade your cluster and fully apply this asynchronous errata\nupdate:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.15/html/release_notes/\n\nYou may download the oc tool and use it to inspect release image metadata\nfor x86_64, s390x, ppc64le, and aarch64 architectures. The image digests\nmay be found at\nhttps://quay.io/repository/openshift-release-dev/ocp-release?tab=tags.\n\nThe sha values for the release are as follows:\n\n (For x86_64 architecture)\n The image digest is sha256:dfeabcb6b9d567eaa9c6a32f0e20cc547e0fa2e972963e5cef6e9c15838328f9\n\n (For s390x architecture)\n The image digest is sha256:0a007b78ea7e6e6a4625c34e7783687a04935462d9b41eafe8663613b31eb753\n\n (For ppc64le architecture)\n The image digest is sha256:b77a48cdf0b9d89eba520588ffcd99268e3edeb56627e17395b223ca3faf8da1\n\n (For aarch64 architecture)\n The image digest is sha256:5eb9c8cac53b255dfe62cea367ff461ecf8aff32aa858df39d898e7ad60d06ab\n\nAll OpenShift Container Platform 4.15 users are advised to upgrade to these\nupdated packages and images when they are available in the appropriate\nrelease channel. To check for available updates, use the OpenShift CLI (oc)\nor web console. Instructions for upgrading a cluster are available at\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.15/html-single/updating_clusters/index#updating-cluster-cli.",
"product_ids": [
"9Base-RHOSE-4.15:rhcos-aarch64-415.92.202508192014-0",
"9Base-RHOSE-4.15:rhcos-ppc64le-415.92.202508192014-0",
"9Base-RHOSE-4.15:rhcos-s390x-415.92.202508192014-0",
"9Base-RHOSE-4.15:rhcos-x86_64-415.92.202508192014-0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:14396"
},
{
"category": "workaround",
"details": "Do not process untrusted input with the jq command line JSON processor.",
"product_ids": [
"9Base-RHOSE-4.15:rhcos-aarch64-415.92.202508192014-0",
"9Base-RHOSE-4.15:rhcos-ppc64le-415.92.202508192014-0",
"9Base-RHOSE-4.15:rhcos-s390x-415.92.202508192014-0",
"9Base-RHOSE-4.15:rhcos-x86_64-415.92.202508192014-0"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHOSE-4.15:rhcos-aarch64-415.92.202508192014-0",
"9Base-RHOSE-4.15:rhcos-ppc64le-415.92.202508192014-0",
"9Base-RHOSE-4.15:rhcos-s390x-415.92.202508192014-0",
"9Base-RHOSE-4.15:rhcos-x86_64-415.92.202508192014-0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "jq: AddressSanitizer: stack-buffer-overflow in jq_fuzz_execute (jv_string_vfmt)"
},
{
"cve": "CVE-2025-48384",
"cwe": {
"id": "CWE-59",
"name": "Improper Link Resolution Before File Access (\u0027Link Following\u0027)"
},
"discovery_date": "2025-07-08T19:00:48.297925+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2378806"
}
],
"notes": [
{
"category": "description",
"text": "A line-end handling flaw was found in Git. When writing a config entry, values with a trailing carriage return (CR) are not quoted, resulting in the CR being lost when the config is read later. When initializing a submodule, if the submodule path contains a trailing CR, the altered path is read, resulting in the submodule being checked out to an incorrect location.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "git: Git arbitrary code execution",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability marked as Important and not Moderate flaw because it undermines Git\u2019s path and config integrity by allowing carriage return (\\r) injection to manipulate submodule checkout behavior. Git previously failed to quote config values containing trailing CR, causing the value to be misinterpreted when read back. In the context of submodules, this leads to incorrect path resolution, allowing an attacker to redirect the checkout path via a symlink to a sensitive directory like .git/modules/\u003csubmodule\u003e/hooks. If an executable post-checkout hook exists there, it could be inadvertently executed, resulting in arbitrary code execution during submodule operations. This is particularly dangerous in automated CI/CD pipelines or multi-repo projects where submodules are initialized or updated without manual inspection.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHOSE-4.15:rhcos-aarch64-415.92.202508192014-0",
"9Base-RHOSE-4.15:rhcos-ppc64le-415.92.202508192014-0",
"9Base-RHOSE-4.15:rhcos-s390x-415.92.202508192014-0",
"9Base-RHOSE-4.15:rhcos-x86_64-415.92.202508192014-0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-48384"
},
{
"category": "external",
"summary": "RHBZ#2378806",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2378806"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-48384",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-48384"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-48384",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-48384"
},
{
"category": "external",
"summary": "https://dgl.cx/2025/07/git-clone-submodule-cve-2025-48384",
"url": "https://dgl.cx/2025/07/git-clone-submodule-cve-2025-48384"
},
{
"category": "external",
"summary": "https://github.com/git/git/commit/05e9cd64ee23bbadcea6bcffd6660ed02b8eab89",
"url": "https://github.com/git/git/commit/05e9cd64ee23bbadcea6bcffd6660ed02b8eab89"
},
{
"category": "external",
"summary": "https://github.com/git/git/security/advisories/GHSA-vwqx-4fm8-6qc9",
"url": "https://github.com/git/git/security/advisories/GHSA-vwqx-4fm8-6qc9"
},
{
"category": "external",
"summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog",
"url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
}
],
"release_date": "2025-07-08T18:23:48.710000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-08-27T21:47:05+00:00",
"details": "For OpenShift Container Platform 4.15 see the following documentation,\nwhich will be updated shortly for this release, for important instructions\non how to upgrade your cluster and fully apply this asynchronous errata\nupdate:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.15/html/release_notes/\n\nYou may download the oc tool and use it to inspect release image metadata\nfor x86_64, s390x, ppc64le, and aarch64 architectures. The image digests\nmay be found at\nhttps://quay.io/repository/openshift-release-dev/ocp-release?tab=tags.\n\nThe sha values for the release are as follows:\n\n (For x86_64 architecture)\n The image digest is sha256:dfeabcb6b9d567eaa9c6a32f0e20cc547e0fa2e972963e5cef6e9c15838328f9\n\n (For s390x architecture)\n The image digest is sha256:0a007b78ea7e6e6a4625c34e7783687a04935462d9b41eafe8663613b31eb753\n\n (For ppc64le architecture)\n The image digest is sha256:b77a48cdf0b9d89eba520588ffcd99268e3edeb56627e17395b223ca3faf8da1\n\n (For aarch64 architecture)\n The image digest is sha256:5eb9c8cac53b255dfe62cea367ff461ecf8aff32aa858df39d898e7ad60d06ab\n\nAll OpenShift Container Platform 4.15 users are advised to upgrade to these\nupdated packages and images when they are available in the appropriate\nrelease channel. To check for available updates, use the OpenShift CLI (oc)\nor web console. Instructions for upgrading a cluster are available at\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.15/html-single/updating_clusters/index#updating-cluster-cli.",
"product_ids": [
"9Base-RHOSE-4.15:rhcos-aarch64-415.92.202508192014-0",
"9Base-RHOSE-4.15:rhcos-ppc64le-415.92.202508192014-0",
"9Base-RHOSE-4.15:rhcos-s390x-415.92.202508192014-0",
"9Base-RHOSE-4.15:rhcos-x86_64-415.92.202508192014-0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:14396"
},
{
"category": "workaround",
"details": "To mitigate this issue, avoid using --recurse-submodules when cloning repositories from untrusted sources; instead, clone normally and only initialize or update submodules manually after reviewing them.",
"product_ids": [
"9Base-RHOSE-4.15:rhcos-aarch64-415.92.202508192014-0",
"9Base-RHOSE-4.15:rhcos-ppc64le-415.92.202508192014-0",
"9Base-RHOSE-4.15:rhcos-s390x-415.92.202508192014-0",
"9Base-RHOSE-4.15:rhcos-x86_64-415.92.202508192014-0"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.0,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"9Base-RHOSE-4.15:rhcos-aarch64-415.92.202508192014-0",
"9Base-RHOSE-4.15:rhcos-ppc64le-415.92.202508192014-0",
"9Base-RHOSE-4.15:rhcos-s390x-415.92.202508192014-0",
"9Base-RHOSE-4.15:rhcos-x86_64-415.92.202508192014-0"
]
}
],
"threats": [
{
"category": "exploit_status",
"date": "2025-08-25T00:00:00+00:00",
"details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
},
{
"category": "impact",
"details": "Important"
}
],
"title": "git: Git arbitrary code execution"
},
{
"cve": "CVE-2025-48385",
"cwe": {
"id": "CWE-88",
"name": "Improper Neutralization of Argument Delimiters in a Command (\u0027Argument Injection\u0027)"
},
"discovery_date": "2025-07-08T19:00:55.106787+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2378808"
}
],
"notes": [
{
"category": "description",
"text": "A bundled uri handling flaw was found in Git. When cloning a repository, Git knows to optionally fetch a bundle advertised by the remote server, which allows the server side to offload parts of the clone to a CDN. The Git client does not perform sufficient validation of the advertised bundles, which allows the remote side to perform protocol injection.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "git: Git arbitrary file writes",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability marked as Important rather than a Moderate flaw because it enables protocol injection at the transport layer of Git\u0027s bundle-uri mechanism, allowing a remote server to manipulate how and where data is written on the client system during a clone operation. The lack of input sanitization on user-controlled values like the URI and target path means that malformed inputs containing spaces or newlines can break protocol framing, leading to arbitrary file writes. In scenarios such as CI pipelines, developer environments, or recursive clones with submodules, an attacker can exploit this to overwrite critical files or inject malicious content, potentially achieving remote code execution (RCE).",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHOSE-4.15:rhcos-aarch64-415.92.202508192014-0",
"9Base-RHOSE-4.15:rhcos-ppc64le-415.92.202508192014-0",
"9Base-RHOSE-4.15:rhcos-s390x-415.92.202508192014-0",
"9Base-RHOSE-4.15:rhcos-x86_64-415.92.202508192014-0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-48385"
},
{
"category": "external",
"summary": "RHBZ#2378808",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2378808"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-48385",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-48385"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-48385",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-48385"
},
{
"category": "external",
"summary": "https://github.com/git/git/security/advisories/GHSA-m98c-vgpc-9655",
"url": "https://github.com/git/git/security/advisories/GHSA-m98c-vgpc-9655"
}
],
"release_date": "2025-07-08T18:23:44.405000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-08-27T21:47:05+00:00",
"details": "For OpenShift Container Platform 4.15 see the following documentation,\nwhich will be updated shortly for this release, for important instructions\non how to upgrade your cluster and fully apply this asynchronous errata\nupdate:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.15/html/release_notes/\n\nYou may download the oc tool and use it to inspect release image metadata\nfor x86_64, s390x, ppc64le, and aarch64 architectures. The image digests\nmay be found at\nhttps://quay.io/repository/openshift-release-dev/ocp-release?tab=tags.\n\nThe sha values for the release are as follows:\n\n (For x86_64 architecture)\n The image digest is sha256:dfeabcb6b9d567eaa9c6a32f0e20cc547e0fa2e972963e5cef6e9c15838328f9\n\n (For s390x architecture)\n The image digest is sha256:0a007b78ea7e6e6a4625c34e7783687a04935462d9b41eafe8663613b31eb753\n\n (For ppc64le architecture)\n The image digest is sha256:b77a48cdf0b9d89eba520588ffcd99268e3edeb56627e17395b223ca3faf8da1\n\n (For aarch64 architecture)\n The image digest is sha256:5eb9c8cac53b255dfe62cea367ff461ecf8aff32aa858df39d898e7ad60d06ab\n\nAll OpenShift Container Platform 4.15 users are advised to upgrade to these\nupdated packages and images when they are available in the appropriate\nrelease channel. To check for available updates, use the OpenShift CLI (oc)\nor web console. Instructions for upgrading a cluster are available at\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.15/html-single/updating_clusters/index#updating-cluster-cli.",
"product_ids": [
"9Base-RHOSE-4.15:rhcos-aarch64-415.92.202508192014-0",
"9Base-RHOSE-4.15:rhcos-ppc64le-415.92.202508192014-0",
"9Base-RHOSE-4.15:rhcos-s390x-415.92.202508192014-0",
"9Base-RHOSE-4.15:rhcos-x86_64-415.92.202508192014-0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:14396"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHOSE-4.15:rhcos-aarch64-415.92.202508192014-0",
"9Base-RHOSE-4.15:rhcos-ppc64le-415.92.202508192014-0",
"9Base-RHOSE-4.15:rhcos-s390x-415.92.202508192014-0",
"9Base-RHOSE-4.15:rhcos-x86_64-415.92.202508192014-0"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 8.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:L",
"version": "3.1"
},
"products": [
"9Base-RHOSE-4.15:rhcos-aarch64-415.92.202508192014-0",
"9Base-RHOSE-4.15:rhcos-ppc64le-415.92.202508192014-0",
"9Base-RHOSE-4.15:rhcos-s390x-415.92.202508192014-0",
"9Base-RHOSE-4.15:rhcos-x86_64-415.92.202508192014-0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "git: Git arbitrary file writes"
}
]
}
rhsa-2025:15672
Vulnerability from csaf_redhat
Published
2025-09-18 05:46
Modified
2025-11-12 20:09
Summary
Red Hat Security Advisory: OpenShift Container Platform 4.13.60 bug fix and security update
Notes
Topic
Red Hat OpenShift Container Platform release 4.13.60 is now available with
updates to packages and images that fix several bugs and add enhancements.
This release includes a security update for Red Hat OpenShift Container
Platform 4.13.
Red Hat Product Security has rated this update as having a security impact
of Important. A Common Vulnerability Scoring System (CVSS) base score,
which gives a detailed severity rating, is available for each vulnerability
from the CVE link(s) in the References section.
Details
Red Hat OpenShift Container Platform is Red Hat's cloud computing
Kubernetes application platform solution designed for on-premise or private
cloud deployments.
This advisory contains the container images for Red Hat OpenShift Container
Platform 4.13.60. There are no RPM packages for this release:
Space precludes documenting all of the container images in this advisory.
See the following Release Notes documentation, which will be updated
shortly for this release, for details about these changes:
https://docs.redhat.com/en/documentation/openshift_container_platform/4.13/html/release_notes
Security Fix(es):
* libxslt: Heap Use-After-Free in libxslt caused by atype corruption in
xmlAttrPtr (CVE-2025-7425)
* sudo: LPE via host option (CVE-2025-32462)
* git: Git arbitrary code execution (CVE-2025-48384)
* git: Git arbitrary file writes (CVE-2025-48385)
* libxml2: Integer Overflow in xmlBuildQName() Leads to Stack Buffer
Overflow in libxml2 (CVE-2025-6021)
* libxml2: Out-of-Bounds Read in libxml2 (CVE-2025-32414)
* libxml2: Out-of-bounds Read in xmlSchemaIDCFillNodeTables
(CVE-2025-32415)
* jq: AddressSanitizer: stack-buffer-overflow in jq_fuzz_execute
(jv_string_vfmt) (CVE-2025-48060)
For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE
page(s) listed in the References section.
All OpenShift Container Platform 4.13 users are advised to upgrade to these
updated packages and images when they are available in the appropriate
release channel. To check for available updates, use the OpenShift CLI (oc)
or web console. Instructions for upgrading a cluster are available at
https://docs.redhat.com/en/documentation/openshift_container_platform/4.13/html-single/updating_clusters/index#updating-cluster-within-minor.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat OpenShift Container Platform release 4.13.60 is now available with\nupdates to packages and images that fix several bugs and add enhancements.\n\nThis release includes a security update for Red Hat OpenShift Container\nPlatform 4.13.\n\nRed Hat Product Security has rated this update as having a security impact\nof Important. A Common Vulnerability Scoring System (CVSS) base score,\nwhich gives a detailed severity rating, is available for each vulnerability\nfrom the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat OpenShift Container Platform is Red Hat\u0027s cloud computing\nKubernetes application platform solution designed for on-premise or private\ncloud deployments.\n\nThis advisory contains the container images for Red Hat OpenShift Container\nPlatform 4.13.60. There are no RPM packages for this release:\n\nSpace precludes documenting all of the container images in this advisory.\nSee the following Release Notes documentation, which will be updated\nshortly for this release, for details about these changes:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.13/html/release_notes\n\nSecurity Fix(es):\n\n* libxslt: Heap Use-After-Free in libxslt caused by atype corruption in\nxmlAttrPtr (CVE-2025-7425)\n* sudo: LPE via host option (CVE-2025-32462)\n* git: Git arbitrary code execution (CVE-2025-48384)\n* git: Git arbitrary file writes (CVE-2025-48385)\n* libxml2: Integer Overflow in xmlBuildQName() Leads to Stack Buffer\nOverflow in libxml2 (CVE-2025-6021)\n* libxml2: Out-of-Bounds Read in libxml2 (CVE-2025-32414)\n* libxml2: Out-of-bounds Read in xmlSchemaIDCFillNodeTables\n(CVE-2025-32415)\n* jq: AddressSanitizer: stack-buffer-overflow in jq_fuzz_execute\n(jv_string_vfmt) (CVE-2025-48060)\n\nFor more details about the security issue(s), including the impact, a CVSS\nscore, acknowledgments, and other related information, refer to the CVE\npage(s) listed in the References section.\n\nAll OpenShift Container Platform 4.13 users are advised to upgrade to these\nupdated packages and images when they are available in the appropriate\nrelease channel. To check for available updates, use the OpenShift CLI (oc)\nor web console. Instructions for upgrading a cluster are available at\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.13/html-single/updating_clusters/index#updating-cluster-within-minor.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:15672",
"url": "https://access.redhat.com/errata/RHSA-2025:15672"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2358121",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2358121"
},
{
"category": "external",
"summary": "2360768",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2360768"
},
{
"category": "external",
"summary": "2367842",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2367842"
},
{
"category": "external",
"summary": "2372406",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2372406"
},
{
"category": "external",
"summary": "2374692",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2374692"
},
{
"category": "external",
"summary": "2378806",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2378806"
},
{
"category": "external",
"summary": "2378808",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2378808"
},
{
"category": "external",
"summary": "2379274",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2379274"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_15672.json"
}
],
"title": "Red Hat Security Advisory: OpenShift Container Platform 4.13.60 bug fix and security update",
"tracking": {
"current_release_date": "2025-11-12T20:09:35+00:00",
"generator": {
"date": "2025-11-12T20:09:35+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.12"
}
},
"id": "RHSA-2025:15672",
"initial_release_date": "2025-09-18T05:46:13+00:00",
"revision_history": [
{
"date": "2025-09-18T05:46:13+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-09-18T05:46:13+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-12T20:09:35+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat OpenShift Container Platform 4.13",
"product": {
"name": "Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:4.13::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift Enterprise"
},
{
"branches": [
{
"category": "product_version",
"name": "rhcos-x86_64-413.92.202509030117-0",
"product": {
"name": "rhcos-x86_64-413.92.202509030117-0",
"product_id": "rhcos-x86_64-413.92.202509030117-0",
"product_identification_helper": {
"purl": "pkg:generic/redhat/rhcos@413.92.202509030117?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "rhcos-x86_64-413.92.202509030117-0 as a component of Red Hat OpenShift Container Platform 4.13",
"product_id": "9Base-RHOSE-4.13:rhcos-x86_64-413.92.202509030117-0"
},
"product_reference": "rhcos-x86_64-413.92.202509030117-0",
"relates_to_product_reference": "9Base-RHOSE-4.13"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Ahmed Lekssays"
]
}
],
"cve": "CVE-2025-6021",
"cwe": {
"id": "CWE-121",
"name": "Stack-based Buffer Overflow"
},
"discovery_date": "2025-06-12T07:55:45.428000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2372406"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in libxml2\u0027s xmlBuildQName function, where integer overflows in buffer size calculations can lead to a stack-based buffer overflow. This issue can result in memory corruption or a denial of service when processing crafted input.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "libxml2: Integer Overflow in xmlBuildQName() Leads to Stack Buffer Overflow in libxml2",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is rated Moderate due to the lack of confidentiality impact and limited integrity concerns, with the main risk being potential denial-of-service from a crash. Exploitation requires crafted XML input and specific application behavior using xmlBuildQName. While it\u2019s a write overflow, modern mitigations make remote code execution unlikely.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHOSE-4.13:rhcos-x86_64-413.92.202509030117-0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-6021"
},
{
"category": "external",
"summary": "RHBZ#2372406",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2372406"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-6021",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6021"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-6021",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-6021"
}
],
"release_date": "2025-06-12T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-09-18T05:46:13+00:00",
"details": "For OpenShift Container Platform 4.13 see the following documentation,\nwhich will be updated shortly for this release, for important instructions\non how to upgrade your cluster and fully apply this asynchronous errata\nupdate:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.13/html/release_notes\n\nYou may download the oc tool and use it to inspect release image metadata\nfor x86_64, s390x, ppc64le, and aarch64 architectures. The image digests\nmay be found at\nhttps://quay.io/repository/openshift-release-dev/ocp-release?tab=tags.\n\n The sha value for the release is as follows:\n\n (For x86_64 architecture)\n The image digest is sha256:32f55a5ff24713e240a293ced4f8cb202bbdf482095593e226d1ea4397fefe8e\n\nAll OpenShift Container Platform 4.13 users are advised to upgrade to these\nupdated packages and images when they are available in the appropriate\nrelease channel. To check for available updates, use the OpenShift CLI (oc)\nor web console. Instructions for upgrading a cluster are available at\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.13/html-single/updating_clusters/index#updating-cluster-within-minor.",
"product_ids": [
"9Base-RHOSE-4.13:rhcos-x86_64-413.92.202509030117-0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:15672"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability. Users are strongly advised to apply vendor-supplied patches as soon as they become available to address the underlying integer overflow flaw in the affected code.",
"product_ids": [
"9Base-RHOSE-4.13:rhcos-x86_64-413.92.202509030117-0"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHOSE-4.13:rhcos-x86_64-413.92.202509030117-0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "libxml2: Integer Overflow in xmlBuildQName() Leads to Stack Buffer Overflow in libxml2"
},
{
"acknowledgments": [
{
"names": [
"Sergei Glazunov"
],
"organization": "Google Project Zero"
}
],
"cve": "CVE-2025-7425",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"discovery_date": "2025-07-10T09:37:28.172000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2379274"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in libxslt where the attribute type, atype, flags are modified in a way that corrupts internal memory management. When XSLT functions, such as the key() process, result in tree fragments, this corruption prevents the proper cleanup of ID attributes. As a result, the system may access freed memory, causing crashes or enabling attackers to trigger heap corruption.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "libxslt: Heap Use-After-Free in libxslt caused by atype corruption in xmlAttrPtr",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This heap-use-after-free vulnerability in libxslt is rated Important because it can lead to memory corruption and application crashes. The flaw arises when internal attribute metadata (atype) is modified by libxslt\u0027s xsltSetSourceNodeFlags() function during processing of result tree fragments. If the flag corruption prevents proper removal of ID references, later memory cleanup routines may operate on already-freed memory. Since libxslt is commonly used in server-side XML processing, this could result in denial-of-service or potentially facilitate code execution under certain memory reuse conditions.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHOSE-4.13:rhcos-x86_64-413.92.202509030117-0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-7425"
},
{
"category": "external",
"summary": "RHBZ#2379274",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2379274"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-7425",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-7425"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-7425",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-7425"
},
{
"category": "external",
"summary": "https://gitlab.gnome.org/GNOME/libxslt/-/issues/140",
"url": "https://gitlab.gnome.org/GNOME/libxslt/-/issues/140"
}
],
"release_date": "2025-07-10T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-09-18T05:46:13+00:00",
"details": "For OpenShift Container Platform 4.13 see the following documentation,\nwhich will be updated shortly for this release, for important instructions\non how to upgrade your cluster and fully apply this asynchronous errata\nupdate:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.13/html/release_notes\n\nYou may download the oc tool and use it to inspect release image metadata\nfor x86_64, s390x, ppc64le, and aarch64 architectures. The image digests\nmay be found at\nhttps://quay.io/repository/openshift-release-dev/ocp-release?tab=tags.\n\n The sha value for the release is as follows:\n\n (For x86_64 architecture)\n The image digest is sha256:32f55a5ff24713e240a293ced4f8cb202bbdf482095593e226d1ea4397fefe8e\n\nAll OpenShift Container Platform 4.13 users are advised to upgrade to these\nupdated packages and images when they are available in the appropriate\nrelease channel. To check for available updates, use the OpenShift CLI (oc)\nor web console. Instructions for upgrading a cluster are available at\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.13/html-single/updating_clusters/index#updating-cluster-within-minor.",
"product_ids": [
"9Base-RHOSE-4.13:rhcos-x86_64-413.92.202509030117-0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:15672"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHOSE-4.13:rhcos-x86_64-413.92.202509030117-0"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"9Base-RHOSE-4.13:rhcos-x86_64-413.92.202509030117-0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "libxslt: Heap Use-After-Free in libxslt caused by atype corruption in xmlAttrPtr"
},
{
"cve": "CVE-2025-32414",
"cwe": {
"id": "CWE-393",
"name": "Return of Wrong Status Code"
},
"discovery_date": "2025-04-08T04:00:51.284113+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2358121"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in libxml2. This vulnerability allows out-of-bounds memory access due to incorrect handling of return values in xmlPythonFileRead and xmlPythonFileReadRaw. This is caused by a mismatch between the length of the file in bytes vs the length in characters, as unicode characters can occupy up to 4 bytes per character.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "libxml2: Out-of-Bounds Read in libxml2",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This bug affects parsing of text streams using:\n- the Python bindings (pending deprecation: https://gitlab.gnome.org/GNOME/libxml2/-/issues/891)\n- the libxml2 SAX driver drv_libxml2,\n- the XML Reader API\n\nParsing of binary streams is not affected by this vulnerability.\n\nThe vulnerability exists in the libxml2 package the bug arises because of a mismatch between characters vs. bytes handling: functions xmlPythonFileRead and xmlPythonFileReadRaw may compute a length incorrectly (mistaking character count for byte count), but for a succesful exploitation of this bug requires local access, on top of that the path to exploiation is non trivial, where handling of python binding\u0027s and specific input handling of bytes and charcters are required which makes this outside the scope of an attacker and increases the attack complexity, for these reasons this has been marked as moderate by redhat.\n\n\nWithin regulated environments, a combination of the following controls acts as a significant barrier to successfully exploiting a CWE-393: Return of Wrong Status Code vulnerability and therefore downgrades the severity of this particular CVE from Moderate to Low.\n\nThe platform enforces hardening guidelines to apply the most restrictive settings necessary for operational needs, while baseline configurations maintain secure system and software states. A defense-in-depth monitoring strategy includes perimeter firewalls and endpoint protection services that detect and respond to threats in real time, helping prevent or limit exploitation attempts. Robust input validation and error handling ensure all user inputs are thoroughly validated, supporting consistent and secure system responses.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHOSE-4.13:rhcos-x86_64-413.92.202509030117-0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-32414"
},
{
"category": "external",
"summary": "RHBZ#2358121",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2358121"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-32414",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-32414"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-32414",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-32414"
},
{
"category": "external",
"summary": "https://gitlab.gnome.org/GNOME/libxml2/-/issues/889",
"url": "https://gitlab.gnome.org/GNOME/libxml2/-/issues/889"
}
],
"release_date": "2025-04-08T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-09-18T05:46:13+00:00",
"details": "For OpenShift Container Platform 4.13 see the following documentation,\nwhich will be updated shortly for this release, for important instructions\non how to upgrade your cluster and fully apply this asynchronous errata\nupdate:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.13/html/release_notes\n\nYou may download the oc tool and use it to inspect release image metadata\nfor x86_64, s390x, ppc64le, and aarch64 architectures. The image digests\nmay be found at\nhttps://quay.io/repository/openshift-release-dev/ocp-release?tab=tags.\n\n The sha value for the release is as follows:\n\n (For x86_64 architecture)\n The image digest is sha256:32f55a5ff24713e240a293ced4f8cb202bbdf482095593e226d1ea4397fefe8e\n\nAll OpenShift Container Platform 4.13 users are advised to upgrade to these\nupdated packages and images when they are available in the appropriate\nrelease channel. To check for available updates, use the OpenShift CLI (oc)\nor web console. Instructions for upgrading a cluster are available at\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.13/html-single/updating_clusters/index#updating-cluster-within-minor.",
"product_ids": [
"9Base-RHOSE-4.13:rhcos-x86_64-413.92.202509030117-0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:15672"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHOSE-4.13:rhcos-x86_64-413.92.202509030117-0"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "LOW",
"baseScore": 5.6,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"9Base-RHOSE-4.13:rhcos-x86_64-413.92.202509030117-0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "libxml2: Out-of-Bounds Read in libxml2"
},
{
"cve": "CVE-2025-32415",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2025-04-17T18:00:46.954384+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2360768"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the libxml2 library. A heap-based underflow can be triggered when a crafted XML document is validated against an XML schema with certain identity constraints or when a crafted XML schema is used, causing a crash to the application linked to the library and resulting in a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "libxml2: Out-of-bounds Read in xmlSchemaIDCFillNodeTables",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "To exploit this issue, an attacker needs to be able to process a specially crafted XML file with the application linked to the libxml2 library. Additionally, the only security impact of this vulnerability is a denial of service.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHOSE-4.13:rhcos-x86_64-413.92.202509030117-0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-32415"
},
{
"category": "external",
"summary": "RHBZ#2360768",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2360768"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-32415",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-32415"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-32415",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-32415"
},
{
"category": "external",
"summary": "https://gitlab.gnome.org/GNOME/libxml2/-/issues/890",
"url": "https://gitlab.gnome.org/GNOME/libxml2/-/issues/890"
}
],
"release_date": "2025-04-17T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-09-18T05:46:13+00:00",
"details": "For OpenShift Container Platform 4.13 see the following documentation,\nwhich will be updated shortly for this release, for important instructions\non how to upgrade your cluster and fully apply this asynchronous errata\nupdate:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.13/html/release_notes\n\nYou may download the oc tool and use it to inspect release image metadata\nfor x86_64, s390x, ppc64le, and aarch64 architectures. The image digests\nmay be found at\nhttps://quay.io/repository/openshift-release-dev/ocp-release?tab=tags.\n\n The sha value for the release is as follows:\n\n (For x86_64 architecture)\n The image digest is sha256:32f55a5ff24713e240a293ced4f8cb202bbdf482095593e226d1ea4397fefe8e\n\nAll OpenShift Container Platform 4.13 users are advised to upgrade to these\nupdated packages and images when they are available in the appropriate\nrelease channel. To check for available updates, use the OpenShift CLI (oc)\nor web console. Instructions for upgrading a cluster are available at\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.13/html-single/updating_clusters/index#updating-cluster-within-minor.",
"product_ids": [
"9Base-RHOSE-4.13:rhcos-x86_64-413.92.202509030117-0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:15672"
},
{
"category": "workaround",
"details": "Do not process untrusted files with the libxml2 library.",
"product_ids": [
"9Base-RHOSE-4.13:rhcos-x86_64-413.92.202509030117-0"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHOSE-4.13:rhcos-x86_64-413.92.202509030117-0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "libxml2: Out-of-bounds Read in xmlSchemaIDCFillNodeTables"
},
{
"cve": "CVE-2025-32462",
"cwe": {
"id": "CWE-863",
"name": "Incorrect Authorization"
},
"discovery_date": "2025-06-24T21:21:40.408000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2374692"
}
],
"notes": [
{
"category": "description",
"text": "A privilege escalation vulnerability was found in Sudo. In certain configurations, unauthorized users can gain elevated system privileges via the Sudo host option (`-h` or `--host`). When using the default sudo security policy plugin (sudoers), the host option is intended to be used in conjunction with the list option (`-l` or `--list`) to determine what permissions a user has on a different system. However, this restriction can be bypassed, allowing a user to elevate their privileges on one system to the privileges they may have on a different system, effectively ignoring the host identifier in any sudoers rules. This vulnerability is particularly impactful for systems that share a single sudoers configuration file across multiple computers or use network-based user directories, such as LDAP, to provide sudoers rules on a system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "sudo: LPE via host option",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is classified as a Local Privilege Escalation (LPE), meaning an attacker needs an authenticated account before they could exploit it. Due to this restriction, the severity is rated Important. Additionally, for a system to be vulnerable, it must already be in a non-default configuration.\n\nThe system\u2019s sudoers file must contain rules that define that user\u2019s privileges on a different system. There are multiple mechanisms a system administrator could use to distribute sudoers rules, such as LDAP, Ansible playbooks, or via inclusion in a \u201cGolden Image,\u201d and therefore may be affected by this vulnerability. In environments using LDAP to manage sudoers files, look for sudoRoles objects that use sudoHost values to manage different levels of user privliges across multiple systems.\n\nIn situations where host A\u2019s sudoers rules include permissions defined for another host B, a user on host A could use the privileges granted to them on host B while logged into host A. For example, a sudoers file on hostA and hostB might include the following rules:\n```\nAlice\thostA = ALL\nBob\thostB = ALL\n```\nIf Bob logs into hostA and runs `sudo some command`, Sudo will check that Bob has permission to run `some command` on hostA. Since Bob does NOT have that privilege on hostA, Sudo will deny the requested command.\n\nHowever, the local Sudo rules on hostA can be bypassed if Bob logs into hostA and runs `sudo -h hostB some command`. In this case, Sudo will verify that Bob has permission to run `some command` on hostB. Since Bob does have that privilege, Sudo will run the requested command on hostA, where Bob is currently logged in.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHOSE-4.13:rhcos-x86_64-413.92.202509030117-0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-32462"
},
{
"category": "external",
"summary": "RHBZ#2374692",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2374692"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-32462",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-32462"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-32462",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-32462"
},
{
"category": "external",
"summary": "https://www.stratascale.com/vulnerability-alert-CVE-2025-32462-sudo-host",
"url": "https://www.stratascale.com/vulnerability-alert-CVE-2025-32462-sudo-host"
},
{
"category": "external",
"summary": "https://www.sudo.ws/security/advisories/host_any/",
"url": "https://www.sudo.ws/security/advisories/host_any/"
}
],
"release_date": "2025-06-30T14:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-09-18T05:46:13+00:00",
"details": "For OpenShift Container Platform 4.13 see the following documentation,\nwhich will be updated shortly for this release, for important instructions\non how to upgrade your cluster and fully apply this asynchronous errata\nupdate:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.13/html/release_notes\n\nYou may download the oc tool and use it to inspect release image metadata\nfor x86_64, s390x, ppc64le, and aarch64 architectures. The image digests\nmay be found at\nhttps://quay.io/repository/openshift-release-dev/ocp-release?tab=tags.\n\n The sha value for the release is as follows:\n\n (For x86_64 architecture)\n The image digest is sha256:32f55a5ff24713e240a293ced4f8cb202bbdf482095593e226d1ea4397fefe8e\n\nAll OpenShift Container Platform 4.13 users are advised to upgrade to these\nupdated packages and images when they are available in the appropriate\nrelease channel. To check for available updates, use the OpenShift CLI (oc)\nor web console. Instructions for upgrading a cluster are available at\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.13/html-single/updating_clusters/index#updating-cluster-within-minor.",
"product_ids": [
"9Base-RHOSE-4.13:rhcos-x86_64-413.92.202509030117-0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:15672"
},
{
"category": "workaround",
"details": "For environments using sudoers files: Remove rules defined in sudoers files that are for any system other than the local system.\n\nFor environments using LDAP: Use a narrow-scoped search path in the SSSD configuration so rules that don\u2019t apply to a system are not included in the LDAP query results.",
"product_ids": [
"9Base-RHOSE-4.13:rhcos-x86_64-413.92.202509030117-0"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.0,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"9Base-RHOSE-4.13:rhcos-x86_64-413.92.202509030117-0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "sudo: LPE via host option"
},
{
"cve": "CVE-2025-48060",
"cwe": {
"id": "CWE-126",
"name": "Buffer Over-read"
},
"discovery_date": "2025-05-21T18:00:55.721838+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2367842"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in jq, a command line JSON processor. A specially crafted input can cause a heap-based buffer over-read when formatting an empty string because it was not properly null-terminated, causing a crash and resulting in a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "jq: AddressSanitizer: stack-buffer-overflow in jq_fuzz_execute (jv_string_vfmt)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "To exploit this flaw, an attacker needs to trick a user into processing a specially crafted JSON input, allowing an attacker to trigger a buffer over-read of 2 bytes and cause a crash in jq with no other security impact. Due to these reasons, this flaw has been rated with a Moderate severity.\n\nWithin regulated environments, a combination of the following controls acts as a significant barrier to successfully exploiting a CWE-126: Buffer Over-read vulnerability and therefore downgrades the severity of this particular CVE from Moderate to Low.\n\nMemory access boundaries are enforced through secure coding practices, including bounds checking and automated detection of over-read conditions during development. Static analysis and peer reviews catch improper memory handling early, reducing the risk of vulnerabilities reaching production. Memory protection mechanisms restrict access to allocated regions at runtime, and process isolation contains memory faults within the affected workload. Additionally, a defense-in-depth monitoring strategy supports real-time detection of anomalous memory activity, enabling rapid response and limiting potential impact.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHOSE-4.13:rhcos-x86_64-413.92.202509030117-0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-48060"
},
{
"category": "external",
"summary": "RHBZ#2367842",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2367842"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-48060",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-48060"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-48060",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-48060"
},
{
"category": "external",
"summary": "https://github.com/jqlang/jq/security/advisories/GHSA-p7rr-28xf-3m5w",
"url": "https://github.com/jqlang/jq/security/advisories/GHSA-p7rr-28xf-3m5w"
}
],
"release_date": "2025-05-21T17:32:43.602000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-09-18T05:46:13+00:00",
"details": "For OpenShift Container Platform 4.13 see the following documentation,\nwhich will be updated shortly for this release, for important instructions\non how to upgrade your cluster and fully apply this asynchronous errata\nupdate:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.13/html/release_notes\n\nYou may download the oc tool and use it to inspect release image metadata\nfor x86_64, s390x, ppc64le, and aarch64 architectures. The image digests\nmay be found at\nhttps://quay.io/repository/openshift-release-dev/ocp-release?tab=tags.\n\n The sha value for the release is as follows:\n\n (For x86_64 architecture)\n The image digest is sha256:32f55a5ff24713e240a293ced4f8cb202bbdf482095593e226d1ea4397fefe8e\n\nAll OpenShift Container Platform 4.13 users are advised to upgrade to these\nupdated packages and images when they are available in the appropriate\nrelease channel. To check for available updates, use the OpenShift CLI (oc)\nor web console. Instructions for upgrading a cluster are available at\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.13/html-single/updating_clusters/index#updating-cluster-within-minor.",
"product_ids": [
"9Base-RHOSE-4.13:rhcos-x86_64-413.92.202509030117-0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:15672"
},
{
"category": "workaround",
"details": "Do not process untrusted input with the jq command line JSON processor.",
"product_ids": [
"9Base-RHOSE-4.13:rhcos-x86_64-413.92.202509030117-0"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHOSE-4.13:rhcos-x86_64-413.92.202509030117-0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "jq: AddressSanitizer: stack-buffer-overflow in jq_fuzz_execute (jv_string_vfmt)"
},
{
"cve": "CVE-2025-48384",
"cwe": {
"id": "CWE-59",
"name": "Improper Link Resolution Before File Access (\u0027Link Following\u0027)"
},
"discovery_date": "2025-07-08T19:00:48.297925+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2378806"
}
],
"notes": [
{
"category": "description",
"text": "A line-end handling flaw was found in Git. When writing a config entry, values with a trailing carriage return (CR) are not quoted, resulting in the CR being lost when the config is read later. When initializing a submodule, if the submodule path contains a trailing CR, the altered path is read, resulting in the submodule being checked out to an incorrect location.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "git: Git arbitrary code execution",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability marked as Important and not Moderate flaw because it undermines Git\u2019s path and config integrity by allowing carriage return (\\r) injection to manipulate submodule checkout behavior. Git previously failed to quote config values containing trailing CR, causing the value to be misinterpreted when read back. In the context of submodules, this leads to incorrect path resolution, allowing an attacker to redirect the checkout path via a symlink to a sensitive directory like .git/modules/\u003csubmodule\u003e/hooks. If an executable post-checkout hook exists there, it could be inadvertently executed, resulting in arbitrary code execution during submodule operations. This is particularly dangerous in automated CI/CD pipelines or multi-repo projects where submodules are initialized or updated without manual inspection.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHOSE-4.13:rhcos-x86_64-413.92.202509030117-0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-48384"
},
{
"category": "external",
"summary": "RHBZ#2378806",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2378806"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-48384",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-48384"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-48384",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-48384"
},
{
"category": "external",
"summary": "https://dgl.cx/2025/07/git-clone-submodule-cve-2025-48384",
"url": "https://dgl.cx/2025/07/git-clone-submodule-cve-2025-48384"
},
{
"category": "external",
"summary": "https://github.com/git/git/commit/05e9cd64ee23bbadcea6bcffd6660ed02b8eab89",
"url": "https://github.com/git/git/commit/05e9cd64ee23bbadcea6bcffd6660ed02b8eab89"
},
{
"category": "external",
"summary": "https://github.com/git/git/security/advisories/GHSA-vwqx-4fm8-6qc9",
"url": "https://github.com/git/git/security/advisories/GHSA-vwqx-4fm8-6qc9"
},
{
"category": "external",
"summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog",
"url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
}
],
"release_date": "2025-07-08T18:23:48.710000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-09-18T05:46:13+00:00",
"details": "For OpenShift Container Platform 4.13 see the following documentation,\nwhich will be updated shortly for this release, for important instructions\non how to upgrade your cluster and fully apply this asynchronous errata\nupdate:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.13/html/release_notes\n\nYou may download the oc tool and use it to inspect release image metadata\nfor x86_64, s390x, ppc64le, and aarch64 architectures. The image digests\nmay be found at\nhttps://quay.io/repository/openshift-release-dev/ocp-release?tab=tags.\n\n The sha value for the release is as follows:\n\n (For x86_64 architecture)\n The image digest is sha256:32f55a5ff24713e240a293ced4f8cb202bbdf482095593e226d1ea4397fefe8e\n\nAll OpenShift Container Platform 4.13 users are advised to upgrade to these\nupdated packages and images when they are available in the appropriate\nrelease channel. To check for available updates, use the OpenShift CLI (oc)\nor web console. Instructions for upgrading a cluster are available at\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.13/html-single/updating_clusters/index#updating-cluster-within-minor.",
"product_ids": [
"9Base-RHOSE-4.13:rhcos-x86_64-413.92.202509030117-0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:15672"
},
{
"category": "workaround",
"details": "To mitigate this issue, avoid using --recurse-submodules when cloning repositories from untrusted sources; instead, clone normally and only initialize or update submodules manually after reviewing them.",
"product_ids": [
"9Base-RHOSE-4.13:rhcos-x86_64-413.92.202509030117-0"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.0,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"9Base-RHOSE-4.13:rhcos-x86_64-413.92.202509030117-0"
]
}
],
"threats": [
{
"category": "exploit_status",
"date": "2025-08-25T00:00:00+00:00",
"details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
},
{
"category": "impact",
"details": "Important"
}
],
"title": "git: Git arbitrary code execution"
},
{
"cve": "CVE-2025-48385",
"cwe": {
"id": "CWE-88",
"name": "Improper Neutralization of Argument Delimiters in a Command (\u0027Argument Injection\u0027)"
},
"discovery_date": "2025-07-08T19:00:55.106787+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2378808"
}
],
"notes": [
{
"category": "description",
"text": "A bundled uri handling flaw was found in Git. When cloning a repository, Git knows to optionally fetch a bundle advertised by the remote server, which allows the server side to offload parts of the clone to a CDN. The Git client does not perform sufficient validation of the advertised bundles, which allows the remote side to perform protocol injection.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "git: Git arbitrary file writes",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability marked as Important rather than a Moderate flaw because it enables protocol injection at the transport layer of Git\u0027s bundle-uri mechanism, allowing a remote server to manipulate how and where data is written on the client system during a clone operation. The lack of input sanitization on user-controlled values like the URI and target path means that malformed inputs containing spaces or newlines can break protocol framing, leading to arbitrary file writes. In scenarios such as CI pipelines, developer environments, or recursive clones with submodules, an attacker can exploit this to overwrite critical files or inject malicious content, potentially achieving remote code execution (RCE).",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHOSE-4.13:rhcos-x86_64-413.92.202509030117-0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-48385"
},
{
"category": "external",
"summary": "RHBZ#2378808",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2378808"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-48385",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-48385"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-48385",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-48385"
},
{
"category": "external",
"summary": "https://github.com/git/git/security/advisories/GHSA-m98c-vgpc-9655",
"url": "https://github.com/git/git/security/advisories/GHSA-m98c-vgpc-9655"
}
],
"release_date": "2025-07-08T18:23:44.405000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-09-18T05:46:13+00:00",
"details": "For OpenShift Container Platform 4.13 see the following documentation,\nwhich will be updated shortly for this release, for important instructions\non how to upgrade your cluster and fully apply this asynchronous errata\nupdate:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.13/html/release_notes\n\nYou may download the oc tool and use it to inspect release image metadata\nfor x86_64, s390x, ppc64le, and aarch64 architectures. The image digests\nmay be found at\nhttps://quay.io/repository/openshift-release-dev/ocp-release?tab=tags.\n\n The sha value for the release is as follows:\n\n (For x86_64 architecture)\n The image digest is sha256:32f55a5ff24713e240a293ced4f8cb202bbdf482095593e226d1ea4397fefe8e\n\nAll OpenShift Container Platform 4.13 users are advised to upgrade to these\nupdated packages and images when they are available in the appropriate\nrelease channel. To check for available updates, use the OpenShift CLI (oc)\nor web console. Instructions for upgrading a cluster are available at\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.13/html-single/updating_clusters/index#updating-cluster-within-minor.",
"product_ids": [
"9Base-RHOSE-4.13:rhcos-x86_64-413.92.202509030117-0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:15672"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHOSE-4.13:rhcos-x86_64-413.92.202509030117-0"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 8.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:L",
"version": "3.1"
},
"products": [
"9Base-RHOSE-4.13:rhcos-x86_64-413.92.202509030117-0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "git: Git arbitrary file writes"
}
]
}
rhsa-2025:11686
Vulnerability from csaf_redhat
Published
2025-07-24 07:49
Modified
2025-11-06 23:41
Summary
Red Hat Security Advisory: git security update
Notes
Topic
An update for git is now available for Red Hat Enterprise Linux 9.4 Extended Update Support.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Git is a distributed revision control system with a decentralized architecture. As opposed to centralized version control systems with a client-server model, Git ensures that each working copy of a Git repository is an exact copy with complete revision history. This not only allows the user to work on and contribute to projects without the need to have permission to push the changes to their official repositories, but also makes it possible for the user to work with no network connection.
Security Fix(es):
* git: Git arbitrary code execution (CVE-2025-48384)
* git: Git arbitrary file writes (CVE-2025-48385)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for git is now available for Red Hat Enterprise Linux 9.4 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Git is a distributed revision control system with a decentralized architecture. As opposed to centralized version control systems with a client-server model, Git ensures that each working copy of a Git repository is an exact copy with complete revision history. This not only allows the user to work on and contribute to projects without the need to have permission to push the changes to their official repositories, but also makes it possible for the user to work with no network connection.\n\nSecurity Fix(es):\n\n* git: Git arbitrary code execution (CVE-2025-48384)\n\n* git: Git arbitrary file writes (CVE-2025-48385)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:11686",
"url": "https://access.redhat.com/errata/RHSA-2025:11686"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2378806",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2378806"
},
{
"category": "external",
"summary": "2378808",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2378808"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_11686.json"
}
],
"title": "Red Hat Security Advisory: git security update",
"tracking": {
"current_release_date": "2025-11-06T23:41:41+00:00",
"generator": {
"date": "2025-11-06T23:41:41+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.11"
}
},
"id": "RHSA-2025:11686",
"initial_release_date": "2025-07-24T07:49:46+00:00",
"revision_history": [
{
"date": "2025-07-24T07:49:46+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-07-24T07:49:46+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-06T23:41:41+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product": {
"name": "Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_eus:9.4::appstream"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "git-0:2.43.5-1.el9_4.2.src",
"product": {
"name": "git-0:2.43.5-1.el9_4.2.src",
"product_id": "git-0:2.43.5-1.el9_4.2.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git@2.43.5-1.el9_4.2?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "git-0:2.43.5-1.el9_4.2.aarch64",
"product": {
"name": "git-0:2.43.5-1.el9_4.2.aarch64",
"product_id": "git-0:2.43.5-1.el9_4.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git@2.43.5-1.el9_4.2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-core-0:2.43.5-1.el9_4.2.aarch64",
"product": {
"name": "git-core-0:2.43.5-1.el9_4.2.aarch64",
"product_id": "git-core-0:2.43.5-1.el9_4.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core@2.43.5-1.el9_4.2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-0:2.43.5-1.el9_4.2.aarch64",
"product": {
"name": "git-credential-libsecret-0:2.43.5-1.el9_4.2.aarch64",
"product_id": "git-credential-libsecret-0:2.43.5-1.el9_4.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret@2.43.5-1.el9_4.2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-daemon-0:2.43.5-1.el9_4.2.aarch64",
"product": {
"name": "git-daemon-0:2.43.5-1.el9_4.2.aarch64",
"product_id": "git-daemon-0:2.43.5-1.el9_4.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon@2.43.5-1.el9_4.2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-subtree-0:2.43.5-1.el9_4.2.aarch64",
"product": {
"name": "git-subtree-0:2.43.5-1.el9_4.2.aarch64",
"product_id": "git-subtree-0:2.43.5-1.el9_4.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-subtree@2.43.5-1.el9_4.2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-debugsource-0:2.43.5-1.el9_4.2.aarch64",
"product": {
"name": "git-debugsource-0:2.43.5-1.el9_4.2.aarch64",
"product_id": "git-debugsource-0:2.43.5-1.el9_4.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debugsource@2.43.5-1.el9_4.2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-core-debuginfo-0:2.43.5-1.el9_4.2.aarch64",
"product": {
"name": "git-core-debuginfo-0:2.43.5-1.el9_4.2.aarch64",
"product_id": "git-core-debuginfo-0:2.43.5-1.el9_4.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core-debuginfo@2.43.5-1.el9_4.2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.2.aarch64",
"product": {
"name": "git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.2.aarch64",
"product_id": "git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret-debuginfo@2.43.5-1.el9_4.2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-daemon-debuginfo-0:2.43.5-1.el9_4.2.aarch64",
"product": {
"name": "git-daemon-debuginfo-0:2.43.5-1.el9_4.2.aarch64",
"product_id": "git-daemon-debuginfo-0:2.43.5-1.el9_4.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon-debuginfo@2.43.5-1.el9_4.2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-debuginfo-0:2.43.5-1.el9_4.2.aarch64",
"product": {
"name": "git-debuginfo-0:2.43.5-1.el9_4.2.aarch64",
"product_id": "git-debuginfo-0:2.43.5-1.el9_4.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debuginfo@2.43.5-1.el9_4.2?arch=aarch64"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "git-0:2.43.5-1.el9_4.2.ppc64le",
"product": {
"name": "git-0:2.43.5-1.el9_4.2.ppc64le",
"product_id": "git-0:2.43.5-1.el9_4.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git@2.43.5-1.el9_4.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-core-0:2.43.5-1.el9_4.2.ppc64le",
"product": {
"name": "git-core-0:2.43.5-1.el9_4.2.ppc64le",
"product_id": "git-core-0:2.43.5-1.el9_4.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core@2.43.5-1.el9_4.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-0:2.43.5-1.el9_4.2.ppc64le",
"product": {
"name": "git-credential-libsecret-0:2.43.5-1.el9_4.2.ppc64le",
"product_id": "git-credential-libsecret-0:2.43.5-1.el9_4.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret@2.43.5-1.el9_4.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-daemon-0:2.43.5-1.el9_4.2.ppc64le",
"product": {
"name": "git-daemon-0:2.43.5-1.el9_4.2.ppc64le",
"product_id": "git-daemon-0:2.43.5-1.el9_4.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon@2.43.5-1.el9_4.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-subtree-0:2.43.5-1.el9_4.2.ppc64le",
"product": {
"name": "git-subtree-0:2.43.5-1.el9_4.2.ppc64le",
"product_id": "git-subtree-0:2.43.5-1.el9_4.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-subtree@2.43.5-1.el9_4.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-debugsource-0:2.43.5-1.el9_4.2.ppc64le",
"product": {
"name": "git-debugsource-0:2.43.5-1.el9_4.2.ppc64le",
"product_id": "git-debugsource-0:2.43.5-1.el9_4.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debugsource@2.43.5-1.el9_4.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-core-debuginfo-0:2.43.5-1.el9_4.2.ppc64le",
"product": {
"name": "git-core-debuginfo-0:2.43.5-1.el9_4.2.ppc64le",
"product_id": "git-core-debuginfo-0:2.43.5-1.el9_4.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core-debuginfo@2.43.5-1.el9_4.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.2.ppc64le",
"product": {
"name": "git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.2.ppc64le",
"product_id": "git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret-debuginfo@2.43.5-1.el9_4.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-daemon-debuginfo-0:2.43.5-1.el9_4.2.ppc64le",
"product": {
"name": "git-daemon-debuginfo-0:2.43.5-1.el9_4.2.ppc64le",
"product_id": "git-daemon-debuginfo-0:2.43.5-1.el9_4.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon-debuginfo@2.43.5-1.el9_4.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-debuginfo-0:2.43.5-1.el9_4.2.ppc64le",
"product": {
"name": "git-debuginfo-0:2.43.5-1.el9_4.2.ppc64le",
"product_id": "git-debuginfo-0:2.43.5-1.el9_4.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debuginfo@2.43.5-1.el9_4.2?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "git-0:2.43.5-1.el9_4.2.x86_64",
"product": {
"name": "git-0:2.43.5-1.el9_4.2.x86_64",
"product_id": "git-0:2.43.5-1.el9_4.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git@2.43.5-1.el9_4.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-core-0:2.43.5-1.el9_4.2.x86_64",
"product": {
"name": "git-core-0:2.43.5-1.el9_4.2.x86_64",
"product_id": "git-core-0:2.43.5-1.el9_4.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core@2.43.5-1.el9_4.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-0:2.43.5-1.el9_4.2.x86_64",
"product": {
"name": "git-credential-libsecret-0:2.43.5-1.el9_4.2.x86_64",
"product_id": "git-credential-libsecret-0:2.43.5-1.el9_4.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret@2.43.5-1.el9_4.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-daemon-0:2.43.5-1.el9_4.2.x86_64",
"product": {
"name": "git-daemon-0:2.43.5-1.el9_4.2.x86_64",
"product_id": "git-daemon-0:2.43.5-1.el9_4.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon@2.43.5-1.el9_4.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-subtree-0:2.43.5-1.el9_4.2.x86_64",
"product": {
"name": "git-subtree-0:2.43.5-1.el9_4.2.x86_64",
"product_id": "git-subtree-0:2.43.5-1.el9_4.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-subtree@2.43.5-1.el9_4.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-debugsource-0:2.43.5-1.el9_4.2.x86_64",
"product": {
"name": "git-debugsource-0:2.43.5-1.el9_4.2.x86_64",
"product_id": "git-debugsource-0:2.43.5-1.el9_4.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debugsource@2.43.5-1.el9_4.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-core-debuginfo-0:2.43.5-1.el9_4.2.x86_64",
"product": {
"name": "git-core-debuginfo-0:2.43.5-1.el9_4.2.x86_64",
"product_id": "git-core-debuginfo-0:2.43.5-1.el9_4.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core-debuginfo@2.43.5-1.el9_4.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.2.x86_64",
"product": {
"name": "git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.2.x86_64",
"product_id": "git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret-debuginfo@2.43.5-1.el9_4.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-daemon-debuginfo-0:2.43.5-1.el9_4.2.x86_64",
"product": {
"name": "git-daemon-debuginfo-0:2.43.5-1.el9_4.2.x86_64",
"product_id": "git-daemon-debuginfo-0:2.43.5-1.el9_4.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon-debuginfo@2.43.5-1.el9_4.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-debuginfo-0:2.43.5-1.el9_4.2.x86_64",
"product": {
"name": "git-debuginfo-0:2.43.5-1.el9_4.2.x86_64",
"product_id": "git-debuginfo-0:2.43.5-1.el9_4.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debuginfo@2.43.5-1.el9_4.2?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "git-0:2.43.5-1.el9_4.2.s390x",
"product": {
"name": "git-0:2.43.5-1.el9_4.2.s390x",
"product_id": "git-0:2.43.5-1.el9_4.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git@2.43.5-1.el9_4.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-core-0:2.43.5-1.el9_4.2.s390x",
"product": {
"name": "git-core-0:2.43.5-1.el9_4.2.s390x",
"product_id": "git-core-0:2.43.5-1.el9_4.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core@2.43.5-1.el9_4.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-0:2.43.5-1.el9_4.2.s390x",
"product": {
"name": "git-credential-libsecret-0:2.43.5-1.el9_4.2.s390x",
"product_id": "git-credential-libsecret-0:2.43.5-1.el9_4.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret@2.43.5-1.el9_4.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-daemon-0:2.43.5-1.el9_4.2.s390x",
"product": {
"name": "git-daemon-0:2.43.5-1.el9_4.2.s390x",
"product_id": "git-daemon-0:2.43.5-1.el9_4.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon@2.43.5-1.el9_4.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-subtree-0:2.43.5-1.el9_4.2.s390x",
"product": {
"name": "git-subtree-0:2.43.5-1.el9_4.2.s390x",
"product_id": "git-subtree-0:2.43.5-1.el9_4.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-subtree@2.43.5-1.el9_4.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-debugsource-0:2.43.5-1.el9_4.2.s390x",
"product": {
"name": "git-debugsource-0:2.43.5-1.el9_4.2.s390x",
"product_id": "git-debugsource-0:2.43.5-1.el9_4.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debugsource@2.43.5-1.el9_4.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-core-debuginfo-0:2.43.5-1.el9_4.2.s390x",
"product": {
"name": "git-core-debuginfo-0:2.43.5-1.el9_4.2.s390x",
"product_id": "git-core-debuginfo-0:2.43.5-1.el9_4.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core-debuginfo@2.43.5-1.el9_4.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.2.s390x",
"product": {
"name": "git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.2.s390x",
"product_id": "git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret-debuginfo@2.43.5-1.el9_4.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-daemon-debuginfo-0:2.43.5-1.el9_4.2.s390x",
"product": {
"name": "git-daemon-debuginfo-0:2.43.5-1.el9_4.2.s390x",
"product_id": "git-daemon-debuginfo-0:2.43.5-1.el9_4.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon-debuginfo@2.43.5-1.el9_4.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-debuginfo-0:2.43.5-1.el9_4.2.s390x",
"product": {
"name": "git-debuginfo-0:2.43.5-1.el9_4.2.s390x",
"product_id": "git-debuginfo-0:2.43.5-1.el9_4.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debuginfo@2.43.5-1.el9_4.2?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "git-all-0:2.43.5-1.el9_4.2.noarch",
"product": {
"name": "git-all-0:2.43.5-1.el9_4.2.noarch",
"product_id": "git-all-0:2.43.5-1.el9_4.2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-all@2.43.5-1.el9_4.2?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "git-core-doc-0:2.43.5-1.el9_4.2.noarch",
"product": {
"name": "git-core-doc-0:2.43.5-1.el9_4.2.noarch",
"product_id": "git-core-doc-0:2.43.5-1.el9_4.2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core-doc@2.43.5-1.el9_4.2?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "git-email-0:2.43.5-1.el9_4.2.noarch",
"product": {
"name": "git-email-0:2.43.5-1.el9_4.2.noarch",
"product_id": "git-email-0:2.43.5-1.el9_4.2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-email@2.43.5-1.el9_4.2?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "git-gui-0:2.43.5-1.el9_4.2.noarch",
"product": {
"name": "git-gui-0:2.43.5-1.el9_4.2.noarch",
"product_id": "git-gui-0:2.43.5-1.el9_4.2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-gui@2.43.5-1.el9_4.2?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "git-instaweb-0:2.43.5-1.el9_4.2.noarch",
"product": {
"name": "git-instaweb-0:2.43.5-1.el9_4.2.noarch",
"product_id": "git-instaweb-0:2.43.5-1.el9_4.2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-instaweb@2.43.5-1.el9_4.2?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "git-svn-0:2.43.5-1.el9_4.2.noarch",
"product": {
"name": "git-svn-0:2.43.5-1.el9_4.2.noarch",
"product_id": "git-svn-0:2.43.5-1.el9_4.2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-svn@2.43.5-1.el9_4.2?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "gitk-0:2.43.5-1.el9_4.2.noarch",
"product": {
"name": "gitk-0:2.43.5-1.el9_4.2.noarch",
"product_id": "gitk-0:2.43.5-1.el9_4.2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/gitk@2.43.5-1.el9_4.2?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "gitweb-0:2.43.5-1.el9_4.2.noarch",
"product": {
"name": "gitweb-0:2.43.5-1.el9_4.2.noarch",
"product_id": "gitweb-0:2.43.5-1.el9_4.2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/gitweb@2.43.5-1.el9_4.2?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "perl-Git-0:2.43.5-1.el9_4.2.noarch",
"product": {
"name": "perl-Git-0:2.43.5-1.el9_4.2.noarch",
"product_id": "perl-Git-0:2.43.5-1.el9_4.2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/perl-Git@2.43.5-1.el9_4.2?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "perl-Git-SVN-0:2.43.5-1.el9_4.2.noarch",
"product": {
"name": "perl-Git-SVN-0:2.43.5-1.el9_4.2.noarch",
"product_id": "perl-Git-SVN-0:2.43.5-1.el9_4.2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/perl-Git-SVN@2.43.5-1.el9_4.2?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "git-0:2.43.5-1.el9_4.2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:git-0:2.43.5-1.el9_4.2.aarch64"
},
"product_reference": "git-0:2.43.5-1.el9_4.2.aarch64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-0:2.43.5-1.el9_4.2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:git-0:2.43.5-1.el9_4.2.ppc64le"
},
"product_reference": "git-0:2.43.5-1.el9_4.2.ppc64le",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-0:2.43.5-1.el9_4.2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:git-0:2.43.5-1.el9_4.2.s390x"
},
"product_reference": "git-0:2.43.5-1.el9_4.2.s390x",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-0:2.43.5-1.el9_4.2.src as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:git-0:2.43.5-1.el9_4.2.src"
},
"product_reference": "git-0:2.43.5-1.el9_4.2.src",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-0:2.43.5-1.el9_4.2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:git-0:2.43.5-1.el9_4.2.x86_64"
},
"product_reference": "git-0:2.43.5-1.el9_4.2.x86_64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-all-0:2.43.5-1.el9_4.2.noarch as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:git-all-0:2.43.5-1.el9_4.2.noarch"
},
"product_reference": "git-all-0:2.43.5-1.el9_4.2.noarch",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-0:2.43.5-1.el9_4.2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:git-core-0:2.43.5-1.el9_4.2.aarch64"
},
"product_reference": "git-core-0:2.43.5-1.el9_4.2.aarch64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-0:2.43.5-1.el9_4.2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:git-core-0:2.43.5-1.el9_4.2.ppc64le"
},
"product_reference": "git-core-0:2.43.5-1.el9_4.2.ppc64le",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-0:2.43.5-1.el9_4.2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:git-core-0:2.43.5-1.el9_4.2.s390x"
},
"product_reference": "git-core-0:2.43.5-1.el9_4.2.s390x",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-0:2.43.5-1.el9_4.2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:git-core-0:2.43.5-1.el9_4.2.x86_64"
},
"product_reference": "git-core-0:2.43.5-1.el9_4.2.x86_64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-debuginfo-0:2.43.5-1.el9_4.2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.2.aarch64"
},
"product_reference": "git-core-debuginfo-0:2.43.5-1.el9_4.2.aarch64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-debuginfo-0:2.43.5-1.el9_4.2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.2.ppc64le"
},
"product_reference": "git-core-debuginfo-0:2.43.5-1.el9_4.2.ppc64le",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-debuginfo-0:2.43.5-1.el9_4.2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.2.s390x"
},
"product_reference": "git-core-debuginfo-0:2.43.5-1.el9_4.2.s390x",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-debuginfo-0:2.43.5-1.el9_4.2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.2.x86_64"
},
"product_reference": "git-core-debuginfo-0:2.43.5-1.el9_4.2.x86_64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-doc-0:2.43.5-1.el9_4.2.noarch as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:git-core-doc-0:2.43.5-1.el9_4.2.noarch"
},
"product_reference": "git-core-doc-0:2.43.5-1.el9_4.2.noarch",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-0:2.43.5-1.el9_4.2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.2.aarch64"
},
"product_reference": "git-credential-libsecret-0:2.43.5-1.el9_4.2.aarch64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-0:2.43.5-1.el9_4.2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.2.ppc64le"
},
"product_reference": "git-credential-libsecret-0:2.43.5-1.el9_4.2.ppc64le",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-0:2.43.5-1.el9_4.2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.2.s390x"
},
"product_reference": "git-credential-libsecret-0:2.43.5-1.el9_4.2.s390x",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-0:2.43.5-1.el9_4.2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.2.x86_64"
},
"product_reference": "git-credential-libsecret-0:2.43.5-1.el9_4.2.x86_64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.2.aarch64"
},
"product_reference": "git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.2.aarch64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.2.ppc64le"
},
"product_reference": "git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.2.ppc64le",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.2.s390x"
},
"product_reference": "git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.2.s390x",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.2.x86_64"
},
"product_reference": "git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.2.x86_64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-0:2.43.5-1.el9_4.2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:git-daemon-0:2.43.5-1.el9_4.2.aarch64"
},
"product_reference": "git-daemon-0:2.43.5-1.el9_4.2.aarch64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-0:2.43.5-1.el9_4.2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:git-daemon-0:2.43.5-1.el9_4.2.ppc64le"
},
"product_reference": "git-daemon-0:2.43.5-1.el9_4.2.ppc64le",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-0:2.43.5-1.el9_4.2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:git-daemon-0:2.43.5-1.el9_4.2.s390x"
},
"product_reference": "git-daemon-0:2.43.5-1.el9_4.2.s390x",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-0:2.43.5-1.el9_4.2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:git-daemon-0:2.43.5-1.el9_4.2.x86_64"
},
"product_reference": "git-daemon-0:2.43.5-1.el9_4.2.x86_64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-debuginfo-0:2.43.5-1.el9_4.2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.2.aarch64"
},
"product_reference": "git-daemon-debuginfo-0:2.43.5-1.el9_4.2.aarch64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-debuginfo-0:2.43.5-1.el9_4.2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.2.ppc64le"
},
"product_reference": "git-daemon-debuginfo-0:2.43.5-1.el9_4.2.ppc64le",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-debuginfo-0:2.43.5-1.el9_4.2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.2.s390x"
},
"product_reference": "git-daemon-debuginfo-0:2.43.5-1.el9_4.2.s390x",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-debuginfo-0:2.43.5-1.el9_4.2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.2.x86_64"
},
"product_reference": "git-daemon-debuginfo-0:2.43.5-1.el9_4.2.x86_64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debuginfo-0:2.43.5-1.el9_4.2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:git-debuginfo-0:2.43.5-1.el9_4.2.aarch64"
},
"product_reference": "git-debuginfo-0:2.43.5-1.el9_4.2.aarch64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debuginfo-0:2.43.5-1.el9_4.2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:git-debuginfo-0:2.43.5-1.el9_4.2.ppc64le"
},
"product_reference": "git-debuginfo-0:2.43.5-1.el9_4.2.ppc64le",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debuginfo-0:2.43.5-1.el9_4.2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:git-debuginfo-0:2.43.5-1.el9_4.2.s390x"
},
"product_reference": "git-debuginfo-0:2.43.5-1.el9_4.2.s390x",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debuginfo-0:2.43.5-1.el9_4.2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:git-debuginfo-0:2.43.5-1.el9_4.2.x86_64"
},
"product_reference": "git-debuginfo-0:2.43.5-1.el9_4.2.x86_64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debugsource-0:2.43.5-1.el9_4.2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:git-debugsource-0:2.43.5-1.el9_4.2.aarch64"
},
"product_reference": "git-debugsource-0:2.43.5-1.el9_4.2.aarch64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debugsource-0:2.43.5-1.el9_4.2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:git-debugsource-0:2.43.5-1.el9_4.2.ppc64le"
},
"product_reference": "git-debugsource-0:2.43.5-1.el9_4.2.ppc64le",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debugsource-0:2.43.5-1.el9_4.2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:git-debugsource-0:2.43.5-1.el9_4.2.s390x"
},
"product_reference": "git-debugsource-0:2.43.5-1.el9_4.2.s390x",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debugsource-0:2.43.5-1.el9_4.2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:git-debugsource-0:2.43.5-1.el9_4.2.x86_64"
},
"product_reference": "git-debugsource-0:2.43.5-1.el9_4.2.x86_64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-0:2.43.5-1.el9_4.2.noarch as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:git-email-0:2.43.5-1.el9_4.2.noarch"
},
"product_reference": "git-email-0:2.43.5-1.el9_4.2.noarch",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-0:2.43.5-1.el9_4.2.noarch as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:git-gui-0:2.43.5-1.el9_4.2.noarch"
},
"product_reference": "git-gui-0:2.43.5-1.el9_4.2.noarch",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-instaweb-0:2.43.5-1.el9_4.2.noarch as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:git-instaweb-0:2.43.5-1.el9_4.2.noarch"
},
"product_reference": "git-instaweb-0:2.43.5-1.el9_4.2.noarch",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-subtree-0:2.43.5-1.el9_4.2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:git-subtree-0:2.43.5-1.el9_4.2.aarch64"
},
"product_reference": "git-subtree-0:2.43.5-1.el9_4.2.aarch64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-subtree-0:2.43.5-1.el9_4.2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:git-subtree-0:2.43.5-1.el9_4.2.ppc64le"
},
"product_reference": "git-subtree-0:2.43.5-1.el9_4.2.ppc64le",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-subtree-0:2.43.5-1.el9_4.2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:git-subtree-0:2.43.5-1.el9_4.2.s390x"
},
"product_reference": "git-subtree-0:2.43.5-1.el9_4.2.s390x",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-subtree-0:2.43.5-1.el9_4.2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:git-subtree-0:2.43.5-1.el9_4.2.x86_64"
},
"product_reference": "git-subtree-0:2.43.5-1.el9_4.2.x86_64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-0:2.43.5-1.el9_4.2.noarch as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:git-svn-0:2.43.5-1.el9_4.2.noarch"
},
"product_reference": "git-svn-0:2.43.5-1.el9_4.2.noarch",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-0:2.43.5-1.el9_4.2.noarch as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:gitk-0:2.43.5-1.el9_4.2.noarch"
},
"product_reference": "gitk-0:2.43.5-1.el9_4.2.noarch",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitweb-0:2.43.5-1.el9_4.2.noarch as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:gitweb-0:2.43.5-1.el9_4.2.noarch"
},
"product_reference": "gitweb-0:2.43.5-1.el9_4.2.noarch",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-0:2.43.5-1.el9_4.2.noarch as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:perl-Git-0:2.43.5-1.el9_4.2.noarch"
},
"product_reference": "perl-Git-0:2.43.5-1.el9_4.2.noarch",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-SVN-0:2.43.5-1.el9_4.2.noarch as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:perl-Git-SVN-0:2.43.5-1.el9_4.2.noarch"
},
"product_reference": "perl-Git-SVN-0:2.43.5-1.el9_4.2.noarch",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-48384",
"cwe": {
"id": "CWE-59",
"name": "Improper Link Resolution Before File Access (\u0027Link Following\u0027)"
},
"discovery_date": "2025-07-08T19:00:48.297925+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2378806"
}
],
"notes": [
{
"category": "description",
"text": "A line-end handling flaw was found in Git. When writing a config entry, values with a trailing carriage return (CR) are not quoted, resulting in the CR being lost when the config is read later. When initializing a submodule, if the submodule path contains a trailing CR, the altered path is read, resulting in the submodule being checked out to an incorrect location.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "git: Git arbitrary code execution",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability marked as Important and not Moderate flaw because it undermines Git\u2019s path and config integrity by allowing carriage return (\\r) injection to manipulate submodule checkout behavior. Git previously failed to quote config values containing trailing CR, causing the value to be misinterpreted when read back. In the context of submodules, this leads to incorrect path resolution, allowing an attacker to redirect the checkout path via a symlink to a sensitive directory like .git/modules/\u003csubmodule\u003e/hooks. If an executable post-checkout hook exists there, it could be inadvertently executed, resulting in arbitrary code execution during submodule operations. This is particularly dangerous in automated CI/CD pipelines or multi-repo projects where submodules are initialized or updated without manual inspection.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.4.0.Z.EUS:git-0:2.43.5-1.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:git-0:2.43.5-1.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:git-0:2.43.5-1.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:git-0:2.43.5-1.el9_4.2.src",
"AppStream-9.4.0.Z.EUS:git-0:2.43.5-1.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:git-all-0:2.43.5-1.el9_4.2.noarch",
"AppStream-9.4.0.Z.EUS:git-core-0:2.43.5-1.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:git-core-0:2.43.5-1.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:git-core-0:2.43.5-1.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:git-core-0:2.43.5-1.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:git-core-doc-0:2.43.5-1.el9_4.2.noarch",
"AppStream-9.4.0.Z.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:git-daemon-0:2.43.5-1.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:git-daemon-0:2.43.5-1.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:git-daemon-0:2.43.5-1.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:git-daemon-0:2.43.5-1.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:git-debuginfo-0:2.43.5-1.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:git-debuginfo-0:2.43.5-1.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:git-debuginfo-0:2.43.5-1.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:git-debuginfo-0:2.43.5-1.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:git-debugsource-0:2.43.5-1.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:git-debugsource-0:2.43.5-1.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:git-debugsource-0:2.43.5-1.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:git-debugsource-0:2.43.5-1.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:git-email-0:2.43.5-1.el9_4.2.noarch",
"AppStream-9.4.0.Z.EUS:git-gui-0:2.43.5-1.el9_4.2.noarch",
"AppStream-9.4.0.Z.EUS:git-instaweb-0:2.43.5-1.el9_4.2.noarch",
"AppStream-9.4.0.Z.EUS:git-subtree-0:2.43.5-1.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:git-subtree-0:2.43.5-1.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:git-subtree-0:2.43.5-1.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:git-subtree-0:2.43.5-1.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:git-svn-0:2.43.5-1.el9_4.2.noarch",
"AppStream-9.4.0.Z.EUS:gitk-0:2.43.5-1.el9_4.2.noarch",
"AppStream-9.4.0.Z.EUS:gitweb-0:2.43.5-1.el9_4.2.noarch",
"AppStream-9.4.0.Z.EUS:perl-Git-0:2.43.5-1.el9_4.2.noarch",
"AppStream-9.4.0.Z.EUS:perl-Git-SVN-0:2.43.5-1.el9_4.2.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-48384"
},
{
"category": "external",
"summary": "RHBZ#2378806",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2378806"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-48384",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-48384"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-48384",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-48384"
},
{
"category": "external",
"summary": "https://dgl.cx/2025/07/git-clone-submodule-cve-2025-48384",
"url": "https://dgl.cx/2025/07/git-clone-submodule-cve-2025-48384"
},
{
"category": "external",
"summary": "https://github.com/git/git/commit/05e9cd64ee23bbadcea6bcffd6660ed02b8eab89",
"url": "https://github.com/git/git/commit/05e9cd64ee23bbadcea6bcffd6660ed02b8eab89"
},
{
"category": "external",
"summary": "https://github.com/git/git/security/advisories/GHSA-vwqx-4fm8-6qc9",
"url": "https://github.com/git/git/security/advisories/GHSA-vwqx-4fm8-6qc9"
},
{
"category": "external",
"summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog",
"url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
}
],
"release_date": "2025-07-08T18:23:48.710000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-07-24T07:49:46+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.4.0.Z.EUS:git-0:2.43.5-1.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:git-0:2.43.5-1.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:git-0:2.43.5-1.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:git-0:2.43.5-1.el9_4.2.src",
"AppStream-9.4.0.Z.EUS:git-0:2.43.5-1.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:git-all-0:2.43.5-1.el9_4.2.noarch",
"AppStream-9.4.0.Z.EUS:git-core-0:2.43.5-1.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:git-core-0:2.43.5-1.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:git-core-0:2.43.5-1.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:git-core-0:2.43.5-1.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:git-core-doc-0:2.43.5-1.el9_4.2.noarch",
"AppStream-9.4.0.Z.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:git-daemon-0:2.43.5-1.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:git-daemon-0:2.43.5-1.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:git-daemon-0:2.43.5-1.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:git-daemon-0:2.43.5-1.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:git-debuginfo-0:2.43.5-1.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:git-debuginfo-0:2.43.5-1.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:git-debuginfo-0:2.43.5-1.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:git-debuginfo-0:2.43.5-1.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:git-debugsource-0:2.43.5-1.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:git-debugsource-0:2.43.5-1.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:git-debugsource-0:2.43.5-1.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:git-debugsource-0:2.43.5-1.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:git-email-0:2.43.5-1.el9_4.2.noarch",
"AppStream-9.4.0.Z.EUS:git-gui-0:2.43.5-1.el9_4.2.noarch",
"AppStream-9.4.0.Z.EUS:git-instaweb-0:2.43.5-1.el9_4.2.noarch",
"AppStream-9.4.0.Z.EUS:git-subtree-0:2.43.5-1.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:git-subtree-0:2.43.5-1.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:git-subtree-0:2.43.5-1.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:git-subtree-0:2.43.5-1.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:git-svn-0:2.43.5-1.el9_4.2.noarch",
"AppStream-9.4.0.Z.EUS:gitk-0:2.43.5-1.el9_4.2.noarch",
"AppStream-9.4.0.Z.EUS:gitweb-0:2.43.5-1.el9_4.2.noarch",
"AppStream-9.4.0.Z.EUS:perl-Git-0:2.43.5-1.el9_4.2.noarch",
"AppStream-9.4.0.Z.EUS:perl-Git-SVN-0:2.43.5-1.el9_4.2.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:11686"
},
{
"category": "workaround",
"details": "To mitigate this issue, avoid using --recurse-submodules when cloning repositories from untrusted sources; instead, clone normally and only initialize or update submodules manually after reviewing them.",
"product_ids": [
"AppStream-9.4.0.Z.EUS:git-0:2.43.5-1.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:git-0:2.43.5-1.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:git-0:2.43.5-1.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:git-0:2.43.5-1.el9_4.2.src",
"AppStream-9.4.0.Z.EUS:git-0:2.43.5-1.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:git-all-0:2.43.5-1.el9_4.2.noarch",
"AppStream-9.4.0.Z.EUS:git-core-0:2.43.5-1.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:git-core-0:2.43.5-1.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:git-core-0:2.43.5-1.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:git-core-0:2.43.5-1.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:git-core-doc-0:2.43.5-1.el9_4.2.noarch",
"AppStream-9.4.0.Z.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:git-daemon-0:2.43.5-1.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:git-daemon-0:2.43.5-1.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:git-daemon-0:2.43.5-1.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:git-daemon-0:2.43.5-1.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:git-debuginfo-0:2.43.5-1.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:git-debuginfo-0:2.43.5-1.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:git-debuginfo-0:2.43.5-1.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:git-debuginfo-0:2.43.5-1.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:git-debugsource-0:2.43.5-1.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:git-debugsource-0:2.43.5-1.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:git-debugsource-0:2.43.5-1.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:git-debugsource-0:2.43.5-1.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:git-email-0:2.43.5-1.el9_4.2.noarch",
"AppStream-9.4.0.Z.EUS:git-gui-0:2.43.5-1.el9_4.2.noarch",
"AppStream-9.4.0.Z.EUS:git-instaweb-0:2.43.5-1.el9_4.2.noarch",
"AppStream-9.4.0.Z.EUS:git-subtree-0:2.43.5-1.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:git-subtree-0:2.43.5-1.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:git-subtree-0:2.43.5-1.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:git-subtree-0:2.43.5-1.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:git-svn-0:2.43.5-1.el9_4.2.noarch",
"AppStream-9.4.0.Z.EUS:gitk-0:2.43.5-1.el9_4.2.noarch",
"AppStream-9.4.0.Z.EUS:gitweb-0:2.43.5-1.el9_4.2.noarch",
"AppStream-9.4.0.Z.EUS:perl-Git-0:2.43.5-1.el9_4.2.noarch",
"AppStream-9.4.0.Z.EUS:perl-Git-SVN-0:2.43.5-1.el9_4.2.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.0,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.4.0.Z.EUS:git-0:2.43.5-1.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:git-0:2.43.5-1.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:git-0:2.43.5-1.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:git-0:2.43.5-1.el9_4.2.src",
"AppStream-9.4.0.Z.EUS:git-0:2.43.5-1.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:git-all-0:2.43.5-1.el9_4.2.noarch",
"AppStream-9.4.0.Z.EUS:git-core-0:2.43.5-1.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:git-core-0:2.43.5-1.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:git-core-0:2.43.5-1.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:git-core-0:2.43.5-1.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:git-core-doc-0:2.43.5-1.el9_4.2.noarch",
"AppStream-9.4.0.Z.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:git-daemon-0:2.43.5-1.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:git-daemon-0:2.43.5-1.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:git-daemon-0:2.43.5-1.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:git-daemon-0:2.43.5-1.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:git-debuginfo-0:2.43.5-1.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:git-debuginfo-0:2.43.5-1.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:git-debuginfo-0:2.43.5-1.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:git-debuginfo-0:2.43.5-1.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:git-debugsource-0:2.43.5-1.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:git-debugsource-0:2.43.5-1.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:git-debugsource-0:2.43.5-1.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:git-debugsource-0:2.43.5-1.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:git-email-0:2.43.5-1.el9_4.2.noarch",
"AppStream-9.4.0.Z.EUS:git-gui-0:2.43.5-1.el9_4.2.noarch",
"AppStream-9.4.0.Z.EUS:git-instaweb-0:2.43.5-1.el9_4.2.noarch",
"AppStream-9.4.0.Z.EUS:git-subtree-0:2.43.5-1.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:git-subtree-0:2.43.5-1.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:git-subtree-0:2.43.5-1.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:git-subtree-0:2.43.5-1.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:git-svn-0:2.43.5-1.el9_4.2.noarch",
"AppStream-9.4.0.Z.EUS:gitk-0:2.43.5-1.el9_4.2.noarch",
"AppStream-9.4.0.Z.EUS:gitweb-0:2.43.5-1.el9_4.2.noarch",
"AppStream-9.4.0.Z.EUS:perl-Git-0:2.43.5-1.el9_4.2.noarch",
"AppStream-9.4.0.Z.EUS:perl-Git-SVN-0:2.43.5-1.el9_4.2.noarch"
]
}
],
"threats": [
{
"category": "exploit_status",
"date": "2025-08-25T00:00:00+00:00",
"details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
},
{
"category": "impact",
"details": "Important"
}
],
"title": "git: Git arbitrary code execution"
},
{
"cve": "CVE-2025-48385",
"cwe": {
"id": "CWE-88",
"name": "Improper Neutralization of Argument Delimiters in a Command (\u0027Argument Injection\u0027)"
},
"discovery_date": "2025-07-08T19:00:55.106787+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2378808"
}
],
"notes": [
{
"category": "description",
"text": "A bundled uri handling flaw was found in Git. When cloning a repository, Git knows to optionally fetch a bundle advertised by the remote server, which allows the server side to offload parts of the clone to a CDN. The Git client does not perform sufficient validation of the advertised bundles, which allows the remote side to perform protocol injection.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "git: Git arbitrary file writes",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability marked as Important rather than a Moderate flaw because it enables protocol injection at the transport layer of Git\u0027s bundle-uri mechanism, allowing a remote server to manipulate how and where data is written on the client system during a clone operation. The lack of input sanitization on user-controlled values like the URI and target path means that malformed inputs containing spaces or newlines can break protocol framing, leading to arbitrary file writes. In scenarios such as CI pipelines, developer environments, or recursive clones with submodules, an attacker can exploit this to overwrite critical files or inject malicious content, potentially achieving remote code execution (RCE).",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.4.0.Z.EUS:git-0:2.43.5-1.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:git-0:2.43.5-1.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:git-0:2.43.5-1.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:git-0:2.43.5-1.el9_4.2.src",
"AppStream-9.4.0.Z.EUS:git-0:2.43.5-1.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:git-all-0:2.43.5-1.el9_4.2.noarch",
"AppStream-9.4.0.Z.EUS:git-core-0:2.43.5-1.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:git-core-0:2.43.5-1.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:git-core-0:2.43.5-1.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:git-core-0:2.43.5-1.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:git-core-doc-0:2.43.5-1.el9_4.2.noarch",
"AppStream-9.4.0.Z.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:git-daemon-0:2.43.5-1.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:git-daemon-0:2.43.5-1.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:git-daemon-0:2.43.5-1.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:git-daemon-0:2.43.5-1.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:git-debuginfo-0:2.43.5-1.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:git-debuginfo-0:2.43.5-1.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:git-debuginfo-0:2.43.5-1.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:git-debuginfo-0:2.43.5-1.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:git-debugsource-0:2.43.5-1.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:git-debugsource-0:2.43.5-1.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:git-debugsource-0:2.43.5-1.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:git-debugsource-0:2.43.5-1.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:git-email-0:2.43.5-1.el9_4.2.noarch",
"AppStream-9.4.0.Z.EUS:git-gui-0:2.43.5-1.el9_4.2.noarch",
"AppStream-9.4.0.Z.EUS:git-instaweb-0:2.43.5-1.el9_4.2.noarch",
"AppStream-9.4.0.Z.EUS:git-subtree-0:2.43.5-1.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:git-subtree-0:2.43.5-1.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:git-subtree-0:2.43.5-1.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:git-subtree-0:2.43.5-1.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:git-svn-0:2.43.5-1.el9_4.2.noarch",
"AppStream-9.4.0.Z.EUS:gitk-0:2.43.5-1.el9_4.2.noarch",
"AppStream-9.4.0.Z.EUS:gitweb-0:2.43.5-1.el9_4.2.noarch",
"AppStream-9.4.0.Z.EUS:perl-Git-0:2.43.5-1.el9_4.2.noarch",
"AppStream-9.4.0.Z.EUS:perl-Git-SVN-0:2.43.5-1.el9_4.2.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-48385"
},
{
"category": "external",
"summary": "RHBZ#2378808",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2378808"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-48385",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-48385"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-48385",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-48385"
},
{
"category": "external",
"summary": "https://github.com/git/git/security/advisories/GHSA-m98c-vgpc-9655",
"url": "https://github.com/git/git/security/advisories/GHSA-m98c-vgpc-9655"
}
],
"release_date": "2025-07-08T18:23:44.405000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-07-24T07:49:46+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.4.0.Z.EUS:git-0:2.43.5-1.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:git-0:2.43.5-1.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:git-0:2.43.5-1.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:git-0:2.43.5-1.el9_4.2.src",
"AppStream-9.4.0.Z.EUS:git-0:2.43.5-1.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:git-all-0:2.43.5-1.el9_4.2.noarch",
"AppStream-9.4.0.Z.EUS:git-core-0:2.43.5-1.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:git-core-0:2.43.5-1.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:git-core-0:2.43.5-1.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:git-core-0:2.43.5-1.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:git-core-doc-0:2.43.5-1.el9_4.2.noarch",
"AppStream-9.4.0.Z.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:git-daemon-0:2.43.5-1.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:git-daemon-0:2.43.5-1.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:git-daemon-0:2.43.5-1.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:git-daemon-0:2.43.5-1.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:git-debuginfo-0:2.43.5-1.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:git-debuginfo-0:2.43.5-1.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:git-debuginfo-0:2.43.5-1.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:git-debuginfo-0:2.43.5-1.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:git-debugsource-0:2.43.5-1.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:git-debugsource-0:2.43.5-1.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:git-debugsource-0:2.43.5-1.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:git-debugsource-0:2.43.5-1.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:git-email-0:2.43.5-1.el9_4.2.noarch",
"AppStream-9.4.0.Z.EUS:git-gui-0:2.43.5-1.el9_4.2.noarch",
"AppStream-9.4.0.Z.EUS:git-instaweb-0:2.43.5-1.el9_4.2.noarch",
"AppStream-9.4.0.Z.EUS:git-subtree-0:2.43.5-1.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:git-subtree-0:2.43.5-1.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:git-subtree-0:2.43.5-1.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:git-subtree-0:2.43.5-1.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:git-svn-0:2.43.5-1.el9_4.2.noarch",
"AppStream-9.4.0.Z.EUS:gitk-0:2.43.5-1.el9_4.2.noarch",
"AppStream-9.4.0.Z.EUS:gitweb-0:2.43.5-1.el9_4.2.noarch",
"AppStream-9.4.0.Z.EUS:perl-Git-0:2.43.5-1.el9_4.2.noarch",
"AppStream-9.4.0.Z.EUS:perl-Git-SVN-0:2.43.5-1.el9_4.2.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:11686"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-9.4.0.Z.EUS:git-0:2.43.5-1.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:git-0:2.43.5-1.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:git-0:2.43.5-1.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:git-0:2.43.5-1.el9_4.2.src",
"AppStream-9.4.0.Z.EUS:git-0:2.43.5-1.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:git-all-0:2.43.5-1.el9_4.2.noarch",
"AppStream-9.4.0.Z.EUS:git-core-0:2.43.5-1.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:git-core-0:2.43.5-1.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:git-core-0:2.43.5-1.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:git-core-0:2.43.5-1.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:git-core-doc-0:2.43.5-1.el9_4.2.noarch",
"AppStream-9.4.0.Z.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:git-daemon-0:2.43.5-1.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:git-daemon-0:2.43.5-1.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:git-daemon-0:2.43.5-1.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:git-daemon-0:2.43.5-1.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:git-debuginfo-0:2.43.5-1.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:git-debuginfo-0:2.43.5-1.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:git-debuginfo-0:2.43.5-1.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:git-debuginfo-0:2.43.5-1.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:git-debugsource-0:2.43.5-1.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:git-debugsource-0:2.43.5-1.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:git-debugsource-0:2.43.5-1.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:git-debugsource-0:2.43.5-1.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:git-email-0:2.43.5-1.el9_4.2.noarch",
"AppStream-9.4.0.Z.EUS:git-gui-0:2.43.5-1.el9_4.2.noarch",
"AppStream-9.4.0.Z.EUS:git-instaweb-0:2.43.5-1.el9_4.2.noarch",
"AppStream-9.4.0.Z.EUS:git-subtree-0:2.43.5-1.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:git-subtree-0:2.43.5-1.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:git-subtree-0:2.43.5-1.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:git-subtree-0:2.43.5-1.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:git-svn-0:2.43.5-1.el9_4.2.noarch",
"AppStream-9.4.0.Z.EUS:gitk-0:2.43.5-1.el9_4.2.noarch",
"AppStream-9.4.0.Z.EUS:gitweb-0:2.43.5-1.el9_4.2.noarch",
"AppStream-9.4.0.Z.EUS:perl-Git-0:2.43.5-1.el9_4.2.noarch",
"AppStream-9.4.0.Z.EUS:perl-Git-SVN-0:2.43.5-1.el9_4.2.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 8.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:L",
"version": "3.1"
},
"products": [
"AppStream-9.4.0.Z.EUS:git-0:2.43.5-1.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:git-0:2.43.5-1.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:git-0:2.43.5-1.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:git-0:2.43.5-1.el9_4.2.src",
"AppStream-9.4.0.Z.EUS:git-0:2.43.5-1.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:git-all-0:2.43.5-1.el9_4.2.noarch",
"AppStream-9.4.0.Z.EUS:git-core-0:2.43.5-1.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:git-core-0:2.43.5-1.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:git-core-0:2.43.5-1.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:git-core-0:2.43.5-1.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:git-core-debuginfo-0:2.43.5-1.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:git-core-doc-0:2.43.5-1.el9_4.2.noarch",
"AppStream-9.4.0.Z.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:git-credential-libsecret-0:2.43.5-1.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:git-credential-libsecret-debuginfo-0:2.43.5-1.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:git-daemon-0:2.43.5-1.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:git-daemon-0:2.43.5-1.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:git-daemon-0:2.43.5-1.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:git-daemon-0:2.43.5-1.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:git-daemon-debuginfo-0:2.43.5-1.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:git-debuginfo-0:2.43.5-1.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:git-debuginfo-0:2.43.5-1.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:git-debuginfo-0:2.43.5-1.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:git-debuginfo-0:2.43.5-1.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:git-debugsource-0:2.43.5-1.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:git-debugsource-0:2.43.5-1.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:git-debugsource-0:2.43.5-1.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:git-debugsource-0:2.43.5-1.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:git-email-0:2.43.5-1.el9_4.2.noarch",
"AppStream-9.4.0.Z.EUS:git-gui-0:2.43.5-1.el9_4.2.noarch",
"AppStream-9.4.0.Z.EUS:git-instaweb-0:2.43.5-1.el9_4.2.noarch",
"AppStream-9.4.0.Z.EUS:git-subtree-0:2.43.5-1.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:git-subtree-0:2.43.5-1.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:git-subtree-0:2.43.5-1.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:git-subtree-0:2.43.5-1.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:git-svn-0:2.43.5-1.el9_4.2.noarch",
"AppStream-9.4.0.Z.EUS:gitk-0:2.43.5-1.el9_4.2.noarch",
"AppStream-9.4.0.Z.EUS:gitweb-0:2.43.5-1.el9_4.2.noarch",
"AppStream-9.4.0.Z.EUS:perl-Git-0:2.43.5-1.el9_4.2.noarch",
"AppStream-9.4.0.Z.EUS:perl-Git-SVN-0:2.43.5-1.el9_4.2.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "git: Git arbitrary file writes"
}
]
}
rhsa-2025:11800
Vulnerability from csaf_redhat
Published
2025-07-28 01:24
Modified
2025-11-06 23:41
Summary
Red Hat Security Advisory: git security update
Notes
Topic
An update for git is now available for Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support and Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Git is a distributed revision control system with a decentralized architecture. As opposed to centralized version control systems with a client-server model, Git ensures that each working copy of a Git repository is an exact copy with complete revision history. This not only allows the user to work on and contribute to projects without the need to have permission to push the changes to their official repositories, but also makes it possible for the user to work with no network connection.
Security Fix(es):
* git: Git arbitrary code execution (CVE-2025-48384)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for git is now available for Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support and Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Git is a distributed revision control system with a decentralized architecture. As opposed to centralized version control systems with a client-server model, Git ensures that each working copy of a Git repository is an exact copy with complete revision history. This not only allows the user to work on and contribute to projects without the need to have permission to push the changes to their official repositories, but also makes it possible for the user to work with no network connection.\n\nSecurity Fix(es):\n\n* git: Git arbitrary code execution (CVE-2025-48384)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:11800",
"url": "https://access.redhat.com/errata/RHSA-2025:11800"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2378806",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2378806"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_11800.json"
}
],
"title": "Red Hat Security Advisory: git security update",
"tracking": {
"current_release_date": "2025-11-06T23:41:43+00:00",
"generator": {
"date": "2025-11-06T23:41:43+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.11"
}
},
"id": "RHSA-2025:11800",
"initial_release_date": "2025-07-28T01:24:00+00:00",
"revision_history": [
{
"date": "2025-07-28T01:24:00+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-07-28T01:24:00+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-06T23:41:43+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream AUS (v.8.4)",
"product": {
"name": "Red Hat Enterprise Linux AppStream AUS (v.8.4)",
"product_id": "AppStream-8.4.0.Z.AUS",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_aus:8.4::appstream"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
"product": {
"name": "Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
"product_id": "AppStream-8.4.0.Z.EUS.EXTENSION",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_eus_long_life:8.4::appstream"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "git-0:2.27.0-5.el8_4.1.src",
"product": {
"name": "git-0:2.27.0-5.el8_4.1.src",
"product_id": "git-0:2.27.0-5.el8_4.1.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git@2.27.0-5.el8_4.1?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "git-0:2.27.0-5.el8_4.1.x86_64",
"product": {
"name": "git-0:2.27.0-5.el8_4.1.x86_64",
"product_id": "git-0:2.27.0-5.el8_4.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git@2.27.0-5.el8_4.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-core-0:2.27.0-5.el8_4.1.x86_64",
"product": {
"name": "git-core-0:2.27.0-5.el8_4.1.x86_64",
"product_id": "git-core-0:2.27.0-5.el8_4.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core@2.27.0-5.el8_4.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-0:2.27.0-5.el8_4.1.x86_64",
"product": {
"name": "git-credential-libsecret-0:2.27.0-5.el8_4.1.x86_64",
"product_id": "git-credential-libsecret-0:2.27.0-5.el8_4.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret@2.27.0-5.el8_4.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-daemon-0:2.27.0-5.el8_4.1.x86_64",
"product": {
"name": "git-daemon-0:2.27.0-5.el8_4.1.x86_64",
"product_id": "git-daemon-0:2.27.0-5.el8_4.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon@2.27.0-5.el8_4.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-subtree-0:2.27.0-5.el8_4.1.x86_64",
"product": {
"name": "git-subtree-0:2.27.0-5.el8_4.1.x86_64",
"product_id": "git-subtree-0:2.27.0-5.el8_4.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-subtree@2.27.0-5.el8_4.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-debugsource-0:2.27.0-5.el8_4.1.x86_64",
"product": {
"name": "git-debugsource-0:2.27.0-5.el8_4.1.x86_64",
"product_id": "git-debugsource-0:2.27.0-5.el8_4.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debugsource@2.27.0-5.el8_4.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-core-debuginfo-0:2.27.0-5.el8_4.1.x86_64",
"product": {
"name": "git-core-debuginfo-0:2.27.0-5.el8_4.1.x86_64",
"product_id": "git-core-debuginfo-0:2.27.0-5.el8_4.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core-debuginfo@2.27.0-5.el8_4.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-debuginfo-0:2.27.0-5.el8_4.1.x86_64",
"product": {
"name": "git-credential-libsecret-debuginfo-0:2.27.0-5.el8_4.1.x86_64",
"product_id": "git-credential-libsecret-debuginfo-0:2.27.0-5.el8_4.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret-debuginfo@2.27.0-5.el8_4.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-daemon-debuginfo-0:2.27.0-5.el8_4.1.x86_64",
"product": {
"name": "git-daemon-debuginfo-0:2.27.0-5.el8_4.1.x86_64",
"product_id": "git-daemon-debuginfo-0:2.27.0-5.el8_4.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon-debuginfo@2.27.0-5.el8_4.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-debuginfo-0:2.27.0-5.el8_4.1.x86_64",
"product": {
"name": "git-debuginfo-0:2.27.0-5.el8_4.1.x86_64",
"product_id": "git-debuginfo-0:2.27.0-5.el8_4.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debuginfo@2.27.0-5.el8_4.1?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "git-all-0:2.27.0-5.el8_4.1.noarch",
"product": {
"name": "git-all-0:2.27.0-5.el8_4.1.noarch",
"product_id": "git-all-0:2.27.0-5.el8_4.1.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-all@2.27.0-5.el8_4.1?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "git-core-doc-0:2.27.0-5.el8_4.1.noarch",
"product": {
"name": "git-core-doc-0:2.27.0-5.el8_4.1.noarch",
"product_id": "git-core-doc-0:2.27.0-5.el8_4.1.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core-doc@2.27.0-5.el8_4.1?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "git-email-0:2.27.0-5.el8_4.1.noarch",
"product": {
"name": "git-email-0:2.27.0-5.el8_4.1.noarch",
"product_id": "git-email-0:2.27.0-5.el8_4.1.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-email@2.27.0-5.el8_4.1?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "git-gui-0:2.27.0-5.el8_4.1.noarch",
"product": {
"name": "git-gui-0:2.27.0-5.el8_4.1.noarch",
"product_id": "git-gui-0:2.27.0-5.el8_4.1.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-gui@2.27.0-5.el8_4.1?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "git-instaweb-0:2.27.0-5.el8_4.1.noarch",
"product": {
"name": "git-instaweb-0:2.27.0-5.el8_4.1.noarch",
"product_id": "git-instaweb-0:2.27.0-5.el8_4.1.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-instaweb@2.27.0-5.el8_4.1?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "git-svn-0:2.27.0-5.el8_4.1.noarch",
"product": {
"name": "git-svn-0:2.27.0-5.el8_4.1.noarch",
"product_id": "git-svn-0:2.27.0-5.el8_4.1.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-svn@2.27.0-5.el8_4.1?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "gitk-0:2.27.0-5.el8_4.1.noarch",
"product": {
"name": "gitk-0:2.27.0-5.el8_4.1.noarch",
"product_id": "gitk-0:2.27.0-5.el8_4.1.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/gitk@2.27.0-5.el8_4.1?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "gitweb-0:2.27.0-5.el8_4.1.noarch",
"product": {
"name": "gitweb-0:2.27.0-5.el8_4.1.noarch",
"product_id": "gitweb-0:2.27.0-5.el8_4.1.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/gitweb@2.27.0-5.el8_4.1?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "perl-Git-0:2.27.0-5.el8_4.1.noarch",
"product": {
"name": "perl-Git-0:2.27.0-5.el8_4.1.noarch",
"product_id": "perl-Git-0:2.27.0-5.el8_4.1.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/perl-Git@2.27.0-5.el8_4.1?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "perl-Git-SVN-0:2.27.0-5.el8_4.1.noarch",
"product": {
"name": "perl-Git-SVN-0:2.27.0-5.el8_4.1.noarch",
"product_id": "perl-Git-SVN-0:2.27.0-5.el8_4.1.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/perl-Git-SVN@2.27.0-5.el8_4.1?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "git-0:2.27.0-5.el8_4.1.src as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
"product_id": "AppStream-8.4.0.Z.AUS:git-0:2.27.0-5.el8_4.1.src"
},
"product_reference": "git-0:2.27.0-5.el8_4.1.src",
"relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-0:2.27.0-5.el8_4.1.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
"product_id": "AppStream-8.4.0.Z.AUS:git-0:2.27.0-5.el8_4.1.x86_64"
},
"product_reference": "git-0:2.27.0-5.el8_4.1.x86_64",
"relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-all-0:2.27.0-5.el8_4.1.noarch as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
"product_id": "AppStream-8.4.0.Z.AUS:git-all-0:2.27.0-5.el8_4.1.noarch"
},
"product_reference": "git-all-0:2.27.0-5.el8_4.1.noarch",
"relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-0:2.27.0-5.el8_4.1.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
"product_id": "AppStream-8.4.0.Z.AUS:git-core-0:2.27.0-5.el8_4.1.x86_64"
},
"product_reference": "git-core-0:2.27.0-5.el8_4.1.x86_64",
"relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-debuginfo-0:2.27.0-5.el8_4.1.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
"product_id": "AppStream-8.4.0.Z.AUS:git-core-debuginfo-0:2.27.0-5.el8_4.1.x86_64"
},
"product_reference": "git-core-debuginfo-0:2.27.0-5.el8_4.1.x86_64",
"relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-doc-0:2.27.0-5.el8_4.1.noarch as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
"product_id": "AppStream-8.4.0.Z.AUS:git-core-doc-0:2.27.0-5.el8_4.1.noarch"
},
"product_reference": "git-core-doc-0:2.27.0-5.el8_4.1.noarch",
"relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-0:2.27.0-5.el8_4.1.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
"product_id": "AppStream-8.4.0.Z.AUS:git-credential-libsecret-0:2.27.0-5.el8_4.1.x86_64"
},
"product_reference": "git-credential-libsecret-0:2.27.0-5.el8_4.1.x86_64",
"relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-debuginfo-0:2.27.0-5.el8_4.1.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
"product_id": "AppStream-8.4.0.Z.AUS:git-credential-libsecret-debuginfo-0:2.27.0-5.el8_4.1.x86_64"
},
"product_reference": "git-credential-libsecret-debuginfo-0:2.27.0-5.el8_4.1.x86_64",
"relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-0:2.27.0-5.el8_4.1.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
"product_id": "AppStream-8.4.0.Z.AUS:git-daemon-0:2.27.0-5.el8_4.1.x86_64"
},
"product_reference": "git-daemon-0:2.27.0-5.el8_4.1.x86_64",
"relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-debuginfo-0:2.27.0-5.el8_4.1.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
"product_id": "AppStream-8.4.0.Z.AUS:git-daemon-debuginfo-0:2.27.0-5.el8_4.1.x86_64"
},
"product_reference": "git-daemon-debuginfo-0:2.27.0-5.el8_4.1.x86_64",
"relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debuginfo-0:2.27.0-5.el8_4.1.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
"product_id": "AppStream-8.4.0.Z.AUS:git-debuginfo-0:2.27.0-5.el8_4.1.x86_64"
},
"product_reference": "git-debuginfo-0:2.27.0-5.el8_4.1.x86_64",
"relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debugsource-0:2.27.0-5.el8_4.1.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
"product_id": "AppStream-8.4.0.Z.AUS:git-debugsource-0:2.27.0-5.el8_4.1.x86_64"
},
"product_reference": "git-debugsource-0:2.27.0-5.el8_4.1.x86_64",
"relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-0:2.27.0-5.el8_4.1.noarch as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
"product_id": "AppStream-8.4.0.Z.AUS:git-email-0:2.27.0-5.el8_4.1.noarch"
},
"product_reference": "git-email-0:2.27.0-5.el8_4.1.noarch",
"relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-0:2.27.0-5.el8_4.1.noarch as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
"product_id": "AppStream-8.4.0.Z.AUS:git-gui-0:2.27.0-5.el8_4.1.noarch"
},
"product_reference": "git-gui-0:2.27.0-5.el8_4.1.noarch",
"relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-instaweb-0:2.27.0-5.el8_4.1.noarch as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
"product_id": "AppStream-8.4.0.Z.AUS:git-instaweb-0:2.27.0-5.el8_4.1.noarch"
},
"product_reference": "git-instaweb-0:2.27.0-5.el8_4.1.noarch",
"relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-subtree-0:2.27.0-5.el8_4.1.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
"product_id": "AppStream-8.4.0.Z.AUS:git-subtree-0:2.27.0-5.el8_4.1.x86_64"
},
"product_reference": "git-subtree-0:2.27.0-5.el8_4.1.x86_64",
"relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-0:2.27.0-5.el8_4.1.noarch as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
"product_id": "AppStream-8.4.0.Z.AUS:git-svn-0:2.27.0-5.el8_4.1.noarch"
},
"product_reference": "git-svn-0:2.27.0-5.el8_4.1.noarch",
"relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-0:2.27.0-5.el8_4.1.noarch as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
"product_id": "AppStream-8.4.0.Z.AUS:gitk-0:2.27.0-5.el8_4.1.noarch"
},
"product_reference": "gitk-0:2.27.0-5.el8_4.1.noarch",
"relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitweb-0:2.27.0-5.el8_4.1.noarch as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
"product_id": "AppStream-8.4.0.Z.AUS:gitweb-0:2.27.0-5.el8_4.1.noarch"
},
"product_reference": "gitweb-0:2.27.0-5.el8_4.1.noarch",
"relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-0:2.27.0-5.el8_4.1.noarch as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
"product_id": "AppStream-8.4.0.Z.AUS:perl-Git-0:2.27.0-5.el8_4.1.noarch"
},
"product_reference": "perl-Git-0:2.27.0-5.el8_4.1.noarch",
"relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-SVN-0:2.27.0-5.el8_4.1.noarch as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
"product_id": "AppStream-8.4.0.Z.AUS:perl-Git-SVN-0:2.27.0-5.el8_4.1.noarch"
},
"product_reference": "perl-Git-SVN-0:2.27.0-5.el8_4.1.noarch",
"relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-0:2.27.0-5.el8_4.1.src as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
"product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:git-0:2.27.0-5.el8_4.1.src"
},
"product_reference": "git-0:2.27.0-5.el8_4.1.src",
"relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-0:2.27.0-5.el8_4.1.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
"product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:git-0:2.27.0-5.el8_4.1.x86_64"
},
"product_reference": "git-0:2.27.0-5.el8_4.1.x86_64",
"relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-all-0:2.27.0-5.el8_4.1.noarch as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
"product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:git-all-0:2.27.0-5.el8_4.1.noarch"
},
"product_reference": "git-all-0:2.27.0-5.el8_4.1.noarch",
"relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-0:2.27.0-5.el8_4.1.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
"product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:git-core-0:2.27.0-5.el8_4.1.x86_64"
},
"product_reference": "git-core-0:2.27.0-5.el8_4.1.x86_64",
"relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-debuginfo-0:2.27.0-5.el8_4.1.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
"product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:git-core-debuginfo-0:2.27.0-5.el8_4.1.x86_64"
},
"product_reference": "git-core-debuginfo-0:2.27.0-5.el8_4.1.x86_64",
"relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-doc-0:2.27.0-5.el8_4.1.noarch as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
"product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:git-core-doc-0:2.27.0-5.el8_4.1.noarch"
},
"product_reference": "git-core-doc-0:2.27.0-5.el8_4.1.noarch",
"relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-0:2.27.0-5.el8_4.1.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
"product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:git-credential-libsecret-0:2.27.0-5.el8_4.1.x86_64"
},
"product_reference": "git-credential-libsecret-0:2.27.0-5.el8_4.1.x86_64",
"relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-debuginfo-0:2.27.0-5.el8_4.1.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
"product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:git-credential-libsecret-debuginfo-0:2.27.0-5.el8_4.1.x86_64"
},
"product_reference": "git-credential-libsecret-debuginfo-0:2.27.0-5.el8_4.1.x86_64",
"relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-0:2.27.0-5.el8_4.1.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
"product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:git-daemon-0:2.27.0-5.el8_4.1.x86_64"
},
"product_reference": "git-daemon-0:2.27.0-5.el8_4.1.x86_64",
"relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-debuginfo-0:2.27.0-5.el8_4.1.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
"product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:git-daemon-debuginfo-0:2.27.0-5.el8_4.1.x86_64"
},
"product_reference": "git-daemon-debuginfo-0:2.27.0-5.el8_4.1.x86_64",
"relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debuginfo-0:2.27.0-5.el8_4.1.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
"product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:git-debuginfo-0:2.27.0-5.el8_4.1.x86_64"
},
"product_reference": "git-debuginfo-0:2.27.0-5.el8_4.1.x86_64",
"relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debugsource-0:2.27.0-5.el8_4.1.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
"product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:git-debugsource-0:2.27.0-5.el8_4.1.x86_64"
},
"product_reference": "git-debugsource-0:2.27.0-5.el8_4.1.x86_64",
"relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-0:2.27.0-5.el8_4.1.noarch as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
"product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:git-email-0:2.27.0-5.el8_4.1.noarch"
},
"product_reference": "git-email-0:2.27.0-5.el8_4.1.noarch",
"relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-0:2.27.0-5.el8_4.1.noarch as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
"product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:git-gui-0:2.27.0-5.el8_4.1.noarch"
},
"product_reference": "git-gui-0:2.27.0-5.el8_4.1.noarch",
"relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-instaweb-0:2.27.0-5.el8_4.1.noarch as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
"product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:git-instaweb-0:2.27.0-5.el8_4.1.noarch"
},
"product_reference": "git-instaweb-0:2.27.0-5.el8_4.1.noarch",
"relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-subtree-0:2.27.0-5.el8_4.1.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
"product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:git-subtree-0:2.27.0-5.el8_4.1.x86_64"
},
"product_reference": "git-subtree-0:2.27.0-5.el8_4.1.x86_64",
"relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-0:2.27.0-5.el8_4.1.noarch as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
"product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:git-svn-0:2.27.0-5.el8_4.1.noarch"
},
"product_reference": "git-svn-0:2.27.0-5.el8_4.1.noarch",
"relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-0:2.27.0-5.el8_4.1.noarch as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
"product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:gitk-0:2.27.0-5.el8_4.1.noarch"
},
"product_reference": "gitk-0:2.27.0-5.el8_4.1.noarch",
"relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitweb-0:2.27.0-5.el8_4.1.noarch as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
"product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:gitweb-0:2.27.0-5.el8_4.1.noarch"
},
"product_reference": "gitweb-0:2.27.0-5.el8_4.1.noarch",
"relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-0:2.27.0-5.el8_4.1.noarch as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
"product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:perl-Git-0:2.27.0-5.el8_4.1.noarch"
},
"product_reference": "perl-Git-0:2.27.0-5.el8_4.1.noarch",
"relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-SVN-0:2.27.0-5.el8_4.1.noarch as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
"product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:perl-Git-SVN-0:2.27.0-5.el8_4.1.noarch"
},
"product_reference": "perl-Git-SVN-0:2.27.0-5.el8_4.1.noarch",
"relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-48384",
"cwe": {
"id": "CWE-59",
"name": "Improper Link Resolution Before File Access (\u0027Link Following\u0027)"
},
"discovery_date": "2025-07-08T19:00:48.297925+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2378806"
}
],
"notes": [
{
"category": "description",
"text": "A line-end handling flaw was found in Git. When writing a config entry, values with a trailing carriage return (CR) are not quoted, resulting in the CR being lost when the config is read later. When initializing a submodule, if the submodule path contains a trailing CR, the altered path is read, resulting in the submodule being checked out to an incorrect location.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "git: Git arbitrary code execution",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability marked as Important and not Moderate flaw because it undermines Git\u2019s path and config integrity by allowing carriage return (\\r) injection to manipulate submodule checkout behavior. Git previously failed to quote config values containing trailing CR, causing the value to be misinterpreted when read back. In the context of submodules, this leads to incorrect path resolution, allowing an attacker to redirect the checkout path via a symlink to a sensitive directory like .git/modules/\u003csubmodule\u003e/hooks. If an executable post-checkout hook exists there, it could be inadvertently executed, resulting in arbitrary code execution during submodule operations. This is particularly dangerous in automated CI/CD pipelines or multi-repo projects where submodules are initialized or updated without manual inspection.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.4.0.Z.AUS:git-0:2.27.0-5.el8_4.1.src",
"AppStream-8.4.0.Z.AUS:git-0:2.27.0-5.el8_4.1.x86_64",
"AppStream-8.4.0.Z.AUS:git-all-0:2.27.0-5.el8_4.1.noarch",
"AppStream-8.4.0.Z.AUS:git-core-0:2.27.0-5.el8_4.1.x86_64",
"AppStream-8.4.0.Z.AUS:git-core-debuginfo-0:2.27.0-5.el8_4.1.x86_64",
"AppStream-8.4.0.Z.AUS:git-core-doc-0:2.27.0-5.el8_4.1.noarch",
"AppStream-8.4.0.Z.AUS:git-credential-libsecret-0:2.27.0-5.el8_4.1.x86_64",
"AppStream-8.4.0.Z.AUS:git-credential-libsecret-debuginfo-0:2.27.0-5.el8_4.1.x86_64",
"AppStream-8.4.0.Z.AUS:git-daemon-0:2.27.0-5.el8_4.1.x86_64",
"AppStream-8.4.0.Z.AUS:git-daemon-debuginfo-0:2.27.0-5.el8_4.1.x86_64",
"AppStream-8.4.0.Z.AUS:git-debuginfo-0:2.27.0-5.el8_4.1.x86_64",
"AppStream-8.4.0.Z.AUS:git-debugsource-0:2.27.0-5.el8_4.1.x86_64",
"AppStream-8.4.0.Z.AUS:git-email-0:2.27.0-5.el8_4.1.noarch",
"AppStream-8.4.0.Z.AUS:git-gui-0:2.27.0-5.el8_4.1.noarch",
"AppStream-8.4.0.Z.AUS:git-instaweb-0:2.27.0-5.el8_4.1.noarch",
"AppStream-8.4.0.Z.AUS:git-subtree-0:2.27.0-5.el8_4.1.x86_64",
"AppStream-8.4.0.Z.AUS:git-svn-0:2.27.0-5.el8_4.1.noarch",
"AppStream-8.4.0.Z.AUS:gitk-0:2.27.0-5.el8_4.1.noarch",
"AppStream-8.4.0.Z.AUS:gitweb-0:2.27.0-5.el8_4.1.noarch",
"AppStream-8.4.0.Z.AUS:perl-Git-0:2.27.0-5.el8_4.1.noarch",
"AppStream-8.4.0.Z.AUS:perl-Git-SVN-0:2.27.0-5.el8_4.1.noarch",
"AppStream-8.4.0.Z.EUS.EXTENSION:git-0:2.27.0-5.el8_4.1.src",
"AppStream-8.4.0.Z.EUS.EXTENSION:git-0:2.27.0-5.el8_4.1.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:git-all-0:2.27.0-5.el8_4.1.noarch",
"AppStream-8.4.0.Z.EUS.EXTENSION:git-core-0:2.27.0-5.el8_4.1.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:git-core-debuginfo-0:2.27.0-5.el8_4.1.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:git-core-doc-0:2.27.0-5.el8_4.1.noarch",
"AppStream-8.4.0.Z.EUS.EXTENSION:git-credential-libsecret-0:2.27.0-5.el8_4.1.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:git-credential-libsecret-debuginfo-0:2.27.0-5.el8_4.1.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:git-daemon-0:2.27.0-5.el8_4.1.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:git-daemon-debuginfo-0:2.27.0-5.el8_4.1.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:git-debuginfo-0:2.27.0-5.el8_4.1.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:git-debugsource-0:2.27.0-5.el8_4.1.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:git-email-0:2.27.0-5.el8_4.1.noarch",
"AppStream-8.4.0.Z.EUS.EXTENSION:git-gui-0:2.27.0-5.el8_4.1.noarch",
"AppStream-8.4.0.Z.EUS.EXTENSION:git-instaweb-0:2.27.0-5.el8_4.1.noarch",
"AppStream-8.4.0.Z.EUS.EXTENSION:git-subtree-0:2.27.0-5.el8_4.1.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:git-svn-0:2.27.0-5.el8_4.1.noarch",
"AppStream-8.4.0.Z.EUS.EXTENSION:gitk-0:2.27.0-5.el8_4.1.noarch",
"AppStream-8.4.0.Z.EUS.EXTENSION:gitweb-0:2.27.0-5.el8_4.1.noarch",
"AppStream-8.4.0.Z.EUS.EXTENSION:perl-Git-0:2.27.0-5.el8_4.1.noarch",
"AppStream-8.4.0.Z.EUS.EXTENSION:perl-Git-SVN-0:2.27.0-5.el8_4.1.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-48384"
},
{
"category": "external",
"summary": "RHBZ#2378806",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2378806"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-48384",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-48384"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-48384",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-48384"
},
{
"category": "external",
"summary": "https://dgl.cx/2025/07/git-clone-submodule-cve-2025-48384",
"url": "https://dgl.cx/2025/07/git-clone-submodule-cve-2025-48384"
},
{
"category": "external",
"summary": "https://github.com/git/git/commit/05e9cd64ee23bbadcea6bcffd6660ed02b8eab89",
"url": "https://github.com/git/git/commit/05e9cd64ee23bbadcea6bcffd6660ed02b8eab89"
},
{
"category": "external",
"summary": "https://github.com/git/git/security/advisories/GHSA-vwqx-4fm8-6qc9",
"url": "https://github.com/git/git/security/advisories/GHSA-vwqx-4fm8-6qc9"
},
{
"category": "external",
"summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog",
"url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
}
],
"release_date": "2025-07-08T18:23:48.710000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-07-28T01:24:00+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.4.0.Z.AUS:git-0:2.27.0-5.el8_4.1.src",
"AppStream-8.4.0.Z.AUS:git-0:2.27.0-5.el8_4.1.x86_64",
"AppStream-8.4.0.Z.AUS:git-all-0:2.27.0-5.el8_4.1.noarch",
"AppStream-8.4.0.Z.AUS:git-core-0:2.27.0-5.el8_4.1.x86_64",
"AppStream-8.4.0.Z.AUS:git-core-debuginfo-0:2.27.0-5.el8_4.1.x86_64",
"AppStream-8.4.0.Z.AUS:git-core-doc-0:2.27.0-5.el8_4.1.noarch",
"AppStream-8.4.0.Z.AUS:git-credential-libsecret-0:2.27.0-5.el8_4.1.x86_64",
"AppStream-8.4.0.Z.AUS:git-credential-libsecret-debuginfo-0:2.27.0-5.el8_4.1.x86_64",
"AppStream-8.4.0.Z.AUS:git-daemon-0:2.27.0-5.el8_4.1.x86_64",
"AppStream-8.4.0.Z.AUS:git-daemon-debuginfo-0:2.27.0-5.el8_4.1.x86_64",
"AppStream-8.4.0.Z.AUS:git-debuginfo-0:2.27.0-5.el8_4.1.x86_64",
"AppStream-8.4.0.Z.AUS:git-debugsource-0:2.27.0-5.el8_4.1.x86_64",
"AppStream-8.4.0.Z.AUS:git-email-0:2.27.0-5.el8_4.1.noarch",
"AppStream-8.4.0.Z.AUS:git-gui-0:2.27.0-5.el8_4.1.noarch",
"AppStream-8.4.0.Z.AUS:git-instaweb-0:2.27.0-5.el8_4.1.noarch",
"AppStream-8.4.0.Z.AUS:git-subtree-0:2.27.0-5.el8_4.1.x86_64",
"AppStream-8.4.0.Z.AUS:git-svn-0:2.27.0-5.el8_4.1.noarch",
"AppStream-8.4.0.Z.AUS:gitk-0:2.27.0-5.el8_4.1.noarch",
"AppStream-8.4.0.Z.AUS:gitweb-0:2.27.0-5.el8_4.1.noarch",
"AppStream-8.4.0.Z.AUS:perl-Git-0:2.27.0-5.el8_4.1.noarch",
"AppStream-8.4.0.Z.AUS:perl-Git-SVN-0:2.27.0-5.el8_4.1.noarch",
"AppStream-8.4.0.Z.EUS.EXTENSION:git-0:2.27.0-5.el8_4.1.src",
"AppStream-8.4.0.Z.EUS.EXTENSION:git-0:2.27.0-5.el8_4.1.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:git-all-0:2.27.0-5.el8_4.1.noarch",
"AppStream-8.4.0.Z.EUS.EXTENSION:git-core-0:2.27.0-5.el8_4.1.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:git-core-debuginfo-0:2.27.0-5.el8_4.1.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:git-core-doc-0:2.27.0-5.el8_4.1.noarch",
"AppStream-8.4.0.Z.EUS.EXTENSION:git-credential-libsecret-0:2.27.0-5.el8_4.1.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:git-credential-libsecret-debuginfo-0:2.27.0-5.el8_4.1.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:git-daemon-0:2.27.0-5.el8_4.1.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:git-daemon-debuginfo-0:2.27.0-5.el8_4.1.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:git-debuginfo-0:2.27.0-5.el8_4.1.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:git-debugsource-0:2.27.0-5.el8_4.1.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:git-email-0:2.27.0-5.el8_4.1.noarch",
"AppStream-8.4.0.Z.EUS.EXTENSION:git-gui-0:2.27.0-5.el8_4.1.noarch",
"AppStream-8.4.0.Z.EUS.EXTENSION:git-instaweb-0:2.27.0-5.el8_4.1.noarch",
"AppStream-8.4.0.Z.EUS.EXTENSION:git-subtree-0:2.27.0-5.el8_4.1.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:git-svn-0:2.27.0-5.el8_4.1.noarch",
"AppStream-8.4.0.Z.EUS.EXTENSION:gitk-0:2.27.0-5.el8_4.1.noarch",
"AppStream-8.4.0.Z.EUS.EXTENSION:gitweb-0:2.27.0-5.el8_4.1.noarch",
"AppStream-8.4.0.Z.EUS.EXTENSION:perl-Git-0:2.27.0-5.el8_4.1.noarch",
"AppStream-8.4.0.Z.EUS.EXTENSION:perl-Git-SVN-0:2.27.0-5.el8_4.1.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:11800"
},
{
"category": "workaround",
"details": "To mitigate this issue, avoid using --recurse-submodules when cloning repositories from untrusted sources; instead, clone normally and only initialize or update submodules manually after reviewing them.",
"product_ids": [
"AppStream-8.4.0.Z.AUS:git-0:2.27.0-5.el8_4.1.src",
"AppStream-8.4.0.Z.AUS:git-0:2.27.0-5.el8_4.1.x86_64",
"AppStream-8.4.0.Z.AUS:git-all-0:2.27.0-5.el8_4.1.noarch",
"AppStream-8.4.0.Z.AUS:git-core-0:2.27.0-5.el8_4.1.x86_64",
"AppStream-8.4.0.Z.AUS:git-core-debuginfo-0:2.27.0-5.el8_4.1.x86_64",
"AppStream-8.4.0.Z.AUS:git-core-doc-0:2.27.0-5.el8_4.1.noarch",
"AppStream-8.4.0.Z.AUS:git-credential-libsecret-0:2.27.0-5.el8_4.1.x86_64",
"AppStream-8.4.0.Z.AUS:git-credential-libsecret-debuginfo-0:2.27.0-5.el8_4.1.x86_64",
"AppStream-8.4.0.Z.AUS:git-daemon-0:2.27.0-5.el8_4.1.x86_64",
"AppStream-8.4.0.Z.AUS:git-daemon-debuginfo-0:2.27.0-5.el8_4.1.x86_64",
"AppStream-8.4.0.Z.AUS:git-debuginfo-0:2.27.0-5.el8_4.1.x86_64",
"AppStream-8.4.0.Z.AUS:git-debugsource-0:2.27.0-5.el8_4.1.x86_64",
"AppStream-8.4.0.Z.AUS:git-email-0:2.27.0-5.el8_4.1.noarch",
"AppStream-8.4.0.Z.AUS:git-gui-0:2.27.0-5.el8_4.1.noarch",
"AppStream-8.4.0.Z.AUS:git-instaweb-0:2.27.0-5.el8_4.1.noarch",
"AppStream-8.4.0.Z.AUS:git-subtree-0:2.27.0-5.el8_4.1.x86_64",
"AppStream-8.4.0.Z.AUS:git-svn-0:2.27.0-5.el8_4.1.noarch",
"AppStream-8.4.0.Z.AUS:gitk-0:2.27.0-5.el8_4.1.noarch",
"AppStream-8.4.0.Z.AUS:gitweb-0:2.27.0-5.el8_4.1.noarch",
"AppStream-8.4.0.Z.AUS:perl-Git-0:2.27.0-5.el8_4.1.noarch",
"AppStream-8.4.0.Z.AUS:perl-Git-SVN-0:2.27.0-5.el8_4.1.noarch",
"AppStream-8.4.0.Z.EUS.EXTENSION:git-0:2.27.0-5.el8_4.1.src",
"AppStream-8.4.0.Z.EUS.EXTENSION:git-0:2.27.0-5.el8_4.1.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:git-all-0:2.27.0-5.el8_4.1.noarch",
"AppStream-8.4.0.Z.EUS.EXTENSION:git-core-0:2.27.0-5.el8_4.1.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:git-core-debuginfo-0:2.27.0-5.el8_4.1.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:git-core-doc-0:2.27.0-5.el8_4.1.noarch",
"AppStream-8.4.0.Z.EUS.EXTENSION:git-credential-libsecret-0:2.27.0-5.el8_4.1.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:git-credential-libsecret-debuginfo-0:2.27.0-5.el8_4.1.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:git-daemon-0:2.27.0-5.el8_4.1.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:git-daemon-debuginfo-0:2.27.0-5.el8_4.1.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:git-debuginfo-0:2.27.0-5.el8_4.1.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:git-debugsource-0:2.27.0-5.el8_4.1.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:git-email-0:2.27.0-5.el8_4.1.noarch",
"AppStream-8.4.0.Z.EUS.EXTENSION:git-gui-0:2.27.0-5.el8_4.1.noarch",
"AppStream-8.4.0.Z.EUS.EXTENSION:git-instaweb-0:2.27.0-5.el8_4.1.noarch",
"AppStream-8.4.0.Z.EUS.EXTENSION:git-subtree-0:2.27.0-5.el8_4.1.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:git-svn-0:2.27.0-5.el8_4.1.noarch",
"AppStream-8.4.0.Z.EUS.EXTENSION:gitk-0:2.27.0-5.el8_4.1.noarch",
"AppStream-8.4.0.Z.EUS.EXTENSION:gitweb-0:2.27.0-5.el8_4.1.noarch",
"AppStream-8.4.0.Z.EUS.EXTENSION:perl-Git-0:2.27.0-5.el8_4.1.noarch",
"AppStream-8.4.0.Z.EUS.EXTENSION:perl-Git-SVN-0:2.27.0-5.el8_4.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.0,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.4.0.Z.AUS:git-0:2.27.0-5.el8_4.1.src",
"AppStream-8.4.0.Z.AUS:git-0:2.27.0-5.el8_4.1.x86_64",
"AppStream-8.4.0.Z.AUS:git-all-0:2.27.0-5.el8_4.1.noarch",
"AppStream-8.4.0.Z.AUS:git-core-0:2.27.0-5.el8_4.1.x86_64",
"AppStream-8.4.0.Z.AUS:git-core-debuginfo-0:2.27.0-5.el8_4.1.x86_64",
"AppStream-8.4.0.Z.AUS:git-core-doc-0:2.27.0-5.el8_4.1.noarch",
"AppStream-8.4.0.Z.AUS:git-credential-libsecret-0:2.27.0-5.el8_4.1.x86_64",
"AppStream-8.4.0.Z.AUS:git-credential-libsecret-debuginfo-0:2.27.0-5.el8_4.1.x86_64",
"AppStream-8.4.0.Z.AUS:git-daemon-0:2.27.0-5.el8_4.1.x86_64",
"AppStream-8.4.0.Z.AUS:git-daemon-debuginfo-0:2.27.0-5.el8_4.1.x86_64",
"AppStream-8.4.0.Z.AUS:git-debuginfo-0:2.27.0-5.el8_4.1.x86_64",
"AppStream-8.4.0.Z.AUS:git-debugsource-0:2.27.0-5.el8_4.1.x86_64",
"AppStream-8.4.0.Z.AUS:git-email-0:2.27.0-5.el8_4.1.noarch",
"AppStream-8.4.0.Z.AUS:git-gui-0:2.27.0-5.el8_4.1.noarch",
"AppStream-8.4.0.Z.AUS:git-instaweb-0:2.27.0-5.el8_4.1.noarch",
"AppStream-8.4.0.Z.AUS:git-subtree-0:2.27.0-5.el8_4.1.x86_64",
"AppStream-8.4.0.Z.AUS:git-svn-0:2.27.0-5.el8_4.1.noarch",
"AppStream-8.4.0.Z.AUS:gitk-0:2.27.0-5.el8_4.1.noarch",
"AppStream-8.4.0.Z.AUS:gitweb-0:2.27.0-5.el8_4.1.noarch",
"AppStream-8.4.0.Z.AUS:perl-Git-0:2.27.0-5.el8_4.1.noarch",
"AppStream-8.4.0.Z.AUS:perl-Git-SVN-0:2.27.0-5.el8_4.1.noarch",
"AppStream-8.4.0.Z.EUS.EXTENSION:git-0:2.27.0-5.el8_4.1.src",
"AppStream-8.4.0.Z.EUS.EXTENSION:git-0:2.27.0-5.el8_4.1.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:git-all-0:2.27.0-5.el8_4.1.noarch",
"AppStream-8.4.0.Z.EUS.EXTENSION:git-core-0:2.27.0-5.el8_4.1.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:git-core-debuginfo-0:2.27.0-5.el8_4.1.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:git-core-doc-0:2.27.0-5.el8_4.1.noarch",
"AppStream-8.4.0.Z.EUS.EXTENSION:git-credential-libsecret-0:2.27.0-5.el8_4.1.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:git-credential-libsecret-debuginfo-0:2.27.0-5.el8_4.1.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:git-daemon-0:2.27.0-5.el8_4.1.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:git-daemon-debuginfo-0:2.27.0-5.el8_4.1.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:git-debuginfo-0:2.27.0-5.el8_4.1.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:git-debugsource-0:2.27.0-5.el8_4.1.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:git-email-0:2.27.0-5.el8_4.1.noarch",
"AppStream-8.4.0.Z.EUS.EXTENSION:git-gui-0:2.27.0-5.el8_4.1.noarch",
"AppStream-8.4.0.Z.EUS.EXTENSION:git-instaweb-0:2.27.0-5.el8_4.1.noarch",
"AppStream-8.4.0.Z.EUS.EXTENSION:git-subtree-0:2.27.0-5.el8_4.1.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:git-svn-0:2.27.0-5.el8_4.1.noarch",
"AppStream-8.4.0.Z.EUS.EXTENSION:gitk-0:2.27.0-5.el8_4.1.noarch",
"AppStream-8.4.0.Z.EUS.EXTENSION:gitweb-0:2.27.0-5.el8_4.1.noarch",
"AppStream-8.4.0.Z.EUS.EXTENSION:perl-Git-0:2.27.0-5.el8_4.1.noarch",
"AppStream-8.4.0.Z.EUS.EXTENSION:perl-Git-SVN-0:2.27.0-5.el8_4.1.noarch"
]
}
],
"threats": [
{
"category": "exploit_status",
"date": "2025-08-25T00:00:00+00:00",
"details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
},
{
"category": "impact",
"details": "Important"
}
],
"title": "git: Git arbitrary code execution"
}
]
}
rhsa-2025:11793
Vulnerability from csaf_redhat
Published
2025-07-24 23:10
Modified
2025-11-06 23:41
Summary
Red Hat Security Advisory: git security update
Notes
Topic
An update for git is now available for Red Hat Enterprise Linux 8.2 Advanced Update Support.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Git is a distributed revision control system with a decentralized architecture. As opposed to centralized version control systems with a client-server model, Git ensures that each working copy of a Git repository is an exact copy with complete revision history. This not only allows the user to work on and contribute to projects without the need to have permission to push the changes to their official repositories, but also makes it possible for the user to work with no network connection.
Security Fix(es):
* git: Git arbitrary code execution (CVE-2025-48384)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for git is now available for Red Hat Enterprise Linux 8.2 Advanced Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Git is a distributed revision control system with a decentralized architecture. As opposed to centralized version control systems with a client-server model, Git ensures that each working copy of a Git repository is an exact copy with complete revision history. This not only allows the user to work on and contribute to projects without the need to have permission to push the changes to their official repositories, but also makes it possible for the user to work with no network connection.\n\nSecurity Fix(es):\n\n* git: Git arbitrary code execution (CVE-2025-48384)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:11793",
"url": "https://access.redhat.com/errata/RHSA-2025:11793"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2378806",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2378806"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_11793.json"
}
],
"title": "Red Hat Security Advisory: git security update",
"tracking": {
"current_release_date": "2025-11-06T23:41:42+00:00",
"generator": {
"date": "2025-11-06T23:41:42+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.11"
}
},
"id": "RHSA-2025:11793",
"initial_release_date": "2025-07-24T23:10:17+00:00",
"revision_history": [
{
"date": "2025-07-24T23:10:17+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-07-24T23:10:17+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-06T23:41:42+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream AUS (v. 8.2)",
"product": {
"name": "Red Hat Enterprise Linux AppStream AUS (v. 8.2)",
"product_id": "AppStream-8.2.0.Z.AUS",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_aus:8.2::appstream"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "git-0:2.18.4-5.el8_2.1.src",
"product": {
"name": "git-0:2.18.4-5.el8_2.1.src",
"product_id": "git-0:2.18.4-5.el8_2.1.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git@2.18.4-5.el8_2.1?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "git-0:2.18.4-5.el8_2.1.x86_64",
"product": {
"name": "git-0:2.18.4-5.el8_2.1.x86_64",
"product_id": "git-0:2.18.4-5.el8_2.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git@2.18.4-5.el8_2.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-core-0:2.18.4-5.el8_2.1.x86_64",
"product": {
"name": "git-core-0:2.18.4-5.el8_2.1.x86_64",
"product_id": "git-core-0:2.18.4-5.el8_2.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core@2.18.4-5.el8_2.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-daemon-0:2.18.4-5.el8_2.1.x86_64",
"product": {
"name": "git-daemon-0:2.18.4-5.el8_2.1.x86_64",
"product_id": "git-daemon-0:2.18.4-5.el8_2.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon@2.18.4-5.el8_2.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-instaweb-0:2.18.4-5.el8_2.1.x86_64",
"product": {
"name": "git-instaweb-0:2.18.4-5.el8_2.1.x86_64",
"product_id": "git-instaweb-0:2.18.4-5.el8_2.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-instaweb@2.18.4-5.el8_2.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-subtree-0:2.18.4-5.el8_2.1.x86_64",
"product": {
"name": "git-subtree-0:2.18.4-5.el8_2.1.x86_64",
"product_id": "git-subtree-0:2.18.4-5.el8_2.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-subtree@2.18.4-5.el8_2.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-svn-0:2.18.4-5.el8_2.1.x86_64",
"product": {
"name": "git-svn-0:2.18.4-5.el8_2.1.x86_64",
"product_id": "git-svn-0:2.18.4-5.el8_2.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-svn@2.18.4-5.el8_2.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-debugsource-0:2.18.4-5.el8_2.1.x86_64",
"product": {
"name": "git-debugsource-0:2.18.4-5.el8_2.1.x86_64",
"product_id": "git-debugsource-0:2.18.4-5.el8_2.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debugsource@2.18.4-5.el8_2.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-core-debuginfo-0:2.18.4-5.el8_2.1.x86_64",
"product": {
"name": "git-core-debuginfo-0:2.18.4-5.el8_2.1.x86_64",
"product_id": "git-core-debuginfo-0:2.18.4-5.el8_2.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core-debuginfo@2.18.4-5.el8_2.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-daemon-debuginfo-0:2.18.4-5.el8_2.1.x86_64",
"product": {
"name": "git-daemon-debuginfo-0:2.18.4-5.el8_2.1.x86_64",
"product_id": "git-daemon-debuginfo-0:2.18.4-5.el8_2.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon-debuginfo@2.18.4-5.el8_2.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-debuginfo-0:2.18.4-5.el8_2.1.x86_64",
"product": {
"name": "git-debuginfo-0:2.18.4-5.el8_2.1.x86_64",
"product_id": "git-debuginfo-0:2.18.4-5.el8_2.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debuginfo@2.18.4-5.el8_2.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-svn-debuginfo-0:2.18.4-5.el8_2.1.x86_64",
"product": {
"name": "git-svn-debuginfo-0:2.18.4-5.el8_2.1.x86_64",
"product_id": "git-svn-debuginfo-0:2.18.4-5.el8_2.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-svn-debuginfo@2.18.4-5.el8_2.1?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "git-all-0:2.18.4-5.el8_2.1.noarch",
"product": {
"name": "git-all-0:2.18.4-5.el8_2.1.noarch",
"product_id": "git-all-0:2.18.4-5.el8_2.1.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-all@2.18.4-5.el8_2.1?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "git-core-doc-0:2.18.4-5.el8_2.1.noarch",
"product": {
"name": "git-core-doc-0:2.18.4-5.el8_2.1.noarch",
"product_id": "git-core-doc-0:2.18.4-5.el8_2.1.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core-doc@2.18.4-5.el8_2.1?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "git-email-0:2.18.4-5.el8_2.1.noarch",
"product": {
"name": "git-email-0:2.18.4-5.el8_2.1.noarch",
"product_id": "git-email-0:2.18.4-5.el8_2.1.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-email@2.18.4-5.el8_2.1?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "git-gui-0:2.18.4-5.el8_2.1.noarch",
"product": {
"name": "git-gui-0:2.18.4-5.el8_2.1.noarch",
"product_id": "git-gui-0:2.18.4-5.el8_2.1.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-gui@2.18.4-5.el8_2.1?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "gitk-0:2.18.4-5.el8_2.1.noarch",
"product": {
"name": "gitk-0:2.18.4-5.el8_2.1.noarch",
"product_id": "gitk-0:2.18.4-5.el8_2.1.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/gitk@2.18.4-5.el8_2.1?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "gitweb-0:2.18.4-5.el8_2.1.noarch",
"product": {
"name": "gitweb-0:2.18.4-5.el8_2.1.noarch",
"product_id": "gitweb-0:2.18.4-5.el8_2.1.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/gitweb@2.18.4-5.el8_2.1?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "perl-Git-0:2.18.4-5.el8_2.1.noarch",
"product": {
"name": "perl-Git-0:2.18.4-5.el8_2.1.noarch",
"product_id": "perl-Git-0:2.18.4-5.el8_2.1.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/perl-Git@2.18.4-5.el8_2.1?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "perl-Git-SVN-0:2.18.4-5.el8_2.1.noarch",
"product": {
"name": "perl-Git-SVN-0:2.18.4-5.el8_2.1.noarch",
"product_id": "perl-Git-SVN-0:2.18.4-5.el8_2.1.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/perl-Git-SVN@2.18.4-5.el8_2.1?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "git-0:2.18.4-5.el8_2.1.src as a component of Red Hat Enterprise Linux AppStream AUS (v. 8.2)",
"product_id": "AppStream-8.2.0.Z.AUS:git-0:2.18.4-5.el8_2.1.src"
},
"product_reference": "git-0:2.18.4-5.el8_2.1.src",
"relates_to_product_reference": "AppStream-8.2.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-0:2.18.4-5.el8_2.1.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v. 8.2)",
"product_id": "AppStream-8.2.0.Z.AUS:git-0:2.18.4-5.el8_2.1.x86_64"
},
"product_reference": "git-0:2.18.4-5.el8_2.1.x86_64",
"relates_to_product_reference": "AppStream-8.2.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-all-0:2.18.4-5.el8_2.1.noarch as a component of Red Hat Enterprise Linux AppStream AUS (v. 8.2)",
"product_id": "AppStream-8.2.0.Z.AUS:git-all-0:2.18.4-5.el8_2.1.noarch"
},
"product_reference": "git-all-0:2.18.4-5.el8_2.1.noarch",
"relates_to_product_reference": "AppStream-8.2.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-0:2.18.4-5.el8_2.1.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v. 8.2)",
"product_id": "AppStream-8.2.0.Z.AUS:git-core-0:2.18.4-5.el8_2.1.x86_64"
},
"product_reference": "git-core-0:2.18.4-5.el8_2.1.x86_64",
"relates_to_product_reference": "AppStream-8.2.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-debuginfo-0:2.18.4-5.el8_2.1.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v. 8.2)",
"product_id": "AppStream-8.2.0.Z.AUS:git-core-debuginfo-0:2.18.4-5.el8_2.1.x86_64"
},
"product_reference": "git-core-debuginfo-0:2.18.4-5.el8_2.1.x86_64",
"relates_to_product_reference": "AppStream-8.2.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-doc-0:2.18.4-5.el8_2.1.noarch as a component of Red Hat Enterprise Linux AppStream AUS (v. 8.2)",
"product_id": "AppStream-8.2.0.Z.AUS:git-core-doc-0:2.18.4-5.el8_2.1.noarch"
},
"product_reference": "git-core-doc-0:2.18.4-5.el8_2.1.noarch",
"relates_to_product_reference": "AppStream-8.2.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-0:2.18.4-5.el8_2.1.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v. 8.2)",
"product_id": "AppStream-8.2.0.Z.AUS:git-daemon-0:2.18.4-5.el8_2.1.x86_64"
},
"product_reference": "git-daemon-0:2.18.4-5.el8_2.1.x86_64",
"relates_to_product_reference": "AppStream-8.2.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-debuginfo-0:2.18.4-5.el8_2.1.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v. 8.2)",
"product_id": "AppStream-8.2.0.Z.AUS:git-daemon-debuginfo-0:2.18.4-5.el8_2.1.x86_64"
},
"product_reference": "git-daemon-debuginfo-0:2.18.4-5.el8_2.1.x86_64",
"relates_to_product_reference": "AppStream-8.2.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debuginfo-0:2.18.4-5.el8_2.1.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v. 8.2)",
"product_id": "AppStream-8.2.0.Z.AUS:git-debuginfo-0:2.18.4-5.el8_2.1.x86_64"
},
"product_reference": "git-debuginfo-0:2.18.4-5.el8_2.1.x86_64",
"relates_to_product_reference": "AppStream-8.2.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debugsource-0:2.18.4-5.el8_2.1.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v. 8.2)",
"product_id": "AppStream-8.2.0.Z.AUS:git-debugsource-0:2.18.4-5.el8_2.1.x86_64"
},
"product_reference": "git-debugsource-0:2.18.4-5.el8_2.1.x86_64",
"relates_to_product_reference": "AppStream-8.2.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-0:2.18.4-5.el8_2.1.noarch as a component of Red Hat Enterprise Linux AppStream AUS (v. 8.2)",
"product_id": "AppStream-8.2.0.Z.AUS:git-email-0:2.18.4-5.el8_2.1.noarch"
},
"product_reference": "git-email-0:2.18.4-5.el8_2.1.noarch",
"relates_to_product_reference": "AppStream-8.2.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-0:2.18.4-5.el8_2.1.noarch as a component of Red Hat Enterprise Linux AppStream AUS (v. 8.2)",
"product_id": "AppStream-8.2.0.Z.AUS:git-gui-0:2.18.4-5.el8_2.1.noarch"
},
"product_reference": "git-gui-0:2.18.4-5.el8_2.1.noarch",
"relates_to_product_reference": "AppStream-8.2.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-instaweb-0:2.18.4-5.el8_2.1.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v. 8.2)",
"product_id": "AppStream-8.2.0.Z.AUS:git-instaweb-0:2.18.4-5.el8_2.1.x86_64"
},
"product_reference": "git-instaweb-0:2.18.4-5.el8_2.1.x86_64",
"relates_to_product_reference": "AppStream-8.2.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-subtree-0:2.18.4-5.el8_2.1.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v. 8.2)",
"product_id": "AppStream-8.2.0.Z.AUS:git-subtree-0:2.18.4-5.el8_2.1.x86_64"
},
"product_reference": "git-subtree-0:2.18.4-5.el8_2.1.x86_64",
"relates_to_product_reference": "AppStream-8.2.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-0:2.18.4-5.el8_2.1.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v. 8.2)",
"product_id": "AppStream-8.2.0.Z.AUS:git-svn-0:2.18.4-5.el8_2.1.x86_64"
},
"product_reference": "git-svn-0:2.18.4-5.el8_2.1.x86_64",
"relates_to_product_reference": "AppStream-8.2.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-debuginfo-0:2.18.4-5.el8_2.1.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v. 8.2)",
"product_id": "AppStream-8.2.0.Z.AUS:git-svn-debuginfo-0:2.18.4-5.el8_2.1.x86_64"
},
"product_reference": "git-svn-debuginfo-0:2.18.4-5.el8_2.1.x86_64",
"relates_to_product_reference": "AppStream-8.2.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-0:2.18.4-5.el8_2.1.noarch as a component of Red Hat Enterprise Linux AppStream AUS (v. 8.2)",
"product_id": "AppStream-8.2.0.Z.AUS:gitk-0:2.18.4-5.el8_2.1.noarch"
},
"product_reference": "gitk-0:2.18.4-5.el8_2.1.noarch",
"relates_to_product_reference": "AppStream-8.2.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitweb-0:2.18.4-5.el8_2.1.noarch as a component of Red Hat Enterprise Linux AppStream AUS (v. 8.2)",
"product_id": "AppStream-8.2.0.Z.AUS:gitweb-0:2.18.4-5.el8_2.1.noarch"
},
"product_reference": "gitweb-0:2.18.4-5.el8_2.1.noarch",
"relates_to_product_reference": "AppStream-8.2.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-0:2.18.4-5.el8_2.1.noarch as a component of Red Hat Enterprise Linux AppStream AUS (v. 8.2)",
"product_id": "AppStream-8.2.0.Z.AUS:perl-Git-0:2.18.4-5.el8_2.1.noarch"
},
"product_reference": "perl-Git-0:2.18.4-5.el8_2.1.noarch",
"relates_to_product_reference": "AppStream-8.2.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-SVN-0:2.18.4-5.el8_2.1.noarch as a component of Red Hat Enterprise Linux AppStream AUS (v. 8.2)",
"product_id": "AppStream-8.2.0.Z.AUS:perl-Git-SVN-0:2.18.4-5.el8_2.1.noarch"
},
"product_reference": "perl-Git-SVN-0:2.18.4-5.el8_2.1.noarch",
"relates_to_product_reference": "AppStream-8.2.0.Z.AUS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-48384",
"cwe": {
"id": "CWE-59",
"name": "Improper Link Resolution Before File Access (\u0027Link Following\u0027)"
},
"discovery_date": "2025-07-08T19:00:48.297925+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2378806"
}
],
"notes": [
{
"category": "description",
"text": "A line-end handling flaw was found in Git. When writing a config entry, values with a trailing carriage return (CR) are not quoted, resulting in the CR being lost when the config is read later. When initializing a submodule, if the submodule path contains a trailing CR, the altered path is read, resulting in the submodule being checked out to an incorrect location.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "git: Git arbitrary code execution",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability marked as Important and not Moderate flaw because it undermines Git\u2019s path and config integrity by allowing carriage return (\\r) injection to manipulate submodule checkout behavior. Git previously failed to quote config values containing trailing CR, causing the value to be misinterpreted when read back. In the context of submodules, this leads to incorrect path resolution, allowing an attacker to redirect the checkout path via a symlink to a sensitive directory like .git/modules/\u003csubmodule\u003e/hooks. If an executable post-checkout hook exists there, it could be inadvertently executed, resulting in arbitrary code execution during submodule operations. This is particularly dangerous in automated CI/CD pipelines or multi-repo projects where submodules are initialized or updated without manual inspection.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.2.0.Z.AUS:git-0:2.18.4-5.el8_2.1.src",
"AppStream-8.2.0.Z.AUS:git-0:2.18.4-5.el8_2.1.x86_64",
"AppStream-8.2.0.Z.AUS:git-all-0:2.18.4-5.el8_2.1.noarch",
"AppStream-8.2.0.Z.AUS:git-core-0:2.18.4-5.el8_2.1.x86_64",
"AppStream-8.2.0.Z.AUS:git-core-debuginfo-0:2.18.4-5.el8_2.1.x86_64",
"AppStream-8.2.0.Z.AUS:git-core-doc-0:2.18.4-5.el8_2.1.noarch",
"AppStream-8.2.0.Z.AUS:git-daemon-0:2.18.4-5.el8_2.1.x86_64",
"AppStream-8.2.0.Z.AUS:git-daemon-debuginfo-0:2.18.4-5.el8_2.1.x86_64",
"AppStream-8.2.0.Z.AUS:git-debuginfo-0:2.18.4-5.el8_2.1.x86_64",
"AppStream-8.2.0.Z.AUS:git-debugsource-0:2.18.4-5.el8_2.1.x86_64",
"AppStream-8.2.0.Z.AUS:git-email-0:2.18.4-5.el8_2.1.noarch",
"AppStream-8.2.0.Z.AUS:git-gui-0:2.18.4-5.el8_2.1.noarch",
"AppStream-8.2.0.Z.AUS:git-instaweb-0:2.18.4-5.el8_2.1.x86_64",
"AppStream-8.2.0.Z.AUS:git-subtree-0:2.18.4-5.el8_2.1.x86_64",
"AppStream-8.2.0.Z.AUS:git-svn-0:2.18.4-5.el8_2.1.x86_64",
"AppStream-8.2.0.Z.AUS:git-svn-debuginfo-0:2.18.4-5.el8_2.1.x86_64",
"AppStream-8.2.0.Z.AUS:gitk-0:2.18.4-5.el8_2.1.noarch",
"AppStream-8.2.0.Z.AUS:gitweb-0:2.18.4-5.el8_2.1.noarch",
"AppStream-8.2.0.Z.AUS:perl-Git-0:2.18.4-5.el8_2.1.noarch",
"AppStream-8.2.0.Z.AUS:perl-Git-SVN-0:2.18.4-5.el8_2.1.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-48384"
},
{
"category": "external",
"summary": "RHBZ#2378806",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2378806"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-48384",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-48384"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-48384",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-48384"
},
{
"category": "external",
"summary": "https://dgl.cx/2025/07/git-clone-submodule-cve-2025-48384",
"url": "https://dgl.cx/2025/07/git-clone-submodule-cve-2025-48384"
},
{
"category": "external",
"summary": "https://github.com/git/git/commit/05e9cd64ee23bbadcea6bcffd6660ed02b8eab89",
"url": "https://github.com/git/git/commit/05e9cd64ee23bbadcea6bcffd6660ed02b8eab89"
},
{
"category": "external",
"summary": "https://github.com/git/git/security/advisories/GHSA-vwqx-4fm8-6qc9",
"url": "https://github.com/git/git/security/advisories/GHSA-vwqx-4fm8-6qc9"
},
{
"category": "external",
"summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog",
"url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
}
],
"release_date": "2025-07-08T18:23:48.710000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-07-24T23:10:17+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.2.0.Z.AUS:git-0:2.18.4-5.el8_2.1.src",
"AppStream-8.2.0.Z.AUS:git-0:2.18.4-5.el8_2.1.x86_64",
"AppStream-8.2.0.Z.AUS:git-all-0:2.18.4-5.el8_2.1.noarch",
"AppStream-8.2.0.Z.AUS:git-core-0:2.18.4-5.el8_2.1.x86_64",
"AppStream-8.2.0.Z.AUS:git-core-debuginfo-0:2.18.4-5.el8_2.1.x86_64",
"AppStream-8.2.0.Z.AUS:git-core-doc-0:2.18.4-5.el8_2.1.noarch",
"AppStream-8.2.0.Z.AUS:git-daemon-0:2.18.4-5.el8_2.1.x86_64",
"AppStream-8.2.0.Z.AUS:git-daemon-debuginfo-0:2.18.4-5.el8_2.1.x86_64",
"AppStream-8.2.0.Z.AUS:git-debuginfo-0:2.18.4-5.el8_2.1.x86_64",
"AppStream-8.2.0.Z.AUS:git-debugsource-0:2.18.4-5.el8_2.1.x86_64",
"AppStream-8.2.0.Z.AUS:git-email-0:2.18.4-5.el8_2.1.noarch",
"AppStream-8.2.0.Z.AUS:git-gui-0:2.18.4-5.el8_2.1.noarch",
"AppStream-8.2.0.Z.AUS:git-instaweb-0:2.18.4-5.el8_2.1.x86_64",
"AppStream-8.2.0.Z.AUS:git-subtree-0:2.18.4-5.el8_2.1.x86_64",
"AppStream-8.2.0.Z.AUS:git-svn-0:2.18.4-5.el8_2.1.x86_64",
"AppStream-8.2.0.Z.AUS:git-svn-debuginfo-0:2.18.4-5.el8_2.1.x86_64",
"AppStream-8.2.0.Z.AUS:gitk-0:2.18.4-5.el8_2.1.noarch",
"AppStream-8.2.0.Z.AUS:gitweb-0:2.18.4-5.el8_2.1.noarch",
"AppStream-8.2.0.Z.AUS:perl-Git-0:2.18.4-5.el8_2.1.noarch",
"AppStream-8.2.0.Z.AUS:perl-Git-SVN-0:2.18.4-5.el8_2.1.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:11793"
},
{
"category": "workaround",
"details": "To mitigate this issue, avoid using --recurse-submodules when cloning repositories from untrusted sources; instead, clone normally and only initialize or update submodules manually after reviewing them.",
"product_ids": [
"AppStream-8.2.0.Z.AUS:git-0:2.18.4-5.el8_2.1.src",
"AppStream-8.2.0.Z.AUS:git-0:2.18.4-5.el8_2.1.x86_64",
"AppStream-8.2.0.Z.AUS:git-all-0:2.18.4-5.el8_2.1.noarch",
"AppStream-8.2.0.Z.AUS:git-core-0:2.18.4-5.el8_2.1.x86_64",
"AppStream-8.2.0.Z.AUS:git-core-debuginfo-0:2.18.4-5.el8_2.1.x86_64",
"AppStream-8.2.0.Z.AUS:git-core-doc-0:2.18.4-5.el8_2.1.noarch",
"AppStream-8.2.0.Z.AUS:git-daemon-0:2.18.4-5.el8_2.1.x86_64",
"AppStream-8.2.0.Z.AUS:git-daemon-debuginfo-0:2.18.4-5.el8_2.1.x86_64",
"AppStream-8.2.0.Z.AUS:git-debuginfo-0:2.18.4-5.el8_2.1.x86_64",
"AppStream-8.2.0.Z.AUS:git-debugsource-0:2.18.4-5.el8_2.1.x86_64",
"AppStream-8.2.0.Z.AUS:git-email-0:2.18.4-5.el8_2.1.noarch",
"AppStream-8.2.0.Z.AUS:git-gui-0:2.18.4-5.el8_2.1.noarch",
"AppStream-8.2.0.Z.AUS:git-instaweb-0:2.18.4-5.el8_2.1.x86_64",
"AppStream-8.2.0.Z.AUS:git-subtree-0:2.18.4-5.el8_2.1.x86_64",
"AppStream-8.2.0.Z.AUS:git-svn-0:2.18.4-5.el8_2.1.x86_64",
"AppStream-8.2.0.Z.AUS:git-svn-debuginfo-0:2.18.4-5.el8_2.1.x86_64",
"AppStream-8.2.0.Z.AUS:gitk-0:2.18.4-5.el8_2.1.noarch",
"AppStream-8.2.0.Z.AUS:gitweb-0:2.18.4-5.el8_2.1.noarch",
"AppStream-8.2.0.Z.AUS:perl-Git-0:2.18.4-5.el8_2.1.noarch",
"AppStream-8.2.0.Z.AUS:perl-Git-SVN-0:2.18.4-5.el8_2.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.0,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.2.0.Z.AUS:git-0:2.18.4-5.el8_2.1.src",
"AppStream-8.2.0.Z.AUS:git-0:2.18.4-5.el8_2.1.x86_64",
"AppStream-8.2.0.Z.AUS:git-all-0:2.18.4-5.el8_2.1.noarch",
"AppStream-8.2.0.Z.AUS:git-core-0:2.18.4-5.el8_2.1.x86_64",
"AppStream-8.2.0.Z.AUS:git-core-debuginfo-0:2.18.4-5.el8_2.1.x86_64",
"AppStream-8.2.0.Z.AUS:git-core-doc-0:2.18.4-5.el8_2.1.noarch",
"AppStream-8.2.0.Z.AUS:git-daemon-0:2.18.4-5.el8_2.1.x86_64",
"AppStream-8.2.0.Z.AUS:git-daemon-debuginfo-0:2.18.4-5.el8_2.1.x86_64",
"AppStream-8.2.0.Z.AUS:git-debuginfo-0:2.18.4-5.el8_2.1.x86_64",
"AppStream-8.2.0.Z.AUS:git-debugsource-0:2.18.4-5.el8_2.1.x86_64",
"AppStream-8.2.0.Z.AUS:git-email-0:2.18.4-5.el8_2.1.noarch",
"AppStream-8.2.0.Z.AUS:git-gui-0:2.18.4-5.el8_2.1.noarch",
"AppStream-8.2.0.Z.AUS:git-instaweb-0:2.18.4-5.el8_2.1.x86_64",
"AppStream-8.2.0.Z.AUS:git-subtree-0:2.18.4-5.el8_2.1.x86_64",
"AppStream-8.2.0.Z.AUS:git-svn-0:2.18.4-5.el8_2.1.x86_64",
"AppStream-8.2.0.Z.AUS:git-svn-debuginfo-0:2.18.4-5.el8_2.1.x86_64",
"AppStream-8.2.0.Z.AUS:gitk-0:2.18.4-5.el8_2.1.noarch",
"AppStream-8.2.0.Z.AUS:gitweb-0:2.18.4-5.el8_2.1.noarch",
"AppStream-8.2.0.Z.AUS:perl-Git-0:2.18.4-5.el8_2.1.noarch",
"AppStream-8.2.0.Z.AUS:perl-Git-SVN-0:2.18.4-5.el8_2.1.noarch"
]
}
],
"threats": [
{
"category": "exploit_status",
"date": "2025-08-25T00:00:00+00:00",
"details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
},
{
"category": "impact",
"details": "Important"
}
],
"title": "git: Git arbitrary code execution"
}
]
}
rhsa-2025:15308
Vulnerability from csaf_redhat
Published
2025-09-11 12:02
Modified
2025-11-12 20:09
Summary
Red Hat Security Advisory: OpenShift Container Platform 4.12.80 bug fix and security update
Notes
Topic
Red Hat OpenShift Container Platform release 4.12.80 is now available with updates to packages and images that fix several bugs and add enhancements.
This release includes a security update for Red Hat OpenShift Container Platform 4.12.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments.
This advisory contains the container images for Red Hat OpenShift Container Platform 4.12.80. See the following advisory for the RPM packages for this release:
https://access.redhat.com/errata/RHBA-2025:15307
Space precludes documenting all of the container images in this advisory. See the following Release Notes documentation, which will be updated shortly for this release, for details about these changes:
https://docs.redhat.com/en/documentation/openshift_container_platform/4.12/html/release_notes
Security Fix(es):
* libxslt: Heap Use-After-Free in libxslt caused by atype corruption in xmlAttrPtr (CVE-2025-7425)
* git: Git arbitrary code execution (CVE-2025-48384)
* libxml2: Integer Overflow in xmlBuildQName() Leads to Stack Buffer Overflow in libxml2 (CVE-2025-6021)
* libxml2: Out-of-Bounds Read in libxml2 (CVE-2025-32414)
* libxml2: Out-of-bounds Read in xmlSchemaIDCFillNodeTables (CVE-2025-32415)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
All OpenShift Container Platform 4.12 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift CLI (oc) or web console. Instructions for upgrading a cluster are available at https://docs.redhat.com/en/documentation/openshift_container_platform/4.12/html-single/updating_clusters/index#updating-cluster-within-minor.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat OpenShift Container Platform release 4.12.80 is now available with updates to packages and images that fix several bugs and add enhancements.\n\nThis release includes a security update for Red Hat OpenShift Container Platform 4.12.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat OpenShift Container Platform is Red Hat\u0027s cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments.\n\nThis advisory contains the container images for Red Hat OpenShift Container Platform 4.12.80. See the following advisory for the RPM packages for this release:\n\nhttps://access.redhat.com/errata/RHBA-2025:15307\n\nSpace precludes documenting all of the container images in this advisory. See the following Release Notes documentation, which will be updated shortly for this release, for details about these changes:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.12/html/release_notes\n\nSecurity Fix(es):\n\n* libxslt: Heap Use-After-Free in libxslt caused by atype corruption in xmlAttrPtr (CVE-2025-7425)\n* git: Git arbitrary code execution (CVE-2025-48384)\n* libxml2: Integer Overflow in xmlBuildQName() Leads to Stack Buffer Overflow in libxml2 (CVE-2025-6021)\n* libxml2: Out-of-Bounds Read in libxml2 (CVE-2025-32414)\n* libxml2: Out-of-bounds Read in xmlSchemaIDCFillNodeTables (CVE-2025-32415)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nAll OpenShift Container Platform 4.12 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift CLI (oc) or web console. Instructions for upgrading a cluster are available at https://docs.redhat.com/en/documentation/openshift_container_platform/4.12/html-single/updating_clusters/index#updating-cluster-within-minor.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:15308",
"url": "https://access.redhat.com/errata/RHSA-2025:15308"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2358121",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2358121"
},
{
"category": "external",
"summary": "2360768",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2360768"
},
{
"category": "external",
"summary": "2372406",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2372406"
},
{
"category": "external",
"summary": "2378806",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2378806"
},
{
"category": "external",
"summary": "2379274",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2379274"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_15308.json"
}
],
"title": "Red Hat Security Advisory: OpenShift Container Platform 4.12.80 bug fix and security update",
"tracking": {
"current_release_date": "2025-11-12T20:09:35+00:00",
"generator": {
"date": "2025-11-12T20:09:35+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.12"
}
},
"id": "RHSA-2025:15308",
"initial_release_date": "2025-09-11T12:02:09+00:00",
"revision_history": [
{
"date": "2025-09-11T12:02:09+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-09-11T12:02:09+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-12T20:09:35+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat OpenShift Container Platform 4.12",
"product": {
"name": "Red Hat OpenShift Container Platform 4.12",
"product_id": "8Base-RHOSE-4.12",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:4.12::el8"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift Enterprise"
},
{
"branches": [
{
"category": "product_version",
"name": "rhcos-x86_64-412.86.202509030110-0",
"product": {
"name": "rhcos-x86_64-412.86.202509030110-0",
"product_id": "rhcos-x86_64-412.86.202509030110-0",
"product_identification_helper": {
"purl": "pkg:generic/redhat/rhcos@412.86.202509030110?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "rhcos-x86_64-412.86.202509030110-0 as a component of Red Hat OpenShift Container Platform 4.12",
"product_id": "8Base-RHOSE-4.12:rhcos-x86_64-412.86.202509030110-0"
},
"product_reference": "rhcos-x86_64-412.86.202509030110-0",
"relates_to_product_reference": "8Base-RHOSE-4.12"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Ahmed Lekssays"
]
}
],
"cve": "CVE-2025-6021",
"cwe": {
"id": "CWE-121",
"name": "Stack-based Buffer Overflow"
},
"discovery_date": "2025-06-12T07:55:45.428000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2372406"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in libxml2\u0027s xmlBuildQName function, where integer overflows in buffer size calculations can lead to a stack-based buffer overflow. This issue can result in memory corruption or a denial of service when processing crafted input.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "libxml2: Integer Overflow in xmlBuildQName() Leads to Stack Buffer Overflow in libxml2",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is rated Moderate due to the lack of confidentiality impact and limited integrity concerns, with the main risk being potential denial-of-service from a crash. Exploitation requires crafted XML input and specific application behavior using xmlBuildQName. While it\u2019s a write overflow, modern mitigations make remote code execution unlikely.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSE-4.12:rhcos-x86_64-412.86.202509030110-0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-6021"
},
{
"category": "external",
"summary": "RHBZ#2372406",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2372406"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-6021",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6021"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-6021",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-6021"
}
],
"release_date": "2025-06-12T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-09-11T12:02:09+00:00",
"details": "For OpenShift Container Platform 4.12 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous erratamupdate:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.12/html/release_notes\n\nYou may download the oc tool and use it to inspect release image metadata for the x86_64 architecture. The image digests may be found at https://quay.io/repository/openshift-release-dev/ocp-release?tab=tags.\n\n The sha values for the release are as follows:\n\n (For x86_64 architecture)\n The image digest is sha256:7c5f757b5d3d2048052401dd057f3096890b4075ca9b86b5f890a8e4c6d38b85\n\nAll OpenShift Container Platform 4.12 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift CLI (oc) or web console. Instructions for upgrading a cluster are available at https://docs.redhat.com/en/documentation/openshift_container_platform/4.12/html-single/updating_clusters/index#updating-cluster-within-minor.",
"product_ids": [
"8Base-RHOSE-4.12:rhcos-x86_64-412.86.202509030110-0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:15308"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability. Users are strongly advised to apply vendor-supplied patches as soon as they become available to address the underlying integer overflow flaw in the affected code.",
"product_ids": [
"8Base-RHOSE-4.12:rhcos-x86_64-412.86.202509030110-0"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHOSE-4.12:rhcos-x86_64-412.86.202509030110-0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "libxml2: Integer Overflow in xmlBuildQName() Leads to Stack Buffer Overflow in libxml2"
},
{
"acknowledgments": [
{
"names": [
"Sergei Glazunov"
],
"organization": "Google Project Zero"
}
],
"cve": "CVE-2025-7425",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"discovery_date": "2025-07-10T09:37:28.172000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2379274"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in libxslt where the attribute type, atype, flags are modified in a way that corrupts internal memory management. When XSLT functions, such as the key() process, result in tree fragments, this corruption prevents the proper cleanup of ID attributes. As a result, the system may access freed memory, causing crashes or enabling attackers to trigger heap corruption.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "libxslt: Heap Use-After-Free in libxslt caused by atype corruption in xmlAttrPtr",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This heap-use-after-free vulnerability in libxslt is rated Important because it can lead to memory corruption and application crashes. The flaw arises when internal attribute metadata (atype) is modified by libxslt\u0027s xsltSetSourceNodeFlags() function during processing of result tree fragments. If the flag corruption prevents proper removal of ID references, later memory cleanup routines may operate on already-freed memory. Since libxslt is commonly used in server-side XML processing, this could result in denial-of-service or potentially facilitate code execution under certain memory reuse conditions.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSE-4.12:rhcos-x86_64-412.86.202509030110-0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-7425"
},
{
"category": "external",
"summary": "RHBZ#2379274",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2379274"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-7425",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-7425"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-7425",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-7425"
},
{
"category": "external",
"summary": "https://gitlab.gnome.org/GNOME/libxslt/-/issues/140",
"url": "https://gitlab.gnome.org/GNOME/libxslt/-/issues/140"
}
],
"release_date": "2025-07-10T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-09-11T12:02:09+00:00",
"details": "For OpenShift Container Platform 4.12 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous erratamupdate:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.12/html/release_notes\n\nYou may download the oc tool and use it to inspect release image metadata for the x86_64 architecture. The image digests may be found at https://quay.io/repository/openshift-release-dev/ocp-release?tab=tags.\n\n The sha values for the release are as follows:\n\n (For x86_64 architecture)\n The image digest is sha256:7c5f757b5d3d2048052401dd057f3096890b4075ca9b86b5f890a8e4c6d38b85\n\nAll OpenShift Container Platform 4.12 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift CLI (oc) or web console. Instructions for upgrading a cluster are available at https://docs.redhat.com/en/documentation/openshift_container_platform/4.12/html-single/updating_clusters/index#updating-cluster-within-minor.",
"product_ids": [
"8Base-RHOSE-4.12:rhcos-x86_64-412.86.202509030110-0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:15308"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHOSE-4.12:rhcos-x86_64-412.86.202509030110-0"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"8Base-RHOSE-4.12:rhcos-x86_64-412.86.202509030110-0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "libxslt: Heap Use-After-Free in libxslt caused by atype corruption in xmlAttrPtr"
},
{
"cve": "CVE-2025-32414",
"cwe": {
"id": "CWE-393",
"name": "Return of Wrong Status Code"
},
"discovery_date": "2025-04-08T04:00:51.284113+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2358121"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in libxml2. This vulnerability allows out-of-bounds memory access due to incorrect handling of return values in xmlPythonFileRead and xmlPythonFileReadRaw. This is caused by a mismatch between the length of the file in bytes vs the length in characters, as unicode characters can occupy up to 4 bytes per character.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "libxml2: Out-of-Bounds Read in libxml2",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This bug affects parsing of text streams using:\n- the Python bindings (pending deprecation: https://gitlab.gnome.org/GNOME/libxml2/-/issues/891)\n- the libxml2 SAX driver drv_libxml2,\n- the XML Reader API\n\nParsing of binary streams is not affected by this vulnerability.\n\nThe vulnerability exists in the libxml2 package the bug arises because of a mismatch between characters vs. bytes handling: functions xmlPythonFileRead and xmlPythonFileReadRaw may compute a length incorrectly (mistaking character count for byte count), but for a succesful exploitation of this bug requires local access, on top of that the path to exploiation is non trivial, where handling of python binding\u0027s and specific input handling of bytes and charcters are required which makes this outside the scope of an attacker and increases the attack complexity, for these reasons this has been marked as moderate by redhat.\n\n\nWithin regulated environments, a combination of the following controls acts as a significant barrier to successfully exploiting a CWE-393: Return of Wrong Status Code vulnerability and therefore downgrades the severity of this particular CVE from Moderate to Low.\n\nThe platform enforces hardening guidelines to apply the most restrictive settings necessary for operational needs, while baseline configurations maintain secure system and software states. A defense-in-depth monitoring strategy includes perimeter firewalls and endpoint protection services that detect and respond to threats in real time, helping prevent or limit exploitation attempts. Robust input validation and error handling ensure all user inputs are thoroughly validated, supporting consistent and secure system responses.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSE-4.12:rhcos-x86_64-412.86.202509030110-0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-32414"
},
{
"category": "external",
"summary": "RHBZ#2358121",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2358121"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-32414",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-32414"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-32414",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-32414"
},
{
"category": "external",
"summary": "https://gitlab.gnome.org/GNOME/libxml2/-/issues/889",
"url": "https://gitlab.gnome.org/GNOME/libxml2/-/issues/889"
}
],
"release_date": "2025-04-08T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-09-11T12:02:09+00:00",
"details": "For OpenShift Container Platform 4.12 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous erratamupdate:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.12/html/release_notes\n\nYou may download the oc tool and use it to inspect release image metadata for the x86_64 architecture. The image digests may be found at https://quay.io/repository/openshift-release-dev/ocp-release?tab=tags.\n\n The sha values for the release are as follows:\n\n (For x86_64 architecture)\n The image digest is sha256:7c5f757b5d3d2048052401dd057f3096890b4075ca9b86b5f890a8e4c6d38b85\n\nAll OpenShift Container Platform 4.12 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift CLI (oc) or web console. Instructions for upgrading a cluster are available at https://docs.redhat.com/en/documentation/openshift_container_platform/4.12/html-single/updating_clusters/index#updating-cluster-within-minor.",
"product_ids": [
"8Base-RHOSE-4.12:rhcos-x86_64-412.86.202509030110-0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:15308"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHOSE-4.12:rhcos-x86_64-412.86.202509030110-0"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "LOW",
"baseScore": 5.6,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"8Base-RHOSE-4.12:rhcos-x86_64-412.86.202509030110-0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "libxml2: Out-of-Bounds Read in libxml2"
},
{
"cve": "CVE-2025-32415",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2025-04-17T18:00:46.954384+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2360768"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the libxml2 library. A heap-based underflow can be triggered when a crafted XML document is validated against an XML schema with certain identity constraints or when a crafted XML schema is used, causing a crash to the application linked to the library and resulting in a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "libxml2: Out-of-bounds Read in xmlSchemaIDCFillNodeTables",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "To exploit this issue, an attacker needs to be able to process a specially crafted XML file with the application linked to the libxml2 library. Additionally, the only security impact of this vulnerability is a denial of service.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSE-4.12:rhcos-x86_64-412.86.202509030110-0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-32415"
},
{
"category": "external",
"summary": "RHBZ#2360768",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2360768"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-32415",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-32415"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-32415",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-32415"
},
{
"category": "external",
"summary": "https://gitlab.gnome.org/GNOME/libxml2/-/issues/890",
"url": "https://gitlab.gnome.org/GNOME/libxml2/-/issues/890"
}
],
"release_date": "2025-04-17T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-09-11T12:02:09+00:00",
"details": "For OpenShift Container Platform 4.12 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous erratamupdate:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.12/html/release_notes\n\nYou may download the oc tool and use it to inspect release image metadata for the x86_64 architecture. The image digests may be found at https://quay.io/repository/openshift-release-dev/ocp-release?tab=tags.\n\n The sha values for the release are as follows:\n\n (For x86_64 architecture)\n The image digest is sha256:7c5f757b5d3d2048052401dd057f3096890b4075ca9b86b5f890a8e4c6d38b85\n\nAll OpenShift Container Platform 4.12 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift CLI (oc) or web console. Instructions for upgrading a cluster are available at https://docs.redhat.com/en/documentation/openshift_container_platform/4.12/html-single/updating_clusters/index#updating-cluster-within-minor.",
"product_ids": [
"8Base-RHOSE-4.12:rhcos-x86_64-412.86.202509030110-0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:15308"
},
{
"category": "workaround",
"details": "Do not process untrusted files with the libxml2 library.",
"product_ids": [
"8Base-RHOSE-4.12:rhcos-x86_64-412.86.202509030110-0"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHOSE-4.12:rhcos-x86_64-412.86.202509030110-0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "libxml2: Out-of-bounds Read in xmlSchemaIDCFillNodeTables"
},
{
"cve": "CVE-2025-48384",
"cwe": {
"id": "CWE-59",
"name": "Improper Link Resolution Before File Access (\u0027Link Following\u0027)"
},
"discovery_date": "2025-07-08T19:00:48.297925+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2378806"
}
],
"notes": [
{
"category": "description",
"text": "A line-end handling flaw was found in Git. When writing a config entry, values with a trailing carriage return (CR) are not quoted, resulting in the CR being lost when the config is read later. When initializing a submodule, if the submodule path contains a trailing CR, the altered path is read, resulting in the submodule being checked out to an incorrect location.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "git: Git arbitrary code execution",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability marked as Important and not Moderate flaw because it undermines Git\u2019s path and config integrity by allowing carriage return (\\r) injection to manipulate submodule checkout behavior. Git previously failed to quote config values containing trailing CR, causing the value to be misinterpreted when read back. In the context of submodules, this leads to incorrect path resolution, allowing an attacker to redirect the checkout path via a symlink to a sensitive directory like .git/modules/\u003csubmodule\u003e/hooks. If an executable post-checkout hook exists there, it could be inadvertently executed, resulting in arbitrary code execution during submodule operations. This is particularly dangerous in automated CI/CD pipelines or multi-repo projects where submodules are initialized or updated without manual inspection.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSE-4.12:rhcos-x86_64-412.86.202509030110-0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-48384"
},
{
"category": "external",
"summary": "RHBZ#2378806",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2378806"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-48384",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-48384"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-48384",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-48384"
},
{
"category": "external",
"summary": "https://dgl.cx/2025/07/git-clone-submodule-cve-2025-48384",
"url": "https://dgl.cx/2025/07/git-clone-submodule-cve-2025-48384"
},
{
"category": "external",
"summary": "https://github.com/git/git/commit/05e9cd64ee23bbadcea6bcffd6660ed02b8eab89",
"url": "https://github.com/git/git/commit/05e9cd64ee23bbadcea6bcffd6660ed02b8eab89"
},
{
"category": "external",
"summary": "https://github.com/git/git/security/advisories/GHSA-vwqx-4fm8-6qc9",
"url": "https://github.com/git/git/security/advisories/GHSA-vwqx-4fm8-6qc9"
},
{
"category": "external",
"summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog",
"url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
}
],
"release_date": "2025-07-08T18:23:48.710000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-09-11T12:02:09+00:00",
"details": "For OpenShift Container Platform 4.12 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous erratamupdate:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.12/html/release_notes\n\nYou may download the oc tool and use it to inspect release image metadata for the x86_64 architecture. The image digests may be found at https://quay.io/repository/openshift-release-dev/ocp-release?tab=tags.\n\n The sha values for the release are as follows:\n\n (For x86_64 architecture)\n The image digest is sha256:7c5f757b5d3d2048052401dd057f3096890b4075ca9b86b5f890a8e4c6d38b85\n\nAll OpenShift Container Platform 4.12 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift CLI (oc) or web console. Instructions for upgrading a cluster are available at https://docs.redhat.com/en/documentation/openshift_container_platform/4.12/html-single/updating_clusters/index#updating-cluster-within-minor.",
"product_ids": [
"8Base-RHOSE-4.12:rhcos-x86_64-412.86.202509030110-0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:15308"
},
{
"category": "workaround",
"details": "To mitigate this issue, avoid using --recurse-submodules when cloning repositories from untrusted sources; instead, clone normally and only initialize or update submodules manually after reviewing them.",
"product_ids": [
"8Base-RHOSE-4.12:rhcos-x86_64-412.86.202509030110-0"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.0,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"8Base-RHOSE-4.12:rhcos-x86_64-412.86.202509030110-0"
]
}
],
"threats": [
{
"category": "exploit_status",
"date": "2025-08-25T00:00:00+00:00",
"details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
},
{
"category": "impact",
"details": "Important"
}
],
"title": "git: Git arbitrary code execution"
}
]
}
rhsa-2025:11688
Vulnerability from csaf_redhat
Published
2025-07-24 08:08
Modified
2025-11-06 23:41
Summary
Red Hat Security Advisory: git security update
Notes
Topic
An update for git is now available for Red Hat Enterprise Linux 7 Extended Lifecycle Support.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Git is a distributed revision control system with a decentralized architecture. As opposed to centralized version control systems with a client-server model, Git ensures that each working copy of a Git repository is an exact copy with complete revision history. This not only allows the user to work on and contribute to projects without the need to have permission to push the changes to their official repositories, but also makes it possible for the user to work with no network connection.
Security Fix(es):
* git: Git arbitrary code execution (CVE-2025-48384)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for git is now available for Red Hat Enterprise Linux 7 Extended Lifecycle Support.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Git is a distributed revision control system with a decentralized architecture. As opposed to centralized version control systems with a client-server model, Git ensures that each working copy of a Git repository is an exact copy with complete revision history. This not only allows the user to work on and contribute to projects without the need to have permission to push the changes to their official repositories, but also makes it possible for the user to work with no network connection.\n\nSecurity Fix(es):\n\n* git: Git arbitrary code execution (CVE-2025-48384)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:11688",
"url": "https://access.redhat.com/errata/RHSA-2025:11688"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2378806",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2378806"
},
{
"category": "external",
"summary": "RHEL-61651",
"url": "https://issues.redhat.com/browse/RHEL-61651"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_11688.json"
}
],
"title": "Red Hat Security Advisory: git security update",
"tracking": {
"current_release_date": "2025-11-06T23:41:41+00:00",
"generator": {
"date": "2025-11-06T23:41:41+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.11"
}
},
"id": "RHSA-2025:11688",
"initial_release_date": "2025-07-24T08:08:30+00:00",
"revision_history": [
{
"date": "2025-07-24T08:08:30+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-07-24T08:08:30+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-06T23:41:41+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server (v. 7 ELS)",
"product": {
"name": "Red Hat Enterprise Linux Server (v. 7 ELS)",
"product_id": "7Server-ELS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_els:7"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
"product": {
"name": "Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
"product_id": "7Server-optional-ELS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_els:7"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "git-0:1.8.3.1-25.el7_9.1.src",
"product": {
"name": "git-0:1.8.3.1-25.el7_9.1.src",
"product_id": "git-0:1.8.3.1-25.el7_9.1.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git@1.8.3.1-25.el7_9.1?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "git-0:1.8.3.1-25.el7_9.1.x86_64",
"product": {
"name": "git-0:1.8.3.1-25.el7_9.1.x86_64",
"product_id": "git-0:1.8.3.1-25.el7_9.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git@1.8.3.1-25.el7_9.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-debuginfo-0:1.8.3.1-25.el7_9.1.x86_64",
"product": {
"name": "git-debuginfo-0:1.8.3.1-25.el7_9.1.x86_64",
"product_id": "git-debuginfo-0:1.8.3.1-25.el7_9.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debuginfo@1.8.3.1-25.el7_9.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-daemon-0:1.8.3.1-25.el7_9.1.x86_64",
"product": {
"name": "git-daemon-0:1.8.3.1-25.el7_9.1.x86_64",
"product_id": "git-daemon-0:1.8.3.1-25.el7_9.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon@1.8.3.1-25.el7_9.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-gnome-keyring-0:1.8.3.1-25.el7_9.1.x86_64",
"product": {
"name": "git-gnome-keyring-0:1.8.3.1-25.el7_9.1.x86_64",
"product_id": "git-gnome-keyring-0:1.8.3.1-25.el7_9.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-gnome-keyring@1.8.3.1-25.el7_9.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-svn-0:1.8.3.1-25.el7_9.1.x86_64",
"product": {
"name": "git-svn-0:1.8.3.1-25.el7_9.1.x86_64",
"product_id": "git-svn-0:1.8.3.1-25.el7_9.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-svn@1.8.3.1-25.el7_9.1?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "git-0:1.8.3.1-25.el7_9.1.ppc64le",
"product": {
"name": "git-0:1.8.3.1-25.el7_9.1.ppc64le",
"product_id": "git-0:1.8.3.1-25.el7_9.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git@1.8.3.1-25.el7_9.1?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-debuginfo-0:1.8.3.1-25.el7_9.1.ppc64le",
"product": {
"name": "git-debuginfo-0:1.8.3.1-25.el7_9.1.ppc64le",
"product_id": "git-debuginfo-0:1.8.3.1-25.el7_9.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debuginfo@1.8.3.1-25.el7_9.1?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-daemon-0:1.8.3.1-25.el7_9.1.ppc64le",
"product": {
"name": "git-daemon-0:1.8.3.1-25.el7_9.1.ppc64le",
"product_id": "git-daemon-0:1.8.3.1-25.el7_9.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon@1.8.3.1-25.el7_9.1?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-gnome-keyring-0:1.8.3.1-25.el7_9.1.ppc64le",
"product": {
"name": "git-gnome-keyring-0:1.8.3.1-25.el7_9.1.ppc64le",
"product_id": "git-gnome-keyring-0:1.8.3.1-25.el7_9.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-gnome-keyring@1.8.3.1-25.el7_9.1?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-svn-0:1.8.3.1-25.el7_9.1.ppc64le",
"product": {
"name": "git-svn-0:1.8.3.1-25.el7_9.1.ppc64le",
"product_id": "git-svn-0:1.8.3.1-25.el7_9.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-svn@1.8.3.1-25.el7_9.1?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "git-0:1.8.3.1-25.el7_9.1.ppc64",
"product": {
"name": "git-0:1.8.3.1-25.el7_9.1.ppc64",
"product_id": "git-0:1.8.3.1-25.el7_9.1.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git@1.8.3.1-25.el7_9.1?arch=ppc64"
}
}
},
{
"category": "product_version",
"name": "git-debuginfo-0:1.8.3.1-25.el7_9.1.ppc64",
"product": {
"name": "git-debuginfo-0:1.8.3.1-25.el7_9.1.ppc64",
"product_id": "git-debuginfo-0:1.8.3.1-25.el7_9.1.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debuginfo@1.8.3.1-25.el7_9.1?arch=ppc64"
}
}
},
{
"category": "product_version",
"name": "git-daemon-0:1.8.3.1-25.el7_9.1.ppc64",
"product": {
"name": "git-daemon-0:1.8.3.1-25.el7_9.1.ppc64",
"product_id": "git-daemon-0:1.8.3.1-25.el7_9.1.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon@1.8.3.1-25.el7_9.1?arch=ppc64"
}
}
},
{
"category": "product_version",
"name": "git-gnome-keyring-0:1.8.3.1-25.el7_9.1.ppc64",
"product": {
"name": "git-gnome-keyring-0:1.8.3.1-25.el7_9.1.ppc64",
"product_id": "git-gnome-keyring-0:1.8.3.1-25.el7_9.1.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-gnome-keyring@1.8.3.1-25.el7_9.1?arch=ppc64"
}
}
},
{
"category": "product_version",
"name": "git-svn-0:1.8.3.1-25.el7_9.1.ppc64",
"product": {
"name": "git-svn-0:1.8.3.1-25.el7_9.1.ppc64",
"product_id": "git-svn-0:1.8.3.1-25.el7_9.1.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-svn@1.8.3.1-25.el7_9.1?arch=ppc64"
}
}
}
],
"category": "architecture",
"name": "ppc64"
},
{
"branches": [
{
"category": "product_version",
"name": "git-0:1.8.3.1-25.el7_9.1.s390x",
"product": {
"name": "git-0:1.8.3.1-25.el7_9.1.s390x",
"product_id": "git-0:1.8.3.1-25.el7_9.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git@1.8.3.1-25.el7_9.1?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-debuginfo-0:1.8.3.1-25.el7_9.1.s390x",
"product": {
"name": "git-debuginfo-0:1.8.3.1-25.el7_9.1.s390x",
"product_id": "git-debuginfo-0:1.8.3.1-25.el7_9.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debuginfo@1.8.3.1-25.el7_9.1?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-daemon-0:1.8.3.1-25.el7_9.1.s390x",
"product": {
"name": "git-daemon-0:1.8.3.1-25.el7_9.1.s390x",
"product_id": "git-daemon-0:1.8.3.1-25.el7_9.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon@1.8.3.1-25.el7_9.1?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-gnome-keyring-0:1.8.3.1-25.el7_9.1.s390x",
"product": {
"name": "git-gnome-keyring-0:1.8.3.1-25.el7_9.1.s390x",
"product_id": "git-gnome-keyring-0:1.8.3.1-25.el7_9.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-gnome-keyring@1.8.3.1-25.el7_9.1?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-svn-0:1.8.3.1-25.el7_9.1.s390x",
"product": {
"name": "git-svn-0:1.8.3.1-25.el7_9.1.s390x",
"product_id": "git-svn-0:1.8.3.1-25.el7_9.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-svn@1.8.3.1-25.el7_9.1?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "perl-Git-0:1.8.3.1-25.el7_9.1.noarch",
"product": {
"name": "perl-Git-0:1.8.3.1-25.el7_9.1.noarch",
"product_id": "perl-Git-0:1.8.3.1-25.el7_9.1.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/perl-Git@1.8.3.1-25.el7_9.1?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "emacs-git-0:1.8.3.1-25.el7_9.1.noarch",
"product": {
"name": "emacs-git-0:1.8.3.1-25.el7_9.1.noarch",
"product_id": "emacs-git-0:1.8.3.1-25.el7_9.1.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/emacs-git@1.8.3.1-25.el7_9.1?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "emacs-git-el-0:1.8.3.1-25.el7_9.1.noarch",
"product": {
"name": "emacs-git-el-0:1.8.3.1-25.el7_9.1.noarch",
"product_id": "emacs-git-el-0:1.8.3.1-25.el7_9.1.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/emacs-git-el@1.8.3.1-25.el7_9.1?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "git-all-0:1.8.3.1-25.el7_9.1.noarch",
"product": {
"name": "git-all-0:1.8.3.1-25.el7_9.1.noarch",
"product_id": "git-all-0:1.8.3.1-25.el7_9.1.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-all@1.8.3.1-25.el7_9.1?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "git-bzr-0:1.8.3.1-25.el7_9.1.noarch",
"product": {
"name": "git-bzr-0:1.8.3.1-25.el7_9.1.noarch",
"product_id": "git-bzr-0:1.8.3.1-25.el7_9.1.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-bzr@1.8.3.1-25.el7_9.1?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "git-cvs-0:1.8.3.1-25.el7_9.1.noarch",
"product": {
"name": "git-cvs-0:1.8.3.1-25.el7_9.1.noarch",
"product_id": "git-cvs-0:1.8.3.1-25.el7_9.1.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-cvs@1.8.3.1-25.el7_9.1?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "git-email-0:1.8.3.1-25.el7_9.1.noarch",
"product": {
"name": "git-email-0:1.8.3.1-25.el7_9.1.noarch",
"product_id": "git-email-0:1.8.3.1-25.el7_9.1.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-email@1.8.3.1-25.el7_9.1?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "git-gui-0:1.8.3.1-25.el7_9.1.noarch",
"product": {
"name": "git-gui-0:1.8.3.1-25.el7_9.1.noarch",
"product_id": "git-gui-0:1.8.3.1-25.el7_9.1.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-gui@1.8.3.1-25.el7_9.1?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "git-hg-0:1.8.3.1-25.el7_9.1.noarch",
"product": {
"name": "git-hg-0:1.8.3.1-25.el7_9.1.noarch",
"product_id": "git-hg-0:1.8.3.1-25.el7_9.1.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-hg@1.8.3.1-25.el7_9.1?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "git-instaweb-0:1.8.3.1-25.el7_9.1.noarch",
"product": {
"name": "git-instaweb-0:1.8.3.1-25.el7_9.1.noarch",
"product_id": "git-instaweb-0:1.8.3.1-25.el7_9.1.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-instaweb@1.8.3.1-25.el7_9.1?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "git-p4-0:1.8.3.1-25.el7_9.1.noarch",
"product": {
"name": "git-p4-0:1.8.3.1-25.el7_9.1.noarch",
"product_id": "git-p4-0:1.8.3.1-25.el7_9.1.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-p4@1.8.3.1-25.el7_9.1?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "gitk-0:1.8.3.1-25.el7_9.1.noarch",
"product": {
"name": "gitk-0:1.8.3.1-25.el7_9.1.noarch",
"product_id": "gitk-0:1.8.3.1-25.el7_9.1.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/gitk@1.8.3.1-25.el7_9.1?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "gitweb-0:1.8.3.1-25.el7_9.1.noarch",
"product": {
"name": "gitweb-0:1.8.3.1-25.el7_9.1.noarch",
"product_id": "gitweb-0:1.8.3.1-25.el7_9.1.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/gitweb@1.8.3.1-25.el7_9.1?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "perl-Git-SVN-0:1.8.3.1-25.el7_9.1.noarch",
"product": {
"name": "perl-Git-SVN-0:1.8.3.1-25.el7_9.1.noarch",
"product_id": "perl-Git-SVN-0:1.8.3.1-25.el7_9.1.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/perl-Git-SVN@1.8.3.1-25.el7_9.1?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-git-0:1.8.3.1-25.el7_9.1.noarch as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
"product_id": "7Server-ELS:emacs-git-0:1.8.3.1-25.el7_9.1.noarch"
},
"product_reference": "emacs-git-0:1.8.3.1-25.el7_9.1.noarch",
"relates_to_product_reference": "7Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-git-el-0:1.8.3.1-25.el7_9.1.noarch as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
"product_id": "7Server-ELS:emacs-git-el-0:1.8.3.1-25.el7_9.1.noarch"
},
"product_reference": "emacs-git-el-0:1.8.3.1-25.el7_9.1.noarch",
"relates_to_product_reference": "7Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-0:1.8.3.1-25.el7_9.1.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
"product_id": "7Server-ELS:git-0:1.8.3.1-25.el7_9.1.ppc64"
},
"product_reference": "git-0:1.8.3.1-25.el7_9.1.ppc64",
"relates_to_product_reference": "7Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-0:1.8.3.1-25.el7_9.1.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
"product_id": "7Server-ELS:git-0:1.8.3.1-25.el7_9.1.ppc64le"
},
"product_reference": "git-0:1.8.3.1-25.el7_9.1.ppc64le",
"relates_to_product_reference": "7Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-0:1.8.3.1-25.el7_9.1.s390x as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
"product_id": "7Server-ELS:git-0:1.8.3.1-25.el7_9.1.s390x"
},
"product_reference": "git-0:1.8.3.1-25.el7_9.1.s390x",
"relates_to_product_reference": "7Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-0:1.8.3.1-25.el7_9.1.src as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
"product_id": "7Server-ELS:git-0:1.8.3.1-25.el7_9.1.src"
},
"product_reference": "git-0:1.8.3.1-25.el7_9.1.src",
"relates_to_product_reference": "7Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-0:1.8.3.1-25.el7_9.1.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
"product_id": "7Server-ELS:git-0:1.8.3.1-25.el7_9.1.x86_64"
},
"product_reference": "git-0:1.8.3.1-25.el7_9.1.x86_64",
"relates_to_product_reference": "7Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-all-0:1.8.3.1-25.el7_9.1.noarch as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
"product_id": "7Server-ELS:git-all-0:1.8.3.1-25.el7_9.1.noarch"
},
"product_reference": "git-all-0:1.8.3.1-25.el7_9.1.noarch",
"relates_to_product_reference": "7Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-bzr-0:1.8.3.1-25.el7_9.1.noarch as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
"product_id": "7Server-ELS:git-bzr-0:1.8.3.1-25.el7_9.1.noarch"
},
"product_reference": "git-bzr-0:1.8.3.1-25.el7_9.1.noarch",
"relates_to_product_reference": "7Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-0:1.8.3.1-25.el7_9.1.noarch as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
"product_id": "7Server-ELS:git-cvs-0:1.8.3.1-25.el7_9.1.noarch"
},
"product_reference": "git-cvs-0:1.8.3.1-25.el7_9.1.noarch",
"relates_to_product_reference": "7Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-0:1.8.3.1-25.el7_9.1.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
"product_id": "7Server-ELS:git-daemon-0:1.8.3.1-25.el7_9.1.ppc64"
},
"product_reference": "git-daemon-0:1.8.3.1-25.el7_9.1.ppc64",
"relates_to_product_reference": "7Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-0:1.8.3.1-25.el7_9.1.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
"product_id": "7Server-ELS:git-daemon-0:1.8.3.1-25.el7_9.1.ppc64le"
},
"product_reference": "git-daemon-0:1.8.3.1-25.el7_9.1.ppc64le",
"relates_to_product_reference": "7Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-0:1.8.3.1-25.el7_9.1.s390x as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
"product_id": "7Server-ELS:git-daemon-0:1.8.3.1-25.el7_9.1.s390x"
},
"product_reference": "git-daemon-0:1.8.3.1-25.el7_9.1.s390x",
"relates_to_product_reference": "7Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-0:1.8.3.1-25.el7_9.1.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
"product_id": "7Server-ELS:git-daemon-0:1.8.3.1-25.el7_9.1.x86_64"
},
"product_reference": "git-daemon-0:1.8.3.1-25.el7_9.1.x86_64",
"relates_to_product_reference": "7Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debuginfo-0:1.8.3.1-25.el7_9.1.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
"product_id": "7Server-ELS:git-debuginfo-0:1.8.3.1-25.el7_9.1.ppc64"
},
"product_reference": "git-debuginfo-0:1.8.3.1-25.el7_9.1.ppc64",
"relates_to_product_reference": "7Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debuginfo-0:1.8.3.1-25.el7_9.1.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
"product_id": "7Server-ELS:git-debuginfo-0:1.8.3.1-25.el7_9.1.ppc64le"
},
"product_reference": "git-debuginfo-0:1.8.3.1-25.el7_9.1.ppc64le",
"relates_to_product_reference": "7Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debuginfo-0:1.8.3.1-25.el7_9.1.s390x as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
"product_id": "7Server-ELS:git-debuginfo-0:1.8.3.1-25.el7_9.1.s390x"
},
"product_reference": "git-debuginfo-0:1.8.3.1-25.el7_9.1.s390x",
"relates_to_product_reference": "7Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debuginfo-0:1.8.3.1-25.el7_9.1.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
"product_id": "7Server-ELS:git-debuginfo-0:1.8.3.1-25.el7_9.1.x86_64"
},
"product_reference": "git-debuginfo-0:1.8.3.1-25.el7_9.1.x86_64",
"relates_to_product_reference": "7Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-0:1.8.3.1-25.el7_9.1.noarch as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
"product_id": "7Server-ELS:git-email-0:1.8.3.1-25.el7_9.1.noarch"
},
"product_reference": "git-email-0:1.8.3.1-25.el7_9.1.noarch",
"relates_to_product_reference": "7Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gnome-keyring-0:1.8.3.1-25.el7_9.1.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
"product_id": "7Server-ELS:git-gnome-keyring-0:1.8.3.1-25.el7_9.1.ppc64"
},
"product_reference": "git-gnome-keyring-0:1.8.3.1-25.el7_9.1.ppc64",
"relates_to_product_reference": "7Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gnome-keyring-0:1.8.3.1-25.el7_9.1.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
"product_id": "7Server-ELS:git-gnome-keyring-0:1.8.3.1-25.el7_9.1.ppc64le"
},
"product_reference": "git-gnome-keyring-0:1.8.3.1-25.el7_9.1.ppc64le",
"relates_to_product_reference": "7Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gnome-keyring-0:1.8.3.1-25.el7_9.1.s390x as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
"product_id": "7Server-ELS:git-gnome-keyring-0:1.8.3.1-25.el7_9.1.s390x"
},
"product_reference": "git-gnome-keyring-0:1.8.3.1-25.el7_9.1.s390x",
"relates_to_product_reference": "7Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gnome-keyring-0:1.8.3.1-25.el7_9.1.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
"product_id": "7Server-ELS:git-gnome-keyring-0:1.8.3.1-25.el7_9.1.x86_64"
},
"product_reference": "git-gnome-keyring-0:1.8.3.1-25.el7_9.1.x86_64",
"relates_to_product_reference": "7Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-0:1.8.3.1-25.el7_9.1.noarch as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
"product_id": "7Server-ELS:git-gui-0:1.8.3.1-25.el7_9.1.noarch"
},
"product_reference": "git-gui-0:1.8.3.1-25.el7_9.1.noarch",
"relates_to_product_reference": "7Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-hg-0:1.8.3.1-25.el7_9.1.noarch as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
"product_id": "7Server-ELS:git-hg-0:1.8.3.1-25.el7_9.1.noarch"
},
"product_reference": "git-hg-0:1.8.3.1-25.el7_9.1.noarch",
"relates_to_product_reference": "7Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-instaweb-0:1.8.3.1-25.el7_9.1.noarch as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
"product_id": "7Server-ELS:git-instaweb-0:1.8.3.1-25.el7_9.1.noarch"
},
"product_reference": "git-instaweb-0:1.8.3.1-25.el7_9.1.noarch",
"relates_to_product_reference": "7Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-p4-0:1.8.3.1-25.el7_9.1.noarch as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
"product_id": "7Server-ELS:git-p4-0:1.8.3.1-25.el7_9.1.noarch"
},
"product_reference": "git-p4-0:1.8.3.1-25.el7_9.1.noarch",
"relates_to_product_reference": "7Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-0:1.8.3.1-25.el7_9.1.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
"product_id": "7Server-ELS:git-svn-0:1.8.3.1-25.el7_9.1.ppc64"
},
"product_reference": "git-svn-0:1.8.3.1-25.el7_9.1.ppc64",
"relates_to_product_reference": "7Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-0:1.8.3.1-25.el7_9.1.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
"product_id": "7Server-ELS:git-svn-0:1.8.3.1-25.el7_9.1.ppc64le"
},
"product_reference": "git-svn-0:1.8.3.1-25.el7_9.1.ppc64le",
"relates_to_product_reference": "7Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-0:1.8.3.1-25.el7_9.1.s390x as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
"product_id": "7Server-ELS:git-svn-0:1.8.3.1-25.el7_9.1.s390x"
},
"product_reference": "git-svn-0:1.8.3.1-25.el7_9.1.s390x",
"relates_to_product_reference": "7Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-0:1.8.3.1-25.el7_9.1.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
"product_id": "7Server-ELS:git-svn-0:1.8.3.1-25.el7_9.1.x86_64"
},
"product_reference": "git-svn-0:1.8.3.1-25.el7_9.1.x86_64",
"relates_to_product_reference": "7Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-0:1.8.3.1-25.el7_9.1.noarch as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
"product_id": "7Server-ELS:gitk-0:1.8.3.1-25.el7_9.1.noarch"
},
"product_reference": "gitk-0:1.8.3.1-25.el7_9.1.noarch",
"relates_to_product_reference": "7Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitweb-0:1.8.3.1-25.el7_9.1.noarch as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
"product_id": "7Server-ELS:gitweb-0:1.8.3.1-25.el7_9.1.noarch"
},
"product_reference": "gitweb-0:1.8.3.1-25.el7_9.1.noarch",
"relates_to_product_reference": "7Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-0:1.8.3.1-25.el7_9.1.noarch as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
"product_id": "7Server-ELS:perl-Git-0:1.8.3.1-25.el7_9.1.noarch"
},
"product_reference": "perl-Git-0:1.8.3.1-25.el7_9.1.noarch",
"relates_to_product_reference": "7Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-SVN-0:1.8.3.1-25.el7_9.1.noarch as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
"product_id": "7Server-ELS:perl-Git-SVN-0:1.8.3.1-25.el7_9.1.noarch"
},
"product_reference": "perl-Git-SVN-0:1.8.3.1-25.el7_9.1.noarch",
"relates_to_product_reference": "7Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-git-0:1.8.3.1-25.el7_9.1.noarch as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
"product_id": "7Server-optional-ELS:emacs-git-0:1.8.3.1-25.el7_9.1.noarch"
},
"product_reference": "emacs-git-0:1.8.3.1-25.el7_9.1.noarch",
"relates_to_product_reference": "7Server-optional-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "emacs-git-el-0:1.8.3.1-25.el7_9.1.noarch as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
"product_id": "7Server-optional-ELS:emacs-git-el-0:1.8.3.1-25.el7_9.1.noarch"
},
"product_reference": "emacs-git-el-0:1.8.3.1-25.el7_9.1.noarch",
"relates_to_product_reference": "7Server-optional-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-0:1.8.3.1-25.el7_9.1.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
"product_id": "7Server-optional-ELS:git-0:1.8.3.1-25.el7_9.1.ppc64"
},
"product_reference": "git-0:1.8.3.1-25.el7_9.1.ppc64",
"relates_to_product_reference": "7Server-optional-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-0:1.8.3.1-25.el7_9.1.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
"product_id": "7Server-optional-ELS:git-0:1.8.3.1-25.el7_9.1.ppc64le"
},
"product_reference": "git-0:1.8.3.1-25.el7_9.1.ppc64le",
"relates_to_product_reference": "7Server-optional-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-0:1.8.3.1-25.el7_9.1.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
"product_id": "7Server-optional-ELS:git-0:1.8.3.1-25.el7_9.1.s390x"
},
"product_reference": "git-0:1.8.3.1-25.el7_9.1.s390x",
"relates_to_product_reference": "7Server-optional-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-0:1.8.3.1-25.el7_9.1.src as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
"product_id": "7Server-optional-ELS:git-0:1.8.3.1-25.el7_9.1.src"
},
"product_reference": "git-0:1.8.3.1-25.el7_9.1.src",
"relates_to_product_reference": "7Server-optional-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-0:1.8.3.1-25.el7_9.1.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
"product_id": "7Server-optional-ELS:git-0:1.8.3.1-25.el7_9.1.x86_64"
},
"product_reference": "git-0:1.8.3.1-25.el7_9.1.x86_64",
"relates_to_product_reference": "7Server-optional-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-all-0:1.8.3.1-25.el7_9.1.noarch as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
"product_id": "7Server-optional-ELS:git-all-0:1.8.3.1-25.el7_9.1.noarch"
},
"product_reference": "git-all-0:1.8.3.1-25.el7_9.1.noarch",
"relates_to_product_reference": "7Server-optional-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-bzr-0:1.8.3.1-25.el7_9.1.noarch as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
"product_id": "7Server-optional-ELS:git-bzr-0:1.8.3.1-25.el7_9.1.noarch"
},
"product_reference": "git-bzr-0:1.8.3.1-25.el7_9.1.noarch",
"relates_to_product_reference": "7Server-optional-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-0:1.8.3.1-25.el7_9.1.noarch as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
"product_id": "7Server-optional-ELS:git-cvs-0:1.8.3.1-25.el7_9.1.noarch"
},
"product_reference": "git-cvs-0:1.8.3.1-25.el7_9.1.noarch",
"relates_to_product_reference": "7Server-optional-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-0:1.8.3.1-25.el7_9.1.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
"product_id": "7Server-optional-ELS:git-daemon-0:1.8.3.1-25.el7_9.1.ppc64"
},
"product_reference": "git-daemon-0:1.8.3.1-25.el7_9.1.ppc64",
"relates_to_product_reference": "7Server-optional-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-0:1.8.3.1-25.el7_9.1.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
"product_id": "7Server-optional-ELS:git-daemon-0:1.8.3.1-25.el7_9.1.ppc64le"
},
"product_reference": "git-daemon-0:1.8.3.1-25.el7_9.1.ppc64le",
"relates_to_product_reference": "7Server-optional-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-0:1.8.3.1-25.el7_9.1.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
"product_id": "7Server-optional-ELS:git-daemon-0:1.8.3.1-25.el7_9.1.s390x"
},
"product_reference": "git-daemon-0:1.8.3.1-25.el7_9.1.s390x",
"relates_to_product_reference": "7Server-optional-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-0:1.8.3.1-25.el7_9.1.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
"product_id": "7Server-optional-ELS:git-daemon-0:1.8.3.1-25.el7_9.1.x86_64"
},
"product_reference": "git-daemon-0:1.8.3.1-25.el7_9.1.x86_64",
"relates_to_product_reference": "7Server-optional-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debuginfo-0:1.8.3.1-25.el7_9.1.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
"product_id": "7Server-optional-ELS:git-debuginfo-0:1.8.3.1-25.el7_9.1.ppc64"
},
"product_reference": "git-debuginfo-0:1.8.3.1-25.el7_9.1.ppc64",
"relates_to_product_reference": "7Server-optional-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debuginfo-0:1.8.3.1-25.el7_9.1.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
"product_id": "7Server-optional-ELS:git-debuginfo-0:1.8.3.1-25.el7_9.1.ppc64le"
},
"product_reference": "git-debuginfo-0:1.8.3.1-25.el7_9.1.ppc64le",
"relates_to_product_reference": "7Server-optional-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debuginfo-0:1.8.3.1-25.el7_9.1.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
"product_id": "7Server-optional-ELS:git-debuginfo-0:1.8.3.1-25.el7_9.1.s390x"
},
"product_reference": "git-debuginfo-0:1.8.3.1-25.el7_9.1.s390x",
"relates_to_product_reference": "7Server-optional-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debuginfo-0:1.8.3.1-25.el7_9.1.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
"product_id": "7Server-optional-ELS:git-debuginfo-0:1.8.3.1-25.el7_9.1.x86_64"
},
"product_reference": "git-debuginfo-0:1.8.3.1-25.el7_9.1.x86_64",
"relates_to_product_reference": "7Server-optional-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-0:1.8.3.1-25.el7_9.1.noarch as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
"product_id": "7Server-optional-ELS:git-email-0:1.8.3.1-25.el7_9.1.noarch"
},
"product_reference": "git-email-0:1.8.3.1-25.el7_9.1.noarch",
"relates_to_product_reference": "7Server-optional-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gnome-keyring-0:1.8.3.1-25.el7_9.1.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
"product_id": "7Server-optional-ELS:git-gnome-keyring-0:1.8.3.1-25.el7_9.1.ppc64"
},
"product_reference": "git-gnome-keyring-0:1.8.3.1-25.el7_9.1.ppc64",
"relates_to_product_reference": "7Server-optional-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gnome-keyring-0:1.8.3.1-25.el7_9.1.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
"product_id": "7Server-optional-ELS:git-gnome-keyring-0:1.8.3.1-25.el7_9.1.ppc64le"
},
"product_reference": "git-gnome-keyring-0:1.8.3.1-25.el7_9.1.ppc64le",
"relates_to_product_reference": "7Server-optional-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gnome-keyring-0:1.8.3.1-25.el7_9.1.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
"product_id": "7Server-optional-ELS:git-gnome-keyring-0:1.8.3.1-25.el7_9.1.s390x"
},
"product_reference": "git-gnome-keyring-0:1.8.3.1-25.el7_9.1.s390x",
"relates_to_product_reference": "7Server-optional-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gnome-keyring-0:1.8.3.1-25.el7_9.1.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
"product_id": "7Server-optional-ELS:git-gnome-keyring-0:1.8.3.1-25.el7_9.1.x86_64"
},
"product_reference": "git-gnome-keyring-0:1.8.3.1-25.el7_9.1.x86_64",
"relates_to_product_reference": "7Server-optional-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-0:1.8.3.1-25.el7_9.1.noarch as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
"product_id": "7Server-optional-ELS:git-gui-0:1.8.3.1-25.el7_9.1.noarch"
},
"product_reference": "git-gui-0:1.8.3.1-25.el7_9.1.noarch",
"relates_to_product_reference": "7Server-optional-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-hg-0:1.8.3.1-25.el7_9.1.noarch as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
"product_id": "7Server-optional-ELS:git-hg-0:1.8.3.1-25.el7_9.1.noarch"
},
"product_reference": "git-hg-0:1.8.3.1-25.el7_9.1.noarch",
"relates_to_product_reference": "7Server-optional-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-instaweb-0:1.8.3.1-25.el7_9.1.noarch as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
"product_id": "7Server-optional-ELS:git-instaweb-0:1.8.3.1-25.el7_9.1.noarch"
},
"product_reference": "git-instaweb-0:1.8.3.1-25.el7_9.1.noarch",
"relates_to_product_reference": "7Server-optional-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-p4-0:1.8.3.1-25.el7_9.1.noarch as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
"product_id": "7Server-optional-ELS:git-p4-0:1.8.3.1-25.el7_9.1.noarch"
},
"product_reference": "git-p4-0:1.8.3.1-25.el7_9.1.noarch",
"relates_to_product_reference": "7Server-optional-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-0:1.8.3.1-25.el7_9.1.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
"product_id": "7Server-optional-ELS:git-svn-0:1.8.3.1-25.el7_9.1.ppc64"
},
"product_reference": "git-svn-0:1.8.3.1-25.el7_9.1.ppc64",
"relates_to_product_reference": "7Server-optional-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-0:1.8.3.1-25.el7_9.1.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
"product_id": "7Server-optional-ELS:git-svn-0:1.8.3.1-25.el7_9.1.ppc64le"
},
"product_reference": "git-svn-0:1.8.3.1-25.el7_9.1.ppc64le",
"relates_to_product_reference": "7Server-optional-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-0:1.8.3.1-25.el7_9.1.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
"product_id": "7Server-optional-ELS:git-svn-0:1.8.3.1-25.el7_9.1.s390x"
},
"product_reference": "git-svn-0:1.8.3.1-25.el7_9.1.s390x",
"relates_to_product_reference": "7Server-optional-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-0:1.8.3.1-25.el7_9.1.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
"product_id": "7Server-optional-ELS:git-svn-0:1.8.3.1-25.el7_9.1.x86_64"
},
"product_reference": "git-svn-0:1.8.3.1-25.el7_9.1.x86_64",
"relates_to_product_reference": "7Server-optional-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-0:1.8.3.1-25.el7_9.1.noarch as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
"product_id": "7Server-optional-ELS:gitk-0:1.8.3.1-25.el7_9.1.noarch"
},
"product_reference": "gitk-0:1.8.3.1-25.el7_9.1.noarch",
"relates_to_product_reference": "7Server-optional-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitweb-0:1.8.3.1-25.el7_9.1.noarch as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
"product_id": "7Server-optional-ELS:gitweb-0:1.8.3.1-25.el7_9.1.noarch"
},
"product_reference": "gitweb-0:1.8.3.1-25.el7_9.1.noarch",
"relates_to_product_reference": "7Server-optional-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-0:1.8.3.1-25.el7_9.1.noarch as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
"product_id": "7Server-optional-ELS:perl-Git-0:1.8.3.1-25.el7_9.1.noarch"
},
"product_reference": "perl-Git-0:1.8.3.1-25.el7_9.1.noarch",
"relates_to_product_reference": "7Server-optional-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-SVN-0:1.8.3.1-25.el7_9.1.noarch as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
"product_id": "7Server-optional-ELS:perl-Git-SVN-0:1.8.3.1-25.el7_9.1.noarch"
},
"product_reference": "perl-Git-SVN-0:1.8.3.1-25.el7_9.1.noarch",
"relates_to_product_reference": "7Server-optional-ELS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-48384",
"cwe": {
"id": "CWE-59",
"name": "Improper Link Resolution Before File Access (\u0027Link Following\u0027)"
},
"discovery_date": "2025-07-08T19:00:48.297925+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2378806"
}
],
"notes": [
{
"category": "description",
"text": "A line-end handling flaw was found in Git. When writing a config entry, values with a trailing carriage return (CR) are not quoted, resulting in the CR being lost when the config is read later. When initializing a submodule, if the submodule path contains a trailing CR, the altered path is read, resulting in the submodule being checked out to an incorrect location.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "git: Git arbitrary code execution",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability marked as Important and not Moderate flaw because it undermines Git\u2019s path and config integrity by allowing carriage return (\\r) injection to manipulate submodule checkout behavior. Git previously failed to quote config values containing trailing CR, causing the value to be misinterpreted when read back. In the context of submodules, this leads to incorrect path resolution, allowing an attacker to redirect the checkout path via a symlink to a sensitive directory like .git/modules/\u003csubmodule\u003e/hooks. If an executable post-checkout hook exists there, it could be inadvertently executed, resulting in arbitrary code execution during submodule operations. This is particularly dangerous in automated CI/CD pipelines or multi-repo projects where submodules are initialized or updated without manual inspection.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-ELS:emacs-git-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-ELS:emacs-git-el-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-ELS:git-0:1.8.3.1-25.el7_9.1.ppc64",
"7Server-ELS:git-0:1.8.3.1-25.el7_9.1.ppc64le",
"7Server-ELS:git-0:1.8.3.1-25.el7_9.1.s390x",
"7Server-ELS:git-0:1.8.3.1-25.el7_9.1.src",
"7Server-ELS:git-0:1.8.3.1-25.el7_9.1.x86_64",
"7Server-ELS:git-all-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-ELS:git-bzr-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-ELS:git-cvs-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-ELS:git-daemon-0:1.8.3.1-25.el7_9.1.ppc64",
"7Server-ELS:git-daemon-0:1.8.3.1-25.el7_9.1.ppc64le",
"7Server-ELS:git-daemon-0:1.8.3.1-25.el7_9.1.s390x",
"7Server-ELS:git-daemon-0:1.8.3.1-25.el7_9.1.x86_64",
"7Server-ELS:git-debuginfo-0:1.8.3.1-25.el7_9.1.ppc64",
"7Server-ELS:git-debuginfo-0:1.8.3.1-25.el7_9.1.ppc64le",
"7Server-ELS:git-debuginfo-0:1.8.3.1-25.el7_9.1.s390x",
"7Server-ELS:git-debuginfo-0:1.8.3.1-25.el7_9.1.x86_64",
"7Server-ELS:git-email-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-ELS:git-gnome-keyring-0:1.8.3.1-25.el7_9.1.ppc64",
"7Server-ELS:git-gnome-keyring-0:1.8.3.1-25.el7_9.1.ppc64le",
"7Server-ELS:git-gnome-keyring-0:1.8.3.1-25.el7_9.1.s390x",
"7Server-ELS:git-gnome-keyring-0:1.8.3.1-25.el7_9.1.x86_64",
"7Server-ELS:git-gui-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-ELS:git-hg-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-ELS:git-instaweb-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-ELS:git-p4-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-ELS:git-svn-0:1.8.3.1-25.el7_9.1.ppc64",
"7Server-ELS:git-svn-0:1.8.3.1-25.el7_9.1.ppc64le",
"7Server-ELS:git-svn-0:1.8.3.1-25.el7_9.1.s390x",
"7Server-ELS:git-svn-0:1.8.3.1-25.el7_9.1.x86_64",
"7Server-ELS:gitk-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-ELS:gitweb-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-ELS:perl-Git-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-ELS:perl-Git-SVN-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-optional-ELS:emacs-git-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-optional-ELS:emacs-git-el-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-optional-ELS:git-0:1.8.3.1-25.el7_9.1.ppc64",
"7Server-optional-ELS:git-0:1.8.3.1-25.el7_9.1.ppc64le",
"7Server-optional-ELS:git-0:1.8.3.1-25.el7_9.1.s390x",
"7Server-optional-ELS:git-0:1.8.3.1-25.el7_9.1.src",
"7Server-optional-ELS:git-0:1.8.3.1-25.el7_9.1.x86_64",
"7Server-optional-ELS:git-all-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-optional-ELS:git-bzr-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-optional-ELS:git-cvs-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-optional-ELS:git-daemon-0:1.8.3.1-25.el7_9.1.ppc64",
"7Server-optional-ELS:git-daemon-0:1.8.3.1-25.el7_9.1.ppc64le",
"7Server-optional-ELS:git-daemon-0:1.8.3.1-25.el7_9.1.s390x",
"7Server-optional-ELS:git-daemon-0:1.8.3.1-25.el7_9.1.x86_64",
"7Server-optional-ELS:git-debuginfo-0:1.8.3.1-25.el7_9.1.ppc64",
"7Server-optional-ELS:git-debuginfo-0:1.8.3.1-25.el7_9.1.ppc64le",
"7Server-optional-ELS:git-debuginfo-0:1.8.3.1-25.el7_9.1.s390x",
"7Server-optional-ELS:git-debuginfo-0:1.8.3.1-25.el7_9.1.x86_64",
"7Server-optional-ELS:git-email-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-optional-ELS:git-gnome-keyring-0:1.8.3.1-25.el7_9.1.ppc64",
"7Server-optional-ELS:git-gnome-keyring-0:1.8.3.1-25.el7_9.1.ppc64le",
"7Server-optional-ELS:git-gnome-keyring-0:1.8.3.1-25.el7_9.1.s390x",
"7Server-optional-ELS:git-gnome-keyring-0:1.8.3.1-25.el7_9.1.x86_64",
"7Server-optional-ELS:git-gui-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-optional-ELS:git-hg-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-optional-ELS:git-instaweb-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-optional-ELS:git-p4-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-optional-ELS:git-svn-0:1.8.3.1-25.el7_9.1.ppc64",
"7Server-optional-ELS:git-svn-0:1.8.3.1-25.el7_9.1.ppc64le",
"7Server-optional-ELS:git-svn-0:1.8.3.1-25.el7_9.1.s390x",
"7Server-optional-ELS:git-svn-0:1.8.3.1-25.el7_9.1.x86_64",
"7Server-optional-ELS:gitk-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-optional-ELS:gitweb-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-optional-ELS:perl-Git-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-optional-ELS:perl-Git-SVN-0:1.8.3.1-25.el7_9.1.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-48384"
},
{
"category": "external",
"summary": "RHBZ#2378806",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2378806"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-48384",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-48384"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-48384",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-48384"
},
{
"category": "external",
"summary": "https://dgl.cx/2025/07/git-clone-submodule-cve-2025-48384",
"url": "https://dgl.cx/2025/07/git-clone-submodule-cve-2025-48384"
},
{
"category": "external",
"summary": "https://github.com/git/git/commit/05e9cd64ee23bbadcea6bcffd6660ed02b8eab89",
"url": "https://github.com/git/git/commit/05e9cd64ee23bbadcea6bcffd6660ed02b8eab89"
},
{
"category": "external",
"summary": "https://github.com/git/git/security/advisories/GHSA-vwqx-4fm8-6qc9",
"url": "https://github.com/git/git/security/advisories/GHSA-vwqx-4fm8-6qc9"
},
{
"category": "external",
"summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog",
"url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
}
],
"release_date": "2025-07-08T18:23:48.710000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-07-24T08:08:30+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-ELS:emacs-git-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-ELS:emacs-git-el-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-ELS:git-0:1.8.3.1-25.el7_9.1.ppc64",
"7Server-ELS:git-0:1.8.3.1-25.el7_9.1.ppc64le",
"7Server-ELS:git-0:1.8.3.1-25.el7_9.1.s390x",
"7Server-ELS:git-0:1.8.3.1-25.el7_9.1.src",
"7Server-ELS:git-0:1.8.3.1-25.el7_9.1.x86_64",
"7Server-ELS:git-all-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-ELS:git-bzr-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-ELS:git-cvs-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-ELS:git-daemon-0:1.8.3.1-25.el7_9.1.ppc64",
"7Server-ELS:git-daemon-0:1.8.3.1-25.el7_9.1.ppc64le",
"7Server-ELS:git-daemon-0:1.8.3.1-25.el7_9.1.s390x",
"7Server-ELS:git-daemon-0:1.8.3.1-25.el7_9.1.x86_64",
"7Server-ELS:git-debuginfo-0:1.8.3.1-25.el7_9.1.ppc64",
"7Server-ELS:git-debuginfo-0:1.8.3.1-25.el7_9.1.ppc64le",
"7Server-ELS:git-debuginfo-0:1.8.3.1-25.el7_9.1.s390x",
"7Server-ELS:git-debuginfo-0:1.8.3.1-25.el7_9.1.x86_64",
"7Server-ELS:git-email-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-ELS:git-gnome-keyring-0:1.8.3.1-25.el7_9.1.ppc64",
"7Server-ELS:git-gnome-keyring-0:1.8.3.1-25.el7_9.1.ppc64le",
"7Server-ELS:git-gnome-keyring-0:1.8.3.1-25.el7_9.1.s390x",
"7Server-ELS:git-gnome-keyring-0:1.8.3.1-25.el7_9.1.x86_64",
"7Server-ELS:git-gui-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-ELS:git-hg-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-ELS:git-instaweb-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-ELS:git-p4-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-ELS:git-svn-0:1.8.3.1-25.el7_9.1.ppc64",
"7Server-ELS:git-svn-0:1.8.3.1-25.el7_9.1.ppc64le",
"7Server-ELS:git-svn-0:1.8.3.1-25.el7_9.1.s390x",
"7Server-ELS:git-svn-0:1.8.3.1-25.el7_9.1.x86_64",
"7Server-ELS:gitk-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-ELS:gitweb-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-ELS:perl-Git-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-ELS:perl-Git-SVN-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-optional-ELS:emacs-git-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-optional-ELS:emacs-git-el-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-optional-ELS:git-0:1.8.3.1-25.el7_9.1.ppc64",
"7Server-optional-ELS:git-0:1.8.3.1-25.el7_9.1.ppc64le",
"7Server-optional-ELS:git-0:1.8.3.1-25.el7_9.1.s390x",
"7Server-optional-ELS:git-0:1.8.3.1-25.el7_9.1.src",
"7Server-optional-ELS:git-0:1.8.3.1-25.el7_9.1.x86_64",
"7Server-optional-ELS:git-all-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-optional-ELS:git-bzr-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-optional-ELS:git-cvs-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-optional-ELS:git-daemon-0:1.8.3.1-25.el7_9.1.ppc64",
"7Server-optional-ELS:git-daemon-0:1.8.3.1-25.el7_9.1.ppc64le",
"7Server-optional-ELS:git-daemon-0:1.8.3.1-25.el7_9.1.s390x",
"7Server-optional-ELS:git-daemon-0:1.8.3.1-25.el7_9.1.x86_64",
"7Server-optional-ELS:git-debuginfo-0:1.8.3.1-25.el7_9.1.ppc64",
"7Server-optional-ELS:git-debuginfo-0:1.8.3.1-25.el7_9.1.ppc64le",
"7Server-optional-ELS:git-debuginfo-0:1.8.3.1-25.el7_9.1.s390x",
"7Server-optional-ELS:git-debuginfo-0:1.8.3.1-25.el7_9.1.x86_64",
"7Server-optional-ELS:git-email-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-optional-ELS:git-gnome-keyring-0:1.8.3.1-25.el7_9.1.ppc64",
"7Server-optional-ELS:git-gnome-keyring-0:1.8.3.1-25.el7_9.1.ppc64le",
"7Server-optional-ELS:git-gnome-keyring-0:1.8.3.1-25.el7_9.1.s390x",
"7Server-optional-ELS:git-gnome-keyring-0:1.8.3.1-25.el7_9.1.x86_64",
"7Server-optional-ELS:git-gui-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-optional-ELS:git-hg-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-optional-ELS:git-instaweb-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-optional-ELS:git-p4-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-optional-ELS:git-svn-0:1.8.3.1-25.el7_9.1.ppc64",
"7Server-optional-ELS:git-svn-0:1.8.3.1-25.el7_9.1.ppc64le",
"7Server-optional-ELS:git-svn-0:1.8.3.1-25.el7_9.1.s390x",
"7Server-optional-ELS:git-svn-0:1.8.3.1-25.el7_9.1.x86_64",
"7Server-optional-ELS:gitk-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-optional-ELS:gitweb-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-optional-ELS:perl-Git-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-optional-ELS:perl-Git-SVN-0:1.8.3.1-25.el7_9.1.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:11688"
},
{
"category": "workaround",
"details": "To mitigate this issue, avoid using --recurse-submodules when cloning repositories from untrusted sources; instead, clone normally and only initialize or update submodules manually after reviewing them.",
"product_ids": [
"7Server-ELS:emacs-git-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-ELS:emacs-git-el-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-ELS:git-0:1.8.3.1-25.el7_9.1.ppc64",
"7Server-ELS:git-0:1.8.3.1-25.el7_9.1.ppc64le",
"7Server-ELS:git-0:1.8.3.1-25.el7_9.1.s390x",
"7Server-ELS:git-0:1.8.3.1-25.el7_9.1.src",
"7Server-ELS:git-0:1.8.3.1-25.el7_9.1.x86_64",
"7Server-ELS:git-all-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-ELS:git-bzr-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-ELS:git-cvs-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-ELS:git-daemon-0:1.8.3.1-25.el7_9.1.ppc64",
"7Server-ELS:git-daemon-0:1.8.3.1-25.el7_9.1.ppc64le",
"7Server-ELS:git-daemon-0:1.8.3.1-25.el7_9.1.s390x",
"7Server-ELS:git-daemon-0:1.8.3.1-25.el7_9.1.x86_64",
"7Server-ELS:git-debuginfo-0:1.8.3.1-25.el7_9.1.ppc64",
"7Server-ELS:git-debuginfo-0:1.8.3.1-25.el7_9.1.ppc64le",
"7Server-ELS:git-debuginfo-0:1.8.3.1-25.el7_9.1.s390x",
"7Server-ELS:git-debuginfo-0:1.8.3.1-25.el7_9.1.x86_64",
"7Server-ELS:git-email-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-ELS:git-gnome-keyring-0:1.8.3.1-25.el7_9.1.ppc64",
"7Server-ELS:git-gnome-keyring-0:1.8.3.1-25.el7_9.1.ppc64le",
"7Server-ELS:git-gnome-keyring-0:1.8.3.1-25.el7_9.1.s390x",
"7Server-ELS:git-gnome-keyring-0:1.8.3.1-25.el7_9.1.x86_64",
"7Server-ELS:git-gui-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-ELS:git-hg-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-ELS:git-instaweb-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-ELS:git-p4-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-ELS:git-svn-0:1.8.3.1-25.el7_9.1.ppc64",
"7Server-ELS:git-svn-0:1.8.3.1-25.el7_9.1.ppc64le",
"7Server-ELS:git-svn-0:1.8.3.1-25.el7_9.1.s390x",
"7Server-ELS:git-svn-0:1.8.3.1-25.el7_9.1.x86_64",
"7Server-ELS:gitk-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-ELS:gitweb-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-ELS:perl-Git-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-ELS:perl-Git-SVN-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-optional-ELS:emacs-git-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-optional-ELS:emacs-git-el-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-optional-ELS:git-0:1.8.3.1-25.el7_9.1.ppc64",
"7Server-optional-ELS:git-0:1.8.3.1-25.el7_9.1.ppc64le",
"7Server-optional-ELS:git-0:1.8.3.1-25.el7_9.1.s390x",
"7Server-optional-ELS:git-0:1.8.3.1-25.el7_9.1.src",
"7Server-optional-ELS:git-0:1.8.3.1-25.el7_9.1.x86_64",
"7Server-optional-ELS:git-all-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-optional-ELS:git-bzr-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-optional-ELS:git-cvs-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-optional-ELS:git-daemon-0:1.8.3.1-25.el7_9.1.ppc64",
"7Server-optional-ELS:git-daemon-0:1.8.3.1-25.el7_9.1.ppc64le",
"7Server-optional-ELS:git-daemon-0:1.8.3.1-25.el7_9.1.s390x",
"7Server-optional-ELS:git-daemon-0:1.8.3.1-25.el7_9.1.x86_64",
"7Server-optional-ELS:git-debuginfo-0:1.8.3.1-25.el7_9.1.ppc64",
"7Server-optional-ELS:git-debuginfo-0:1.8.3.1-25.el7_9.1.ppc64le",
"7Server-optional-ELS:git-debuginfo-0:1.8.3.1-25.el7_9.1.s390x",
"7Server-optional-ELS:git-debuginfo-0:1.8.3.1-25.el7_9.1.x86_64",
"7Server-optional-ELS:git-email-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-optional-ELS:git-gnome-keyring-0:1.8.3.1-25.el7_9.1.ppc64",
"7Server-optional-ELS:git-gnome-keyring-0:1.8.3.1-25.el7_9.1.ppc64le",
"7Server-optional-ELS:git-gnome-keyring-0:1.8.3.1-25.el7_9.1.s390x",
"7Server-optional-ELS:git-gnome-keyring-0:1.8.3.1-25.el7_9.1.x86_64",
"7Server-optional-ELS:git-gui-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-optional-ELS:git-hg-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-optional-ELS:git-instaweb-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-optional-ELS:git-p4-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-optional-ELS:git-svn-0:1.8.3.1-25.el7_9.1.ppc64",
"7Server-optional-ELS:git-svn-0:1.8.3.1-25.el7_9.1.ppc64le",
"7Server-optional-ELS:git-svn-0:1.8.3.1-25.el7_9.1.s390x",
"7Server-optional-ELS:git-svn-0:1.8.3.1-25.el7_9.1.x86_64",
"7Server-optional-ELS:gitk-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-optional-ELS:gitweb-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-optional-ELS:perl-Git-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-optional-ELS:perl-Git-SVN-0:1.8.3.1-25.el7_9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.0,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"7Server-ELS:emacs-git-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-ELS:emacs-git-el-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-ELS:git-0:1.8.3.1-25.el7_9.1.ppc64",
"7Server-ELS:git-0:1.8.3.1-25.el7_9.1.ppc64le",
"7Server-ELS:git-0:1.8.3.1-25.el7_9.1.s390x",
"7Server-ELS:git-0:1.8.3.1-25.el7_9.1.src",
"7Server-ELS:git-0:1.8.3.1-25.el7_9.1.x86_64",
"7Server-ELS:git-all-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-ELS:git-bzr-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-ELS:git-cvs-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-ELS:git-daemon-0:1.8.3.1-25.el7_9.1.ppc64",
"7Server-ELS:git-daemon-0:1.8.3.1-25.el7_9.1.ppc64le",
"7Server-ELS:git-daemon-0:1.8.3.1-25.el7_9.1.s390x",
"7Server-ELS:git-daemon-0:1.8.3.1-25.el7_9.1.x86_64",
"7Server-ELS:git-debuginfo-0:1.8.3.1-25.el7_9.1.ppc64",
"7Server-ELS:git-debuginfo-0:1.8.3.1-25.el7_9.1.ppc64le",
"7Server-ELS:git-debuginfo-0:1.8.3.1-25.el7_9.1.s390x",
"7Server-ELS:git-debuginfo-0:1.8.3.1-25.el7_9.1.x86_64",
"7Server-ELS:git-email-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-ELS:git-gnome-keyring-0:1.8.3.1-25.el7_9.1.ppc64",
"7Server-ELS:git-gnome-keyring-0:1.8.3.1-25.el7_9.1.ppc64le",
"7Server-ELS:git-gnome-keyring-0:1.8.3.1-25.el7_9.1.s390x",
"7Server-ELS:git-gnome-keyring-0:1.8.3.1-25.el7_9.1.x86_64",
"7Server-ELS:git-gui-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-ELS:git-hg-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-ELS:git-instaweb-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-ELS:git-p4-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-ELS:git-svn-0:1.8.3.1-25.el7_9.1.ppc64",
"7Server-ELS:git-svn-0:1.8.3.1-25.el7_9.1.ppc64le",
"7Server-ELS:git-svn-0:1.8.3.1-25.el7_9.1.s390x",
"7Server-ELS:git-svn-0:1.8.3.1-25.el7_9.1.x86_64",
"7Server-ELS:gitk-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-ELS:gitweb-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-ELS:perl-Git-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-ELS:perl-Git-SVN-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-optional-ELS:emacs-git-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-optional-ELS:emacs-git-el-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-optional-ELS:git-0:1.8.3.1-25.el7_9.1.ppc64",
"7Server-optional-ELS:git-0:1.8.3.1-25.el7_9.1.ppc64le",
"7Server-optional-ELS:git-0:1.8.3.1-25.el7_9.1.s390x",
"7Server-optional-ELS:git-0:1.8.3.1-25.el7_9.1.src",
"7Server-optional-ELS:git-0:1.8.3.1-25.el7_9.1.x86_64",
"7Server-optional-ELS:git-all-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-optional-ELS:git-bzr-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-optional-ELS:git-cvs-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-optional-ELS:git-daemon-0:1.8.3.1-25.el7_9.1.ppc64",
"7Server-optional-ELS:git-daemon-0:1.8.3.1-25.el7_9.1.ppc64le",
"7Server-optional-ELS:git-daemon-0:1.8.3.1-25.el7_9.1.s390x",
"7Server-optional-ELS:git-daemon-0:1.8.3.1-25.el7_9.1.x86_64",
"7Server-optional-ELS:git-debuginfo-0:1.8.3.1-25.el7_9.1.ppc64",
"7Server-optional-ELS:git-debuginfo-0:1.8.3.1-25.el7_9.1.ppc64le",
"7Server-optional-ELS:git-debuginfo-0:1.8.3.1-25.el7_9.1.s390x",
"7Server-optional-ELS:git-debuginfo-0:1.8.3.1-25.el7_9.1.x86_64",
"7Server-optional-ELS:git-email-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-optional-ELS:git-gnome-keyring-0:1.8.3.1-25.el7_9.1.ppc64",
"7Server-optional-ELS:git-gnome-keyring-0:1.8.3.1-25.el7_9.1.ppc64le",
"7Server-optional-ELS:git-gnome-keyring-0:1.8.3.1-25.el7_9.1.s390x",
"7Server-optional-ELS:git-gnome-keyring-0:1.8.3.1-25.el7_9.1.x86_64",
"7Server-optional-ELS:git-gui-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-optional-ELS:git-hg-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-optional-ELS:git-instaweb-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-optional-ELS:git-p4-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-optional-ELS:git-svn-0:1.8.3.1-25.el7_9.1.ppc64",
"7Server-optional-ELS:git-svn-0:1.8.3.1-25.el7_9.1.ppc64le",
"7Server-optional-ELS:git-svn-0:1.8.3.1-25.el7_9.1.s390x",
"7Server-optional-ELS:git-svn-0:1.8.3.1-25.el7_9.1.x86_64",
"7Server-optional-ELS:gitk-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-optional-ELS:gitweb-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-optional-ELS:perl-Git-0:1.8.3.1-25.el7_9.1.noarch",
"7Server-optional-ELS:perl-Git-SVN-0:1.8.3.1-25.el7_9.1.noarch"
]
}
],
"threats": [
{
"category": "exploit_status",
"date": "2025-08-25T00:00:00+00:00",
"details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
},
{
"category": "impact",
"details": "Important"
}
],
"title": "git: Git arbitrary code execution"
}
]
}
rhsa-2025:11462
Vulnerability from csaf_redhat
Published
2025-07-21 14:51
Modified
2025-11-06 22:35
Summary
Red Hat Security Advisory: git security update
Notes
Topic
An update for git is now available for Red Hat Enterprise Linux 9.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Git is a distributed revision control system with a decentralized architecture. As opposed to centralized version control systems with a client-server model, Git ensures that each working copy of a Git repository is an exact copy with complete revision history. This not only allows the user to work on and contribute to projects without the need to have permission to push the changes to their official repositories, but also makes it possible for the user to work with no network connection.
Security Fix(es):
* git: Git does not sanitize URLs when asking for credentials interactively (CVE-2024-50349)
* git: Newline confusion in credential helpers can lead to credential exfiltration in git (CVE-2024-52006)
* git: Git arbitrary code execution (CVE-2025-48384)
* git: Git arbitrary file writes (CVE-2025-48385)
* gitk: Git file creation flaw (CVE-2025-27613)
* gitk: git script execution flaw (CVE-2025-27614)
* git: Git GUI can create and overwrite files for which the user has write permission (CVE-2025-46835)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for git is now available for Red Hat Enterprise Linux 9.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Git is a distributed revision control system with a decentralized architecture. As opposed to centralized version control systems with a client-server model, Git ensures that each working copy of a Git repository is an exact copy with complete revision history. This not only allows the user to work on and contribute to projects without the need to have permission to push the changes to their official repositories, but also makes it possible for the user to work with no network connection.\n\nSecurity Fix(es):\n\n* git: Git does not sanitize URLs when asking for credentials interactively (CVE-2024-50349)\n\n* git: Newline confusion in credential helpers can lead to credential exfiltration in git (CVE-2024-52006)\n\n* git: Git arbitrary code execution (CVE-2025-48384)\n\n* git: Git arbitrary file writes (CVE-2025-48385)\n\n* gitk: Git file creation flaw (CVE-2025-27613)\n\n* gitk: git script execution flaw (CVE-2025-27614)\n\n* git: Git GUI can create and overwrite files for which the user has write permission (CVE-2025-46835)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:11462",
"url": "https://access.redhat.com/errata/RHSA-2025:11462"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2337824",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2337824"
},
{
"category": "external",
"summary": "2337956",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2337956"
},
{
"category": "external",
"summary": "2378806",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2378806"
},
{
"category": "external",
"summary": "2378808",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2378808"
},
{
"category": "external",
"summary": "2379124",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2379124"
},
{
"category": "external",
"summary": "2379125",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2379125"
},
{
"category": "external",
"summary": "2379326",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2379326"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_11462.json"
}
],
"title": "Red Hat Security Advisory: git security update",
"tracking": {
"current_release_date": "2025-11-06T22:35:16+00:00",
"generator": {
"date": "2025-11-06T22:35:16+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.11"
}
},
"id": "RHSA-2025:11462",
"initial_release_date": "2025-07-21T14:51:13+00:00",
"revision_history": [
{
"date": "2025-07-21T14:51:13+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-07-21T14:51:13+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-06T22:35:16+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream (v. 9)",
"product": {
"name": "Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:9::appstream"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "git-0:2.47.3-1.el9_6.src",
"product": {
"name": "git-0:2.47.3-1.el9_6.src",
"product_id": "git-0:2.47.3-1.el9_6.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git@2.47.3-1.el9_6?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "git-0:2.47.3-1.el9_6.aarch64",
"product": {
"name": "git-0:2.47.3-1.el9_6.aarch64",
"product_id": "git-0:2.47.3-1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git@2.47.3-1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-core-0:2.47.3-1.el9_6.aarch64",
"product": {
"name": "git-core-0:2.47.3-1.el9_6.aarch64",
"product_id": "git-core-0:2.47.3-1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core@2.47.3-1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-0:2.47.3-1.el9_6.aarch64",
"product": {
"name": "git-credential-libsecret-0:2.47.3-1.el9_6.aarch64",
"product_id": "git-credential-libsecret-0:2.47.3-1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret@2.47.3-1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-daemon-0:2.47.3-1.el9_6.aarch64",
"product": {
"name": "git-daemon-0:2.47.3-1.el9_6.aarch64",
"product_id": "git-daemon-0:2.47.3-1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon@2.47.3-1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-subtree-0:2.47.3-1.el9_6.aarch64",
"product": {
"name": "git-subtree-0:2.47.3-1.el9_6.aarch64",
"product_id": "git-subtree-0:2.47.3-1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-subtree@2.47.3-1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-debugsource-0:2.47.3-1.el9_6.aarch64",
"product": {
"name": "git-debugsource-0:2.47.3-1.el9_6.aarch64",
"product_id": "git-debugsource-0:2.47.3-1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debugsource@2.47.3-1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-core-debuginfo-0:2.47.3-1.el9_6.aarch64",
"product": {
"name": "git-core-debuginfo-0:2.47.3-1.el9_6.aarch64",
"product_id": "git-core-debuginfo-0:2.47.3-1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core-debuginfo@2.47.3-1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.aarch64",
"product": {
"name": "git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.aarch64",
"product_id": "git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret-debuginfo@2.47.3-1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-daemon-debuginfo-0:2.47.3-1.el9_6.aarch64",
"product": {
"name": "git-daemon-debuginfo-0:2.47.3-1.el9_6.aarch64",
"product_id": "git-daemon-debuginfo-0:2.47.3-1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon-debuginfo@2.47.3-1.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-debuginfo-0:2.47.3-1.el9_6.aarch64",
"product": {
"name": "git-debuginfo-0:2.47.3-1.el9_6.aarch64",
"product_id": "git-debuginfo-0:2.47.3-1.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debuginfo@2.47.3-1.el9_6?arch=aarch64"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "git-0:2.47.3-1.el9_6.ppc64le",
"product": {
"name": "git-0:2.47.3-1.el9_6.ppc64le",
"product_id": "git-0:2.47.3-1.el9_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git@2.47.3-1.el9_6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-core-0:2.47.3-1.el9_6.ppc64le",
"product": {
"name": "git-core-0:2.47.3-1.el9_6.ppc64le",
"product_id": "git-core-0:2.47.3-1.el9_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core@2.47.3-1.el9_6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-0:2.47.3-1.el9_6.ppc64le",
"product": {
"name": "git-credential-libsecret-0:2.47.3-1.el9_6.ppc64le",
"product_id": "git-credential-libsecret-0:2.47.3-1.el9_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret@2.47.3-1.el9_6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-daemon-0:2.47.3-1.el9_6.ppc64le",
"product": {
"name": "git-daemon-0:2.47.3-1.el9_6.ppc64le",
"product_id": "git-daemon-0:2.47.3-1.el9_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon@2.47.3-1.el9_6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-subtree-0:2.47.3-1.el9_6.ppc64le",
"product": {
"name": "git-subtree-0:2.47.3-1.el9_6.ppc64le",
"product_id": "git-subtree-0:2.47.3-1.el9_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-subtree@2.47.3-1.el9_6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-debugsource-0:2.47.3-1.el9_6.ppc64le",
"product": {
"name": "git-debugsource-0:2.47.3-1.el9_6.ppc64le",
"product_id": "git-debugsource-0:2.47.3-1.el9_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debugsource@2.47.3-1.el9_6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-core-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"product": {
"name": "git-core-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"product_id": "git-core-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core-debuginfo@2.47.3-1.el9_6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"product": {
"name": "git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"product_id": "git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret-debuginfo@2.47.3-1.el9_6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-daemon-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"product": {
"name": "git-daemon-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"product_id": "git-daemon-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon-debuginfo@2.47.3-1.el9_6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"product": {
"name": "git-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"product_id": "git-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debuginfo@2.47.3-1.el9_6?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "git-0:2.47.3-1.el9_6.x86_64",
"product": {
"name": "git-0:2.47.3-1.el9_6.x86_64",
"product_id": "git-0:2.47.3-1.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git@2.47.3-1.el9_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-core-0:2.47.3-1.el9_6.x86_64",
"product": {
"name": "git-core-0:2.47.3-1.el9_6.x86_64",
"product_id": "git-core-0:2.47.3-1.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core@2.47.3-1.el9_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-0:2.47.3-1.el9_6.x86_64",
"product": {
"name": "git-credential-libsecret-0:2.47.3-1.el9_6.x86_64",
"product_id": "git-credential-libsecret-0:2.47.3-1.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret@2.47.3-1.el9_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-daemon-0:2.47.3-1.el9_6.x86_64",
"product": {
"name": "git-daemon-0:2.47.3-1.el9_6.x86_64",
"product_id": "git-daemon-0:2.47.3-1.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon@2.47.3-1.el9_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-subtree-0:2.47.3-1.el9_6.x86_64",
"product": {
"name": "git-subtree-0:2.47.3-1.el9_6.x86_64",
"product_id": "git-subtree-0:2.47.3-1.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-subtree@2.47.3-1.el9_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-debugsource-0:2.47.3-1.el9_6.x86_64",
"product": {
"name": "git-debugsource-0:2.47.3-1.el9_6.x86_64",
"product_id": "git-debugsource-0:2.47.3-1.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debugsource@2.47.3-1.el9_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-core-debuginfo-0:2.47.3-1.el9_6.x86_64",
"product": {
"name": "git-core-debuginfo-0:2.47.3-1.el9_6.x86_64",
"product_id": "git-core-debuginfo-0:2.47.3-1.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core-debuginfo@2.47.3-1.el9_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.x86_64",
"product": {
"name": "git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.x86_64",
"product_id": "git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret-debuginfo@2.47.3-1.el9_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-daemon-debuginfo-0:2.47.3-1.el9_6.x86_64",
"product": {
"name": "git-daemon-debuginfo-0:2.47.3-1.el9_6.x86_64",
"product_id": "git-daemon-debuginfo-0:2.47.3-1.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon-debuginfo@2.47.3-1.el9_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-debuginfo-0:2.47.3-1.el9_6.x86_64",
"product": {
"name": "git-debuginfo-0:2.47.3-1.el9_6.x86_64",
"product_id": "git-debuginfo-0:2.47.3-1.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debuginfo@2.47.3-1.el9_6?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "git-0:2.47.3-1.el9_6.s390x",
"product": {
"name": "git-0:2.47.3-1.el9_6.s390x",
"product_id": "git-0:2.47.3-1.el9_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git@2.47.3-1.el9_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-core-0:2.47.3-1.el9_6.s390x",
"product": {
"name": "git-core-0:2.47.3-1.el9_6.s390x",
"product_id": "git-core-0:2.47.3-1.el9_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core@2.47.3-1.el9_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-0:2.47.3-1.el9_6.s390x",
"product": {
"name": "git-credential-libsecret-0:2.47.3-1.el9_6.s390x",
"product_id": "git-credential-libsecret-0:2.47.3-1.el9_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret@2.47.3-1.el9_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-daemon-0:2.47.3-1.el9_6.s390x",
"product": {
"name": "git-daemon-0:2.47.3-1.el9_6.s390x",
"product_id": "git-daemon-0:2.47.3-1.el9_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon@2.47.3-1.el9_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-subtree-0:2.47.3-1.el9_6.s390x",
"product": {
"name": "git-subtree-0:2.47.3-1.el9_6.s390x",
"product_id": "git-subtree-0:2.47.3-1.el9_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-subtree@2.47.3-1.el9_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-debugsource-0:2.47.3-1.el9_6.s390x",
"product": {
"name": "git-debugsource-0:2.47.3-1.el9_6.s390x",
"product_id": "git-debugsource-0:2.47.3-1.el9_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debugsource@2.47.3-1.el9_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-core-debuginfo-0:2.47.3-1.el9_6.s390x",
"product": {
"name": "git-core-debuginfo-0:2.47.3-1.el9_6.s390x",
"product_id": "git-core-debuginfo-0:2.47.3-1.el9_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core-debuginfo@2.47.3-1.el9_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.s390x",
"product": {
"name": "git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.s390x",
"product_id": "git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret-debuginfo@2.47.3-1.el9_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-daemon-debuginfo-0:2.47.3-1.el9_6.s390x",
"product": {
"name": "git-daemon-debuginfo-0:2.47.3-1.el9_6.s390x",
"product_id": "git-daemon-debuginfo-0:2.47.3-1.el9_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon-debuginfo@2.47.3-1.el9_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-debuginfo-0:2.47.3-1.el9_6.s390x",
"product": {
"name": "git-debuginfo-0:2.47.3-1.el9_6.s390x",
"product_id": "git-debuginfo-0:2.47.3-1.el9_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debuginfo@2.47.3-1.el9_6?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "git-all-0:2.47.3-1.el9_6.noarch",
"product": {
"name": "git-all-0:2.47.3-1.el9_6.noarch",
"product_id": "git-all-0:2.47.3-1.el9_6.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-all@2.47.3-1.el9_6?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "git-core-doc-0:2.47.3-1.el9_6.noarch",
"product": {
"name": "git-core-doc-0:2.47.3-1.el9_6.noarch",
"product_id": "git-core-doc-0:2.47.3-1.el9_6.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core-doc@2.47.3-1.el9_6?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "git-email-0:2.47.3-1.el9_6.noarch",
"product": {
"name": "git-email-0:2.47.3-1.el9_6.noarch",
"product_id": "git-email-0:2.47.3-1.el9_6.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-email@2.47.3-1.el9_6?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "git-gui-0:2.47.3-1.el9_6.noarch",
"product": {
"name": "git-gui-0:2.47.3-1.el9_6.noarch",
"product_id": "git-gui-0:2.47.3-1.el9_6.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-gui@2.47.3-1.el9_6?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "git-instaweb-0:2.47.3-1.el9_6.noarch",
"product": {
"name": "git-instaweb-0:2.47.3-1.el9_6.noarch",
"product_id": "git-instaweb-0:2.47.3-1.el9_6.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-instaweb@2.47.3-1.el9_6?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "git-svn-0:2.47.3-1.el9_6.noarch",
"product": {
"name": "git-svn-0:2.47.3-1.el9_6.noarch",
"product_id": "git-svn-0:2.47.3-1.el9_6.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-svn@2.47.3-1.el9_6?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "gitk-0:2.47.3-1.el9_6.noarch",
"product": {
"name": "gitk-0:2.47.3-1.el9_6.noarch",
"product_id": "gitk-0:2.47.3-1.el9_6.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/gitk@2.47.3-1.el9_6?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "gitweb-0:2.47.3-1.el9_6.noarch",
"product": {
"name": "gitweb-0:2.47.3-1.el9_6.noarch",
"product_id": "gitweb-0:2.47.3-1.el9_6.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/gitweb@2.47.3-1.el9_6?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "perl-Git-0:2.47.3-1.el9_6.noarch",
"product": {
"name": "perl-Git-0:2.47.3-1.el9_6.noarch",
"product_id": "perl-Git-0:2.47.3-1.el9_6.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/perl-Git@2.47.3-1.el9_6?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "perl-Git-SVN-0:2.47.3-1.el9_6.noarch",
"product": {
"name": "perl-Git-SVN-0:2.47.3-1.el9_6.noarch",
"product_id": "perl-Git-SVN-0:2.47.3-1.el9_6.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/perl-Git-SVN@2.47.3-1.el9_6?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "git-0:2.47.3-1.el9_6.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.aarch64"
},
"product_reference": "git-0:2.47.3-1.el9_6.aarch64",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-0:2.47.3-1.el9_6.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.ppc64le"
},
"product_reference": "git-0:2.47.3-1.el9_6.ppc64le",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-0:2.47.3-1.el9_6.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.s390x"
},
"product_reference": "git-0:2.47.3-1.el9_6.s390x",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-0:2.47.3-1.el9_6.src as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.src"
},
"product_reference": "git-0:2.47.3-1.el9_6.src",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-0:2.47.3-1.el9_6.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.x86_64"
},
"product_reference": "git-0:2.47.3-1.el9_6.x86_64",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-all-0:2.47.3-1.el9_6.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:git-all-0:2.47.3-1.el9_6.noarch"
},
"product_reference": "git-all-0:2.47.3-1.el9_6.noarch",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-0:2.47.3-1.el9_6.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:git-core-0:2.47.3-1.el9_6.aarch64"
},
"product_reference": "git-core-0:2.47.3-1.el9_6.aarch64",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-0:2.47.3-1.el9_6.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:git-core-0:2.47.3-1.el9_6.ppc64le"
},
"product_reference": "git-core-0:2.47.3-1.el9_6.ppc64le",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-0:2.47.3-1.el9_6.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:git-core-0:2.47.3-1.el9_6.s390x"
},
"product_reference": "git-core-0:2.47.3-1.el9_6.s390x",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-0:2.47.3-1.el9_6.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:git-core-0:2.47.3-1.el9_6.x86_64"
},
"product_reference": "git-core-0:2.47.3-1.el9_6.x86_64",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-debuginfo-0:2.47.3-1.el9_6.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:git-core-debuginfo-0:2.47.3-1.el9_6.aarch64"
},
"product_reference": "git-core-debuginfo-0:2.47.3-1.el9_6.aarch64",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-debuginfo-0:2.47.3-1.el9_6.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:git-core-debuginfo-0:2.47.3-1.el9_6.ppc64le"
},
"product_reference": "git-core-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-debuginfo-0:2.47.3-1.el9_6.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:git-core-debuginfo-0:2.47.3-1.el9_6.s390x"
},
"product_reference": "git-core-debuginfo-0:2.47.3-1.el9_6.s390x",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-debuginfo-0:2.47.3-1.el9_6.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:git-core-debuginfo-0:2.47.3-1.el9_6.x86_64"
},
"product_reference": "git-core-debuginfo-0:2.47.3-1.el9_6.x86_64",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-doc-0:2.47.3-1.el9_6.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:git-core-doc-0:2.47.3-1.el9_6.noarch"
},
"product_reference": "git-core-doc-0:2.47.3-1.el9_6.noarch",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-0:2.47.3-1.el9_6.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-0:2.47.3-1.el9_6.aarch64"
},
"product_reference": "git-credential-libsecret-0:2.47.3-1.el9_6.aarch64",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-0:2.47.3-1.el9_6.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-0:2.47.3-1.el9_6.ppc64le"
},
"product_reference": "git-credential-libsecret-0:2.47.3-1.el9_6.ppc64le",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-0:2.47.3-1.el9_6.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-0:2.47.3-1.el9_6.s390x"
},
"product_reference": "git-credential-libsecret-0:2.47.3-1.el9_6.s390x",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-0:2.47.3-1.el9_6.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-0:2.47.3-1.el9_6.x86_64"
},
"product_reference": "git-credential-libsecret-0:2.47.3-1.el9_6.x86_64",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.aarch64"
},
"product_reference": "git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.aarch64",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.ppc64le"
},
"product_reference": "git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.s390x"
},
"product_reference": "git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.s390x",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.x86_64"
},
"product_reference": "git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.x86_64",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-0:2.47.3-1.el9_6.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:git-daemon-0:2.47.3-1.el9_6.aarch64"
},
"product_reference": "git-daemon-0:2.47.3-1.el9_6.aarch64",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-0:2.47.3-1.el9_6.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:git-daemon-0:2.47.3-1.el9_6.ppc64le"
},
"product_reference": "git-daemon-0:2.47.3-1.el9_6.ppc64le",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-0:2.47.3-1.el9_6.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:git-daemon-0:2.47.3-1.el9_6.s390x"
},
"product_reference": "git-daemon-0:2.47.3-1.el9_6.s390x",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-0:2.47.3-1.el9_6.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:git-daemon-0:2.47.3-1.el9_6.x86_64"
},
"product_reference": "git-daemon-0:2.47.3-1.el9_6.x86_64",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-debuginfo-0:2.47.3-1.el9_6.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.47.3-1.el9_6.aarch64"
},
"product_reference": "git-daemon-debuginfo-0:2.47.3-1.el9_6.aarch64",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-debuginfo-0:2.47.3-1.el9_6.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.47.3-1.el9_6.ppc64le"
},
"product_reference": "git-daemon-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-debuginfo-0:2.47.3-1.el9_6.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.47.3-1.el9_6.s390x"
},
"product_reference": "git-daemon-debuginfo-0:2.47.3-1.el9_6.s390x",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-debuginfo-0:2.47.3-1.el9_6.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.47.3-1.el9_6.x86_64"
},
"product_reference": "git-daemon-debuginfo-0:2.47.3-1.el9_6.x86_64",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debuginfo-0:2.47.3-1.el9_6.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:git-debuginfo-0:2.47.3-1.el9_6.aarch64"
},
"product_reference": "git-debuginfo-0:2.47.3-1.el9_6.aarch64",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debuginfo-0:2.47.3-1.el9_6.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:git-debuginfo-0:2.47.3-1.el9_6.ppc64le"
},
"product_reference": "git-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debuginfo-0:2.47.3-1.el9_6.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:git-debuginfo-0:2.47.3-1.el9_6.s390x"
},
"product_reference": "git-debuginfo-0:2.47.3-1.el9_6.s390x",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debuginfo-0:2.47.3-1.el9_6.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:git-debuginfo-0:2.47.3-1.el9_6.x86_64"
},
"product_reference": "git-debuginfo-0:2.47.3-1.el9_6.x86_64",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debugsource-0:2.47.3-1.el9_6.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:git-debugsource-0:2.47.3-1.el9_6.aarch64"
},
"product_reference": "git-debugsource-0:2.47.3-1.el9_6.aarch64",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debugsource-0:2.47.3-1.el9_6.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:git-debugsource-0:2.47.3-1.el9_6.ppc64le"
},
"product_reference": "git-debugsource-0:2.47.3-1.el9_6.ppc64le",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debugsource-0:2.47.3-1.el9_6.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:git-debugsource-0:2.47.3-1.el9_6.s390x"
},
"product_reference": "git-debugsource-0:2.47.3-1.el9_6.s390x",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debugsource-0:2.47.3-1.el9_6.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:git-debugsource-0:2.47.3-1.el9_6.x86_64"
},
"product_reference": "git-debugsource-0:2.47.3-1.el9_6.x86_64",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-0:2.47.3-1.el9_6.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:git-email-0:2.47.3-1.el9_6.noarch"
},
"product_reference": "git-email-0:2.47.3-1.el9_6.noarch",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-0:2.47.3-1.el9_6.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:git-gui-0:2.47.3-1.el9_6.noarch"
},
"product_reference": "git-gui-0:2.47.3-1.el9_6.noarch",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-instaweb-0:2.47.3-1.el9_6.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:git-instaweb-0:2.47.3-1.el9_6.noarch"
},
"product_reference": "git-instaweb-0:2.47.3-1.el9_6.noarch",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-subtree-0:2.47.3-1.el9_6.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:git-subtree-0:2.47.3-1.el9_6.aarch64"
},
"product_reference": "git-subtree-0:2.47.3-1.el9_6.aarch64",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-subtree-0:2.47.3-1.el9_6.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:git-subtree-0:2.47.3-1.el9_6.ppc64le"
},
"product_reference": "git-subtree-0:2.47.3-1.el9_6.ppc64le",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-subtree-0:2.47.3-1.el9_6.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:git-subtree-0:2.47.3-1.el9_6.s390x"
},
"product_reference": "git-subtree-0:2.47.3-1.el9_6.s390x",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-subtree-0:2.47.3-1.el9_6.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:git-subtree-0:2.47.3-1.el9_6.x86_64"
},
"product_reference": "git-subtree-0:2.47.3-1.el9_6.x86_64",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-0:2.47.3-1.el9_6.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:git-svn-0:2.47.3-1.el9_6.noarch"
},
"product_reference": "git-svn-0:2.47.3-1.el9_6.noarch",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-0:2.47.3-1.el9_6.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:gitk-0:2.47.3-1.el9_6.noarch"
},
"product_reference": "gitk-0:2.47.3-1.el9_6.noarch",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitweb-0:2.47.3-1.el9_6.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:gitweb-0:2.47.3-1.el9_6.noarch"
},
"product_reference": "gitweb-0:2.47.3-1.el9_6.noarch",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-0:2.47.3-1.el9_6.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:perl-Git-0:2.47.3-1.el9_6.noarch"
},
"product_reference": "perl-Git-0:2.47.3-1.el9_6.noarch",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-SVN-0:2.47.3-1.el9_6.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:perl-Git-SVN-0:2.47.3-1.el9_6.noarch"
},
"product_reference": "perl-Git-SVN-0:2.47.3-1.el9_6.noarch",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-50349",
"cwe": {
"id": "CWE-150",
"name": "Improper Neutralization of Escape, Meta, or Control Sequences"
},
"discovery_date": "2025-01-14T19:00:58.133257+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2337824"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Git. This vulnerability occurs when Git requests credentials via a terminal prompt, for example, without the use of a credential helper. During this process, Git displays the host name for which the credentials are needed, but any URL-encoded parts are decoded and displayed directly. This can allow an attacker to manipulate URLs by including ANSI escape sequences, which can be interpreted by the terminal to mislead users by tricking them into entering passwords that are redirected to malicious attacker-controlled sites.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "git: Git does not sanitize URLs when asking for credentials interactively",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.src",
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-all-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-debuginfo-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-debuginfo-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-debuginfo-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-doc-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-debuginfo-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-debuginfo-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-debuginfo-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-debugsource-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-debugsource-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-debugsource-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-debugsource-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-email-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-gui-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-instaweb-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-subtree-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-subtree-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-subtree-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-subtree-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-svn-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:gitk-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:gitweb-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:perl-Git-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:perl-Git-SVN-0:2.47.3-1.el9_6.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-50349"
},
{
"category": "external",
"summary": "RHBZ#2337824",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2337824"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-50349",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50349"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-50349",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-50349"
},
{
"category": "external",
"summary": "https://github.com/git/git/commit/7725b8100ffbbff2750ee4d61a0fcc1f53a086e8",
"url": "https://github.com/git/git/commit/7725b8100ffbbff2750ee4d61a0fcc1f53a086e8"
},
{
"category": "external",
"summary": "https://github.com/git/git/commit/c903985bf7e772e2d08275c1a95c8a55ab011577",
"url": "https://github.com/git/git/commit/c903985bf7e772e2d08275c1a95c8a55ab011577"
},
{
"category": "external",
"summary": "https://github.com/git/git/security/advisories/GHSA-hmg8-h7qf-7cxr",
"url": "https://github.com/git/git/security/advisories/GHSA-hmg8-h7qf-7cxr"
}
],
"release_date": "2025-01-14T18:43:42.620000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-07-21T14:51:13+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.src",
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-all-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-debuginfo-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-debuginfo-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-debuginfo-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-doc-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-debuginfo-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-debuginfo-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-debuginfo-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-debugsource-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-debugsource-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-debugsource-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-debugsource-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-email-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-gui-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-instaweb-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-subtree-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-subtree-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-subtree-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-subtree-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-svn-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:gitk-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:gitweb-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:perl-Git-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:perl-Git-SVN-0:2.47.3-1.el9_6.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:11462"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 3.1,
"baseSeverity": "LOW",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.src",
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-all-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-debuginfo-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-debuginfo-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-debuginfo-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-doc-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-debuginfo-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-debuginfo-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-debuginfo-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-debugsource-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-debugsource-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-debugsource-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-debugsource-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-email-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-gui-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-instaweb-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-subtree-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-subtree-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-subtree-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-subtree-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-svn-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:gitk-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:gitweb-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:perl-Git-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:perl-Git-SVN-0:2.47.3-1.el9_6.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "git: Git does not sanitize URLs when asking for credentials interactively"
},
{
"cve": "CVE-2024-52006",
"cwe": {
"id": "CWE-150",
"name": "Improper Neutralization of Escape, Meta, or Control Sequences"
},
"discovery_date": "2025-01-14T19:09:43.720302+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2337956"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Git. Git defines a line-based protocol that is used to exchange information between Git and Git credential helpers. Some ecosystems, most notably .NET and node.js, interpret single Carriage Return characters as newlines, which render the protections against CVE-2020-5260 incomplete for credential helpers, which has the potential to expose stored credentials to malicious URLs.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "git: Newline confusion in credential helpers can lead to credential exfiltration in git",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.src",
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-all-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-debuginfo-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-debuginfo-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-debuginfo-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-doc-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-debuginfo-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-debuginfo-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-debuginfo-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-debugsource-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-debugsource-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-debugsource-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-debugsource-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-email-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-gui-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-instaweb-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-subtree-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-subtree-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-subtree-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-subtree-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-svn-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:gitk-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:gitweb-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:perl-Git-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:perl-Git-SVN-0:2.47.3-1.el9_6.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-52006"
},
{
"category": "external",
"summary": "RHBZ#2337956",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2337956"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-52006",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-52006"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-52006",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-52006"
},
{
"category": "external",
"summary": "https://github.com/git-ecosystem/git-credential-manager/security/advisories/GHSA-86c2-4x57-wc8g",
"url": "https://github.com/git-ecosystem/git-credential-manager/security/advisories/GHSA-86c2-4x57-wc8g"
},
{
"category": "external",
"summary": "https://github.com/git/git/commit/b01b9b81d36759cdcd07305e78765199e1bc2060",
"url": "https://github.com/git/git/commit/b01b9b81d36759cdcd07305e78765199e1bc2060"
},
{
"category": "external",
"summary": "https://github.com/git/git/security/advisories/GHSA-qm7j-c969-7j4q",
"url": "https://github.com/git/git/security/advisories/GHSA-qm7j-c969-7j4q"
},
{
"category": "external",
"summary": "https://github.com/git/git/security/advisories/GHSA-r5ph-xg7q-xfrp",
"url": "https://github.com/git/git/security/advisories/GHSA-r5ph-xg7q-xfrp"
}
],
"release_date": "2025-01-14T18:39:52.748000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-07-21T14:51:13+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.src",
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-all-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-debuginfo-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-debuginfo-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-debuginfo-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-doc-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-debuginfo-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-debuginfo-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-debuginfo-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-debugsource-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-debugsource-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-debugsource-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-debugsource-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-email-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-gui-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-instaweb-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-subtree-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-subtree-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-subtree-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-subtree-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-svn-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:gitk-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:gitweb-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:perl-Git-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:perl-Git-SVN-0:2.47.3-1.el9_6.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:11462"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.src",
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-all-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-debuginfo-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-debuginfo-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-debuginfo-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-doc-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-debuginfo-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-debuginfo-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-debuginfo-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-debugsource-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-debugsource-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-debugsource-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-debugsource-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-email-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-gui-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-instaweb-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-subtree-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-subtree-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-subtree-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-subtree-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-svn-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:gitk-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:gitweb-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:perl-Git-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:perl-Git-SVN-0:2.47.3-1.el9_6.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "git: Newline confusion in credential helpers can lead to credential exfiltration in git"
},
{
"cve": "CVE-2025-27613",
"cwe": {
"id": "CWE-73",
"name": "External Control of File Name or Path"
},
"discovery_date": "2025-07-09T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2379124"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability has been identified in the gitk application that could lead to unauthorized file modification or data loss.\n\nThis flaw manifests in two primary scenarios:\n- Untrusted Repository Cloning: When a user is tricked into cloning an untrusted Git repository and then uses gitk to visualize it without any additional parameters, any writable file on the user\u0027s system can be arbitrarily created or truncated. Exploitation via this method also requires the Support per-file encoding option to be explicitly enabled in Gitk\u0027s preferences, which is not the default setting.\n- \u0027Show origin of this line\u0027 Command: The vulnerability can also be triggered if a user employs the Show origin of this line command within gitk\u0027s main window while viewing a malicious repository. This method does not depend on the Support per-file encoding option being enabled.\n\nThe primary risk is unauthorized file system modification, which could lead to data integrity issues, data loss, or potentially open avenues for further system compromise.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "gitk: Git file creation flaw",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The Red Hat Product Security team rated this vulnerability as having a Moderate security impact. Exploitation depends on a non-default option being enabled and the user being tricked into cloning the untrusted repository or using the \"Show origin of this line\" command in the main window.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.src",
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-all-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-debuginfo-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-debuginfo-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-debuginfo-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-doc-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-debuginfo-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-debuginfo-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-debuginfo-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-debugsource-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-debugsource-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-debugsource-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-debugsource-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-email-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-gui-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-instaweb-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-subtree-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-subtree-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-subtree-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-subtree-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-svn-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:gitk-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:gitweb-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:perl-Git-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:perl-Git-SVN-0:2.47.3-1.el9_6.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-27613"
},
{
"category": "external",
"summary": "RHBZ#2379124",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2379124"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-27613",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-27613"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-27613",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-27613"
},
{
"category": "external",
"summary": "https://github.com/j6t/gitk/security/advisories/GHSA-f3cw-xrj3-wr2v",
"url": "https://github.com/j6t/gitk/security/advisories/GHSA-f3cw-xrj3-wr2v"
},
{
"category": "external",
"summary": "https://lore.kernel.org/git/xmqq5xg2wrd1.fsf@gitster.g/",
"url": "https://lore.kernel.org/git/xmqq5xg2wrd1.fsf@gitster.g/"
},
{
"category": "external",
"summary": "https://www.openwall.com/lists/oss-security/2025/07/08/4",
"url": "https://www.openwall.com/lists/oss-security/2025/07/08/4"
}
],
"release_date": "2025-07-08T13:01:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-07-21T14:51:13+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.src",
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-all-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-debuginfo-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-debuginfo-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-debuginfo-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-doc-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-debuginfo-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-debuginfo-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-debuginfo-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-debugsource-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-debugsource-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-debugsource-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-debugsource-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-email-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-gui-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-instaweb-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-subtree-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-subtree-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-subtree-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-subtree-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-svn-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:gitk-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:gitweb-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:perl-Git-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:perl-Git-SVN-0:2.47.3-1.el9_6.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:11462"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.src",
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-all-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-debuginfo-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-debuginfo-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-debuginfo-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-doc-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-debuginfo-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-debuginfo-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-debuginfo-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-debugsource-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-debugsource-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-debugsource-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-debugsource-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-email-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-gui-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-instaweb-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-subtree-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-subtree-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-subtree-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-subtree-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-svn-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:gitk-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:gitweb-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:perl-Git-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:perl-Git-SVN-0:2.47.3-1.el9_6.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "gitk: Git file creation flaw"
},
{
"cve": "CVE-2025-27614",
"discovery_date": "2025-07-09T22:54:11.462000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2379125"
}
],
"notes": [
{
"category": "description",
"text": "Gitk is a Tcl/Tk based Git history browser. Starting with 2.41.0, a Git repository can be crafted in such a way that with some social engineering a user who has cloned the repository can be tricked into running any script (e.g., Bourne shell, Perl, Python, ...) supplied by the attacker by invoking gitk filename, where filename has a particular structure. The script is run with the privileges of the user. This vulnerability is fixed in 2.43.7, 2.44.4, 2.45.4, 2.46.4, 2.47.3, 2.48.2, 2.49.1, and 2.50.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "gitk: git script execution flaw",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The Red Hat Product Security team has rated this vulnerability as having a Moderate impact as it depends on the user to be tricked to run the command using the malicious file as parameter.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.src",
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-all-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-debuginfo-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-debuginfo-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-debuginfo-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-doc-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-debuginfo-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-debuginfo-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-debuginfo-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-debugsource-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-debugsource-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-debugsource-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-debugsource-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-email-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-gui-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-instaweb-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-subtree-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-subtree-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-subtree-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-subtree-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-svn-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:gitk-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:gitweb-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:perl-Git-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:perl-Git-SVN-0:2.47.3-1.el9_6.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-27614"
},
{
"category": "external",
"summary": "RHBZ#2379125",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2379125"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-27614",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-27614"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-27614",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-27614"
},
{
"category": "external",
"summary": "https://lore.kernel.org/git/xmqq5xg2wrd1.fsf@gitster.g/",
"url": "https://lore.kernel.org/git/xmqq5xg2wrd1.fsf@gitster.g/"
},
{
"category": "external",
"summary": "https://www.openwall.com/lists/oss-security/2025/07/08/4",
"url": "https://www.openwall.com/lists/oss-security/2025/07/08/4"
}
],
"release_date": "2025-07-08T13:01:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-07-21T14:51:13+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.src",
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-all-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-debuginfo-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-debuginfo-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-debuginfo-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-doc-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-debuginfo-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-debuginfo-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-debuginfo-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-debugsource-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-debugsource-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-debugsource-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-debugsource-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-email-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-gui-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-instaweb-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-subtree-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-subtree-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-subtree-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-subtree-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-svn-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:gitk-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:gitweb-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:perl-Git-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:perl-Git-SVN-0:2.47.3-1.el9_6.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:11462"
},
{
"category": "workaround",
"details": "There\u0027s no known mitigation for this issue besides avoid using gitk with untrusted repositories or unstrusted files.",
"product_ids": [
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.src",
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-all-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-debuginfo-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-debuginfo-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-debuginfo-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-doc-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-debuginfo-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-debuginfo-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-debuginfo-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-debugsource-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-debugsource-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-debugsource-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-debugsource-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-email-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-gui-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-instaweb-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-subtree-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-subtree-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-subtree-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-subtree-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-svn-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:gitk-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:gitweb-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:perl-Git-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:perl-Git-SVN-0:2.47.3-1.el9_6.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.src",
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-all-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-debuginfo-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-debuginfo-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-debuginfo-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-doc-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-debuginfo-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-debuginfo-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-debuginfo-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-debugsource-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-debugsource-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-debugsource-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-debugsource-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-email-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-gui-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-instaweb-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-subtree-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-subtree-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-subtree-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-subtree-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-svn-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:gitk-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:gitweb-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:perl-Git-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:perl-Git-SVN-0:2.47.3-1.el9_6.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "gitk: git script execution flaw"
},
{
"cve": "CVE-2025-46835",
"cwe": {
"id": "CWE-88",
"name": "Improper Neutralization of Argument Delimiters in a Command (\u0027Argument Injection\u0027)"
},
"discovery_date": "2025-07-10T16:00:54.639582+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2379326"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in the git GUI package. When a user clones an untrusted repository and edits a file located in a maliciously named directory, git GUI may end up creating or overwriting arbitrary files for the running user has written permission. This flaw allows an attacker to modify the content of target files without the affected user\u0027s intent, resulting in a data integrity issue.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "git: Git GUI can create and overwrite files for which the user has write permission",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security team has rated this vulnerability as having a Low severity. The is due to the high complexity in exploiting the vulnerability. Additionally, the user needs to be tricked into cloning an untrusted repository and editing a file located in a directory with a maliciously crafted name.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.src",
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-all-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-debuginfo-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-debuginfo-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-debuginfo-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-doc-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-debuginfo-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-debuginfo-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-debuginfo-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-debugsource-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-debugsource-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-debugsource-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-debugsource-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-email-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-gui-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-instaweb-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-subtree-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-subtree-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-subtree-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-subtree-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-svn-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:gitk-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:gitweb-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:perl-Git-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:perl-Git-SVN-0:2.47.3-1.el9_6.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-46835"
},
{
"category": "external",
"summary": "RHBZ#2379326",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2379326"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-46835",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-46835"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-46835",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-46835"
},
{
"category": "external",
"summary": "https://github.com/j6t/git-gui/compare/dcda716dbc9c90bcac4611bd1076747671ee0906..a437f5bc93330a70b42a230e52f3bd036ca1b1da",
"url": "https://github.com/j6t/git-gui/compare/dcda716dbc9c90bcac4611bd1076747671ee0906..a437f5bc93330a70b42a230e52f3bd036ca1b1da"
},
{
"category": "external",
"summary": "https://github.com/j6t/git-gui/security/advisories/GHSA-xfx7-68v4-v8fg",
"url": "https://github.com/j6t/git-gui/security/advisories/GHSA-xfx7-68v4-v8fg"
}
],
"release_date": "2025-07-10T15:09:42.735000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-07-21T14:51:13+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.src",
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-all-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-debuginfo-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-debuginfo-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-debuginfo-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-doc-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-debuginfo-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-debuginfo-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-debuginfo-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-debugsource-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-debugsource-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-debugsource-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-debugsource-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-email-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-gui-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-instaweb-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-subtree-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-subtree-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-subtree-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-subtree-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-svn-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:gitk-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:gitweb-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:perl-Git-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:perl-Git-SVN-0:2.47.3-1.el9_6.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:11462"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 3.1,
"baseSeverity": "LOW",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.src",
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-all-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-debuginfo-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-debuginfo-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-debuginfo-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-doc-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-debuginfo-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-debuginfo-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-debuginfo-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-debugsource-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-debugsource-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-debugsource-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-debugsource-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-email-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-gui-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-instaweb-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-subtree-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-subtree-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-subtree-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-subtree-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-svn-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:gitk-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:gitweb-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:perl-Git-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:perl-Git-SVN-0:2.47.3-1.el9_6.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "git: Git GUI can create and overwrite files for which the user has write permission"
},
{
"cve": "CVE-2025-48384",
"cwe": {
"id": "CWE-59",
"name": "Improper Link Resolution Before File Access (\u0027Link Following\u0027)"
},
"discovery_date": "2025-07-08T19:00:48.297925+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2378806"
}
],
"notes": [
{
"category": "description",
"text": "A line-end handling flaw was found in Git. When writing a config entry, values with a trailing carriage return (CR) are not quoted, resulting in the CR being lost when the config is read later. When initializing a submodule, if the submodule path contains a trailing CR, the altered path is read, resulting in the submodule being checked out to an incorrect location.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "git: Git arbitrary code execution",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability marked as Important and not Moderate flaw because it undermines Git\u2019s path and config integrity by allowing carriage return (\\r) injection to manipulate submodule checkout behavior. Git previously failed to quote config values containing trailing CR, causing the value to be misinterpreted when read back. In the context of submodules, this leads to incorrect path resolution, allowing an attacker to redirect the checkout path via a symlink to a sensitive directory like .git/modules/\u003csubmodule\u003e/hooks. If an executable post-checkout hook exists there, it could be inadvertently executed, resulting in arbitrary code execution during submodule operations. This is particularly dangerous in automated CI/CD pipelines or multi-repo projects where submodules are initialized or updated without manual inspection.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.src",
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-all-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-debuginfo-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-debuginfo-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-debuginfo-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-doc-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-debuginfo-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-debuginfo-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-debuginfo-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-debugsource-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-debugsource-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-debugsource-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-debugsource-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-email-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-gui-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-instaweb-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-subtree-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-subtree-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-subtree-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-subtree-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-svn-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:gitk-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:gitweb-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:perl-Git-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:perl-Git-SVN-0:2.47.3-1.el9_6.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-48384"
},
{
"category": "external",
"summary": "RHBZ#2378806",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2378806"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-48384",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-48384"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-48384",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-48384"
},
{
"category": "external",
"summary": "https://dgl.cx/2025/07/git-clone-submodule-cve-2025-48384",
"url": "https://dgl.cx/2025/07/git-clone-submodule-cve-2025-48384"
},
{
"category": "external",
"summary": "https://github.com/git/git/commit/05e9cd64ee23bbadcea6bcffd6660ed02b8eab89",
"url": "https://github.com/git/git/commit/05e9cd64ee23bbadcea6bcffd6660ed02b8eab89"
},
{
"category": "external",
"summary": "https://github.com/git/git/security/advisories/GHSA-vwqx-4fm8-6qc9",
"url": "https://github.com/git/git/security/advisories/GHSA-vwqx-4fm8-6qc9"
},
{
"category": "external",
"summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog",
"url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
}
],
"release_date": "2025-07-08T18:23:48.710000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-07-21T14:51:13+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.src",
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-all-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-debuginfo-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-debuginfo-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-debuginfo-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-doc-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-debuginfo-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-debuginfo-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-debuginfo-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-debugsource-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-debugsource-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-debugsource-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-debugsource-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-email-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-gui-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-instaweb-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-subtree-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-subtree-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-subtree-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-subtree-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-svn-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:gitk-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:gitweb-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:perl-Git-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:perl-Git-SVN-0:2.47.3-1.el9_6.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:11462"
},
{
"category": "workaround",
"details": "To mitigate this issue, avoid using --recurse-submodules when cloning repositories from untrusted sources; instead, clone normally and only initialize or update submodules manually after reviewing them.",
"product_ids": [
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.src",
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-all-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-debuginfo-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-debuginfo-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-debuginfo-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-doc-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-debuginfo-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-debuginfo-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-debuginfo-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-debugsource-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-debugsource-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-debugsource-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-debugsource-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-email-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-gui-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-instaweb-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-subtree-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-subtree-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-subtree-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-subtree-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-svn-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:gitk-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:gitweb-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:perl-Git-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:perl-Git-SVN-0:2.47.3-1.el9_6.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.0,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.src",
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-all-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-debuginfo-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-debuginfo-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-debuginfo-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-doc-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-debuginfo-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-debuginfo-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-debuginfo-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-debugsource-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-debugsource-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-debugsource-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-debugsource-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-email-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-gui-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-instaweb-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-subtree-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-subtree-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-subtree-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-subtree-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-svn-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:gitk-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:gitweb-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:perl-Git-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:perl-Git-SVN-0:2.47.3-1.el9_6.noarch"
]
}
],
"threats": [
{
"category": "exploit_status",
"date": "2025-08-25T00:00:00+00:00",
"details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
},
{
"category": "impact",
"details": "Important"
}
],
"title": "git: Git arbitrary code execution"
},
{
"cve": "CVE-2025-48385",
"cwe": {
"id": "CWE-88",
"name": "Improper Neutralization of Argument Delimiters in a Command (\u0027Argument Injection\u0027)"
},
"discovery_date": "2025-07-08T19:00:55.106787+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2378808"
}
],
"notes": [
{
"category": "description",
"text": "A bundled uri handling flaw was found in Git. When cloning a repository, Git knows to optionally fetch a bundle advertised by the remote server, which allows the server side to offload parts of the clone to a CDN. The Git client does not perform sufficient validation of the advertised bundles, which allows the remote side to perform protocol injection.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "git: Git arbitrary file writes",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability marked as Important rather than a Moderate flaw because it enables protocol injection at the transport layer of Git\u0027s bundle-uri mechanism, allowing a remote server to manipulate how and where data is written on the client system during a clone operation. The lack of input sanitization on user-controlled values like the URI and target path means that malformed inputs containing spaces or newlines can break protocol framing, leading to arbitrary file writes. In scenarios such as CI pipelines, developer environments, or recursive clones with submodules, an attacker can exploit this to overwrite critical files or inject malicious content, potentially achieving remote code execution (RCE).",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.src",
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-all-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-debuginfo-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-debuginfo-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-debuginfo-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-doc-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-debuginfo-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-debuginfo-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-debuginfo-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-debugsource-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-debugsource-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-debugsource-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-debugsource-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-email-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-gui-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-instaweb-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-subtree-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-subtree-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-subtree-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-subtree-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-svn-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:gitk-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:gitweb-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:perl-Git-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:perl-Git-SVN-0:2.47.3-1.el9_6.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-48385"
},
{
"category": "external",
"summary": "RHBZ#2378808",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2378808"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-48385",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-48385"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-48385",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-48385"
},
{
"category": "external",
"summary": "https://github.com/git/git/security/advisories/GHSA-m98c-vgpc-9655",
"url": "https://github.com/git/git/security/advisories/GHSA-m98c-vgpc-9655"
}
],
"release_date": "2025-07-08T18:23:44.405000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-07-21T14:51:13+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.src",
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-all-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-debuginfo-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-debuginfo-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-debuginfo-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-doc-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-debuginfo-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-debuginfo-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-debuginfo-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-debugsource-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-debugsource-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-debugsource-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-debugsource-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-email-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-gui-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-instaweb-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-subtree-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-subtree-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-subtree-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-subtree-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-svn-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:gitk-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:gitweb-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:perl-Git-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:perl-Git-SVN-0:2.47.3-1.el9_6.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:11462"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.src",
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-all-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-debuginfo-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-debuginfo-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-debuginfo-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-doc-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-debuginfo-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-debuginfo-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-debuginfo-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-debugsource-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-debugsource-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-debugsource-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-debugsource-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-email-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-gui-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-instaweb-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-subtree-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-subtree-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-subtree-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-subtree-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-svn-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:gitk-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:gitweb-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:perl-Git-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:perl-Git-SVN-0:2.47.3-1.el9_6.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 8.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:L",
"version": "3.1"
},
"products": [
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.src",
"AppStream-9.6.0.Z.MAIN.EUS:git-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-all-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-debuginfo-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-debuginfo-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-debuginfo-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-core-doc-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-debuginfo-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-debuginfo-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-debuginfo-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-debuginfo-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-debugsource-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-debugsource-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-debugsource-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-debugsource-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-email-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-gui-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-instaweb-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:git-subtree-0:2.47.3-1.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:git-subtree-0:2.47.3-1.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:git-subtree-0:2.47.3-1.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:git-subtree-0:2.47.3-1.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:git-svn-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:gitk-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:gitweb-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:perl-Git-0:2.47.3-1.el9_6.noarch",
"AppStream-9.6.0.Z.MAIN.EUS:perl-Git-SVN-0:2.47.3-1.el9_6.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "git: Git arbitrary file writes"
}
]
}
rhsa-2025:11795
Vulnerability from csaf_redhat
Published
2025-07-28 01:17
Modified
2025-11-06 23:41
Summary
Red Hat Security Advisory: git security update
Notes
Topic
An update for git is now available for Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Git is a distributed revision control system with a decentralized architecture. As opposed to centralized version control systems with a client-server model, Git ensures that each working copy of a Git repository is an exact copy with complete revision history. This not only allows the user to work on and contribute to projects without the need to have permission to push the changes to their official repositories, but also makes it possible for the user to work with no network connection.
Security Fix(es):
* git: Git arbitrary code execution (CVE-2025-48384)
* git: Git arbitrary file writes (CVE-2025-48385)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for git is now available for Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Git is a distributed revision control system with a decentralized architecture. As opposed to centralized version control systems with a client-server model, Git ensures that each working copy of a Git repository is an exact copy with complete revision history. This not only allows the user to work on and contribute to projects without the need to have permission to push the changes to their official repositories, but also makes it possible for the user to work with no network connection.\n\nSecurity Fix(es):\n\n* git: Git arbitrary code execution (CVE-2025-48384)\n\n* git: Git arbitrary file writes (CVE-2025-48385)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:11795",
"url": "https://access.redhat.com/errata/RHSA-2025:11795"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2378806",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2378806"
},
{
"category": "external",
"summary": "2378808",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2378808"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_11795.json"
}
],
"title": "Red Hat Security Advisory: git security update",
"tracking": {
"current_release_date": "2025-11-06T23:41:43+00:00",
"generator": {
"date": "2025-11-06T23:41:43+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.11"
}
},
"id": "RHSA-2025:11795",
"initial_release_date": "2025-07-28T01:17:10+00:00",
"revision_history": [
{
"date": "2025-07-28T01:17:10+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-07-28T01:17:10+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-06T23:41:43+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product": {
"name": "Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_e4s:9.2::appstream"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "git-0:2.39.5-1.el9_2.2.src",
"product": {
"name": "git-0:2.39.5-1.el9_2.2.src",
"product_id": "git-0:2.39.5-1.el9_2.2.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git@2.39.5-1.el9_2.2?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "git-0:2.39.5-1.el9_2.2.aarch64",
"product": {
"name": "git-0:2.39.5-1.el9_2.2.aarch64",
"product_id": "git-0:2.39.5-1.el9_2.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git@2.39.5-1.el9_2.2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-core-0:2.39.5-1.el9_2.2.aarch64",
"product": {
"name": "git-core-0:2.39.5-1.el9_2.2.aarch64",
"product_id": "git-core-0:2.39.5-1.el9_2.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core@2.39.5-1.el9_2.2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-0:2.39.5-1.el9_2.2.aarch64",
"product": {
"name": "git-credential-libsecret-0:2.39.5-1.el9_2.2.aarch64",
"product_id": "git-credential-libsecret-0:2.39.5-1.el9_2.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret@2.39.5-1.el9_2.2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-daemon-0:2.39.5-1.el9_2.2.aarch64",
"product": {
"name": "git-daemon-0:2.39.5-1.el9_2.2.aarch64",
"product_id": "git-daemon-0:2.39.5-1.el9_2.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon@2.39.5-1.el9_2.2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-subtree-0:2.39.5-1.el9_2.2.aarch64",
"product": {
"name": "git-subtree-0:2.39.5-1.el9_2.2.aarch64",
"product_id": "git-subtree-0:2.39.5-1.el9_2.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-subtree@2.39.5-1.el9_2.2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-debugsource-0:2.39.5-1.el9_2.2.aarch64",
"product": {
"name": "git-debugsource-0:2.39.5-1.el9_2.2.aarch64",
"product_id": "git-debugsource-0:2.39.5-1.el9_2.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debugsource@2.39.5-1.el9_2.2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-core-debuginfo-0:2.39.5-1.el9_2.2.aarch64",
"product": {
"name": "git-core-debuginfo-0:2.39.5-1.el9_2.2.aarch64",
"product_id": "git-core-debuginfo-0:2.39.5-1.el9_2.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core-debuginfo@2.39.5-1.el9_2.2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.2.aarch64",
"product": {
"name": "git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.2.aarch64",
"product_id": "git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret-debuginfo@2.39.5-1.el9_2.2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-daemon-debuginfo-0:2.39.5-1.el9_2.2.aarch64",
"product": {
"name": "git-daemon-debuginfo-0:2.39.5-1.el9_2.2.aarch64",
"product_id": "git-daemon-debuginfo-0:2.39.5-1.el9_2.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon-debuginfo@2.39.5-1.el9_2.2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-debuginfo-0:2.39.5-1.el9_2.2.aarch64",
"product": {
"name": "git-debuginfo-0:2.39.5-1.el9_2.2.aarch64",
"product_id": "git-debuginfo-0:2.39.5-1.el9_2.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debuginfo@2.39.5-1.el9_2.2?arch=aarch64"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "git-0:2.39.5-1.el9_2.2.ppc64le",
"product": {
"name": "git-0:2.39.5-1.el9_2.2.ppc64le",
"product_id": "git-0:2.39.5-1.el9_2.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git@2.39.5-1.el9_2.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-core-0:2.39.5-1.el9_2.2.ppc64le",
"product": {
"name": "git-core-0:2.39.5-1.el9_2.2.ppc64le",
"product_id": "git-core-0:2.39.5-1.el9_2.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core@2.39.5-1.el9_2.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-0:2.39.5-1.el9_2.2.ppc64le",
"product": {
"name": "git-credential-libsecret-0:2.39.5-1.el9_2.2.ppc64le",
"product_id": "git-credential-libsecret-0:2.39.5-1.el9_2.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret@2.39.5-1.el9_2.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-daemon-0:2.39.5-1.el9_2.2.ppc64le",
"product": {
"name": "git-daemon-0:2.39.5-1.el9_2.2.ppc64le",
"product_id": "git-daemon-0:2.39.5-1.el9_2.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon@2.39.5-1.el9_2.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-subtree-0:2.39.5-1.el9_2.2.ppc64le",
"product": {
"name": "git-subtree-0:2.39.5-1.el9_2.2.ppc64le",
"product_id": "git-subtree-0:2.39.5-1.el9_2.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-subtree@2.39.5-1.el9_2.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-debugsource-0:2.39.5-1.el9_2.2.ppc64le",
"product": {
"name": "git-debugsource-0:2.39.5-1.el9_2.2.ppc64le",
"product_id": "git-debugsource-0:2.39.5-1.el9_2.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debugsource@2.39.5-1.el9_2.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-core-debuginfo-0:2.39.5-1.el9_2.2.ppc64le",
"product": {
"name": "git-core-debuginfo-0:2.39.5-1.el9_2.2.ppc64le",
"product_id": "git-core-debuginfo-0:2.39.5-1.el9_2.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core-debuginfo@2.39.5-1.el9_2.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.2.ppc64le",
"product": {
"name": "git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.2.ppc64le",
"product_id": "git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret-debuginfo@2.39.5-1.el9_2.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-daemon-debuginfo-0:2.39.5-1.el9_2.2.ppc64le",
"product": {
"name": "git-daemon-debuginfo-0:2.39.5-1.el9_2.2.ppc64le",
"product_id": "git-daemon-debuginfo-0:2.39.5-1.el9_2.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon-debuginfo@2.39.5-1.el9_2.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-debuginfo-0:2.39.5-1.el9_2.2.ppc64le",
"product": {
"name": "git-debuginfo-0:2.39.5-1.el9_2.2.ppc64le",
"product_id": "git-debuginfo-0:2.39.5-1.el9_2.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debuginfo@2.39.5-1.el9_2.2?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "git-0:2.39.5-1.el9_2.2.x86_64",
"product": {
"name": "git-0:2.39.5-1.el9_2.2.x86_64",
"product_id": "git-0:2.39.5-1.el9_2.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git@2.39.5-1.el9_2.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-core-0:2.39.5-1.el9_2.2.x86_64",
"product": {
"name": "git-core-0:2.39.5-1.el9_2.2.x86_64",
"product_id": "git-core-0:2.39.5-1.el9_2.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core@2.39.5-1.el9_2.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-0:2.39.5-1.el9_2.2.x86_64",
"product": {
"name": "git-credential-libsecret-0:2.39.5-1.el9_2.2.x86_64",
"product_id": "git-credential-libsecret-0:2.39.5-1.el9_2.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret@2.39.5-1.el9_2.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-daemon-0:2.39.5-1.el9_2.2.x86_64",
"product": {
"name": "git-daemon-0:2.39.5-1.el9_2.2.x86_64",
"product_id": "git-daemon-0:2.39.5-1.el9_2.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon@2.39.5-1.el9_2.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-subtree-0:2.39.5-1.el9_2.2.x86_64",
"product": {
"name": "git-subtree-0:2.39.5-1.el9_2.2.x86_64",
"product_id": "git-subtree-0:2.39.5-1.el9_2.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-subtree@2.39.5-1.el9_2.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-debugsource-0:2.39.5-1.el9_2.2.x86_64",
"product": {
"name": "git-debugsource-0:2.39.5-1.el9_2.2.x86_64",
"product_id": "git-debugsource-0:2.39.5-1.el9_2.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debugsource@2.39.5-1.el9_2.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-core-debuginfo-0:2.39.5-1.el9_2.2.x86_64",
"product": {
"name": "git-core-debuginfo-0:2.39.5-1.el9_2.2.x86_64",
"product_id": "git-core-debuginfo-0:2.39.5-1.el9_2.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core-debuginfo@2.39.5-1.el9_2.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.2.x86_64",
"product": {
"name": "git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.2.x86_64",
"product_id": "git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret-debuginfo@2.39.5-1.el9_2.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-daemon-debuginfo-0:2.39.5-1.el9_2.2.x86_64",
"product": {
"name": "git-daemon-debuginfo-0:2.39.5-1.el9_2.2.x86_64",
"product_id": "git-daemon-debuginfo-0:2.39.5-1.el9_2.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon-debuginfo@2.39.5-1.el9_2.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-debuginfo-0:2.39.5-1.el9_2.2.x86_64",
"product": {
"name": "git-debuginfo-0:2.39.5-1.el9_2.2.x86_64",
"product_id": "git-debuginfo-0:2.39.5-1.el9_2.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debuginfo@2.39.5-1.el9_2.2?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "git-0:2.39.5-1.el9_2.2.s390x",
"product": {
"name": "git-0:2.39.5-1.el9_2.2.s390x",
"product_id": "git-0:2.39.5-1.el9_2.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git@2.39.5-1.el9_2.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-core-0:2.39.5-1.el9_2.2.s390x",
"product": {
"name": "git-core-0:2.39.5-1.el9_2.2.s390x",
"product_id": "git-core-0:2.39.5-1.el9_2.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core@2.39.5-1.el9_2.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-0:2.39.5-1.el9_2.2.s390x",
"product": {
"name": "git-credential-libsecret-0:2.39.5-1.el9_2.2.s390x",
"product_id": "git-credential-libsecret-0:2.39.5-1.el9_2.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret@2.39.5-1.el9_2.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-daemon-0:2.39.5-1.el9_2.2.s390x",
"product": {
"name": "git-daemon-0:2.39.5-1.el9_2.2.s390x",
"product_id": "git-daemon-0:2.39.5-1.el9_2.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon@2.39.5-1.el9_2.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-subtree-0:2.39.5-1.el9_2.2.s390x",
"product": {
"name": "git-subtree-0:2.39.5-1.el9_2.2.s390x",
"product_id": "git-subtree-0:2.39.5-1.el9_2.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-subtree@2.39.5-1.el9_2.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-debugsource-0:2.39.5-1.el9_2.2.s390x",
"product": {
"name": "git-debugsource-0:2.39.5-1.el9_2.2.s390x",
"product_id": "git-debugsource-0:2.39.5-1.el9_2.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debugsource@2.39.5-1.el9_2.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-core-debuginfo-0:2.39.5-1.el9_2.2.s390x",
"product": {
"name": "git-core-debuginfo-0:2.39.5-1.el9_2.2.s390x",
"product_id": "git-core-debuginfo-0:2.39.5-1.el9_2.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core-debuginfo@2.39.5-1.el9_2.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.2.s390x",
"product": {
"name": "git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.2.s390x",
"product_id": "git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret-debuginfo@2.39.5-1.el9_2.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-daemon-debuginfo-0:2.39.5-1.el9_2.2.s390x",
"product": {
"name": "git-daemon-debuginfo-0:2.39.5-1.el9_2.2.s390x",
"product_id": "git-daemon-debuginfo-0:2.39.5-1.el9_2.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon-debuginfo@2.39.5-1.el9_2.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-debuginfo-0:2.39.5-1.el9_2.2.s390x",
"product": {
"name": "git-debuginfo-0:2.39.5-1.el9_2.2.s390x",
"product_id": "git-debuginfo-0:2.39.5-1.el9_2.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debuginfo@2.39.5-1.el9_2.2?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "git-all-0:2.39.5-1.el9_2.2.noarch",
"product": {
"name": "git-all-0:2.39.5-1.el9_2.2.noarch",
"product_id": "git-all-0:2.39.5-1.el9_2.2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-all@2.39.5-1.el9_2.2?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "git-core-doc-0:2.39.5-1.el9_2.2.noarch",
"product": {
"name": "git-core-doc-0:2.39.5-1.el9_2.2.noarch",
"product_id": "git-core-doc-0:2.39.5-1.el9_2.2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core-doc@2.39.5-1.el9_2.2?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "git-email-0:2.39.5-1.el9_2.2.noarch",
"product": {
"name": "git-email-0:2.39.5-1.el9_2.2.noarch",
"product_id": "git-email-0:2.39.5-1.el9_2.2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-email@2.39.5-1.el9_2.2?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "git-gui-0:2.39.5-1.el9_2.2.noarch",
"product": {
"name": "git-gui-0:2.39.5-1.el9_2.2.noarch",
"product_id": "git-gui-0:2.39.5-1.el9_2.2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-gui@2.39.5-1.el9_2.2?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "git-instaweb-0:2.39.5-1.el9_2.2.noarch",
"product": {
"name": "git-instaweb-0:2.39.5-1.el9_2.2.noarch",
"product_id": "git-instaweb-0:2.39.5-1.el9_2.2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-instaweb@2.39.5-1.el9_2.2?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "git-svn-0:2.39.5-1.el9_2.2.noarch",
"product": {
"name": "git-svn-0:2.39.5-1.el9_2.2.noarch",
"product_id": "git-svn-0:2.39.5-1.el9_2.2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-svn@2.39.5-1.el9_2.2?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "gitk-0:2.39.5-1.el9_2.2.noarch",
"product": {
"name": "gitk-0:2.39.5-1.el9_2.2.noarch",
"product_id": "gitk-0:2.39.5-1.el9_2.2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/gitk@2.39.5-1.el9_2.2?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "gitweb-0:2.39.5-1.el9_2.2.noarch",
"product": {
"name": "gitweb-0:2.39.5-1.el9_2.2.noarch",
"product_id": "gitweb-0:2.39.5-1.el9_2.2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/gitweb@2.39.5-1.el9_2.2?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "perl-Git-0:2.39.5-1.el9_2.2.noarch",
"product": {
"name": "perl-Git-0:2.39.5-1.el9_2.2.noarch",
"product_id": "perl-Git-0:2.39.5-1.el9_2.2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/perl-Git@2.39.5-1.el9_2.2?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "perl-Git-SVN-0:2.39.5-1.el9_2.2.noarch",
"product": {
"name": "perl-Git-SVN-0:2.39.5-1.el9_2.2.noarch",
"product_id": "perl-Git-SVN-0:2.39.5-1.el9_2.2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/perl-Git-SVN@2.39.5-1.el9_2.2?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "git-0:2.39.5-1.el9_2.2.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:git-0:2.39.5-1.el9_2.2.aarch64"
},
"product_reference": "git-0:2.39.5-1.el9_2.2.aarch64",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-0:2.39.5-1.el9_2.2.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:git-0:2.39.5-1.el9_2.2.ppc64le"
},
"product_reference": "git-0:2.39.5-1.el9_2.2.ppc64le",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-0:2.39.5-1.el9_2.2.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:git-0:2.39.5-1.el9_2.2.s390x"
},
"product_reference": "git-0:2.39.5-1.el9_2.2.s390x",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-0:2.39.5-1.el9_2.2.src as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:git-0:2.39.5-1.el9_2.2.src"
},
"product_reference": "git-0:2.39.5-1.el9_2.2.src",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-0:2.39.5-1.el9_2.2.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:git-0:2.39.5-1.el9_2.2.x86_64"
},
"product_reference": "git-0:2.39.5-1.el9_2.2.x86_64",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-all-0:2.39.5-1.el9_2.2.noarch as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:git-all-0:2.39.5-1.el9_2.2.noarch"
},
"product_reference": "git-all-0:2.39.5-1.el9_2.2.noarch",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-0:2.39.5-1.el9_2.2.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:git-core-0:2.39.5-1.el9_2.2.aarch64"
},
"product_reference": "git-core-0:2.39.5-1.el9_2.2.aarch64",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-0:2.39.5-1.el9_2.2.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:git-core-0:2.39.5-1.el9_2.2.ppc64le"
},
"product_reference": "git-core-0:2.39.5-1.el9_2.2.ppc64le",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-0:2.39.5-1.el9_2.2.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:git-core-0:2.39.5-1.el9_2.2.s390x"
},
"product_reference": "git-core-0:2.39.5-1.el9_2.2.s390x",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-0:2.39.5-1.el9_2.2.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:git-core-0:2.39.5-1.el9_2.2.x86_64"
},
"product_reference": "git-core-0:2.39.5-1.el9_2.2.x86_64",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-debuginfo-0:2.39.5-1.el9_2.2.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:git-core-debuginfo-0:2.39.5-1.el9_2.2.aarch64"
},
"product_reference": "git-core-debuginfo-0:2.39.5-1.el9_2.2.aarch64",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-debuginfo-0:2.39.5-1.el9_2.2.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:git-core-debuginfo-0:2.39.5-1.el9_2.2.ppc64le"
},
"product_reference": "git-core-debuginfo-0:2.39.5-1.el9_2.2.ppc64le",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-debuginfo-0:2.39.5-1.el9_2.2.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:git-core-debuginfo-0:2.39.5-1.el9_2.2.s390x"
},
"product_reference": "git-core-debuginfo-0:2.39.5-1.el9_2.2.s390x",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-debuginfo-0:2.39.5-1.el9_2.2.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:git-core-debuginfo-0:2.39.5-1.el9_2.2.x86_64"
},
"product_reference": "git-core-debuginfo-0:2.39.5-1.el9_2.2.x86_64",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-doc-0:2.39.5-1.el9_2.2.noarch as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:git-core-doc-0:2.39.5-1.el9_2.2.noarch"
},
"product_reference": "git-core-doc-0:2.39.5-1.el9_2.2.noarch",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-0:2.39.5-1.el9_2.2.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:git-credential-libsecret-0:2.39.5-1.el9_2.2.aarch64"
},
"product_reference": "git-credential-libsecret-0:2.39.5-1.el9_2.2.aarch64",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-0:2.39.5-1.el9_2.2.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:git-credential-libsecret-0:2.39.5-1.el9_2.2.ppc64le"
},
"product_reference": "git-credential-libsecret-0:2.39.5-1.el9_2.2.ppc64le",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-0:2.39.5-1.el9_2.2.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:git-credential-libsecret-0:2.39.5-1.el9_2.2.s390x"
},
"product_reference": "git-credential-libsecret-0:2.39.5-1.el9_2.2.s390x",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-0:2.39.5-1.el9_2.2.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:git-credential-libsecret-0:2.39.5-1.el9_2.2.x86_64"
},
"product_reference": "git-credential-libsecret-0:2.39.5-1.el9_2.2.x86_64",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.2.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.2.aarch64"
},
"product_reference": "git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.2.aarch64",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.2.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.2.ppc64le"
},
"product_reference": "git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.2.ppc64le",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.2.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.2.s390x"
},
"product_reference": "git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.2.s390x",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.2.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.2.x86_64"
},
"product_reference": "git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.2.x86_64",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-0:2.39.5-1.el9_2.2.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:git-daemon-0:2.39.5-1.el9_2.2.aarch64"
},
"product_reference": "git-daemon-0:2.39.5-1.el9_2.2.aarch64",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-0:2.39.5-1.el9_2.2.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:git-daemon-0:2.39.5-1.el9_2.2.ppc64le"
},
"product_reference": "git-daemon-0:2.39.5-1.el9_2.2.ppc64le",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-0:2.39.5-1.el9_2.2.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:git-daemon-0:2.39.5-1.el9_2.2.s390x"
},
"product_reference": "git-daemon-0:2.39.5-1.el9_2.2.s390x",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-0:2.39.5-1.el9_2.2.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:git-daemon-0:2.39.5-1.el9_2.2.x86_64"
},
"product_reference": "git-daemon-0:2.39.5-1.el9_2.2.x86_64",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-debuginfo-0:2.39.5-1.el9_2.2.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:git-daemon-debuginfo-0:2.39.5-1.el9_2.2.aarch64"
},
"product_reference": "git-daemon-debuginfo-0:2.39.5-1.el9_2.2.aarch64",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-debuginfo-0:2.39.5-1.el9_2.2.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:git-daemon-debuginfo-0:2.39.5-1.el9_2.2.ppc64le"
},
"product_reference": "git-daemon-debuginfo-0:2.39.5-1.el9_2.2.ppc64le",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-debuginfo-0:2.39.5-1.el9_2.2.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:git-daemon-debuginfo-0:2.39.5-1.el9_2.2.s390x"
},
"product_reference": "git-daemon-debuginfo-0:2.39.5-1.el9_2.2.s390x",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-debuginfo-0:2.39.5-1.el9_2.2.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:git-daemon-debuginfo-0:2.39.5-1.el9_2.2.x86_64"
},
"product_reference": "git-daemon-debuginfo-0:2.39.5-1.el9_2.2.x86_64",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debuginfo-0:2.39.5-1.el9_2.2.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:git-debuginfo-0:2.39.5-1.el9_2.2.aarch64"
},
"product_reference": "git-debuginfo-0:2.39.5-1.el9_2.2.aarch64",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debuginfo-0:2.39.5-1.el9_2.2.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:git-debuginfo-0:2.39.5-1.el9_2.2.ppc64le"
},
"product_reference": "git-debuginfo-0:2.39.5-1.el9_2.2.ppc64le",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debuginfo-0:2.39.5-1.el9_2.2.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:git-debuginfo-0:2.39.5-1.el9_2.2.s390x"
},
"product_reference": "git-debuginfo-0:2.39.5-1.el9_2.2.s390x",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debuginfo-0:2.39.5-1.el9_2.2.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:git-debuginfo-0:2.39.5-1.el9_2.2.x86_64"
},
"product_reference": "git-debuginfo-0:2.39.5-1.el9_2.2.x86_64",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debugsource-0:2.39.5-1.el9_2.2.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:git-debugsource-0:2.39.5-1.el9_2.2.aarch64"
},
"product_reference": "git-debugsource-0:2.39.5-1.el9_2.2.aarch64",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debugsource-0:2.39.5-1.el9_2.2.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:git-debugsource-0:2.39.5-1.el9_2.2.ppc64le"
},
"product_reference": "git-debugsource-0:2.39.5-1.el9_2.2.ppc64le",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debugsource-0:2.39.5-1.el9_2.2.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:git-debugsource-0:2.39.5-1.el9_2.2.s390x"
},
"product_reference": "git-debugsource-0:2.39.5-1.el9_2.2.s390x",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debugsource-0:2.39.5-1.el9_2.2.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:git-debugsource-0:2.39.5-1.el9_2.2.x86_64"
},
"product_reference": "git-debugsource-0:2.39.5-1.el9_2.2.x86_64",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-0:2.39.5-1.el9_2.2.noarch as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:git-email-0:2.39.5-1.el9_2.2.noarch"
},
"product_reference": "git-email-0:2.39.5-1.el9_2.2.noarch",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-0:2.39.5-1.el9_2.2.noarch as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:git-gui-0:2.39.5-1.el9_2.2.noarch"
},
"product_reference": "git-gui-0:2.39.5-1.el9_2.2.noarch",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-instaweb-0:2.39.5-1.el9_2.2.noarch as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:git-instaweb-0:2.39.5-1.el9_2.2.noarch"
},
"product_reference": "git-instaweb-0:2.39.5-1.el9_2.2.noarch",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-subtree-0:2.39.5-1.el9_2.2.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:git-subtree-0:2.39.5-1.el9_2.2.aarch64"
},
"product_reference": "git-subtree-0:2.39.5-1.el9_2.2.aarch64",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-subtree-0:2.39.5-1.el9_2.2.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:git-subtree-0:2.39.5-1.el9_2.2.ppc64le"
},
"product_reference": "git-subtree-0:2.39.5-1.el9_2.2.ppc64le",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-subtree-0:2.39.5-1.el9_2.2.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:git-subtree-0:2.39.5-1.el9_2.2.s390x"
},
"product_reference": "git-subtree-0:2.39.5-1.el9_2.2.s390x",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-subtree-0:2.39.5-1.el9_2.2.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:git-subtree-0:2.39.5-1.el9_2.2.x86_64"
},
"product_reference": "git-subtree-0:2.39.5-1.el9_2.2.x86_64",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-0:2.39.5-1.el9_2.2.noarch as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:git-svn-0:2.39.5-1.el9_2.2.noarch"
},
"product_reference": "git-svn-0:2.39.5-1.el9_2.2.noarch",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-0:2.39.5-1.el9_2.2.noarch as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:gitk-0:2.39.5-1.el9_2.2.noarch"
},
"product_reference": "gitk-0:2.39.5-1.el9_2.2.noarch",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitweb-0:2.39.5-1.el9_2.2.noarch as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:gitweb-0:2.39.5-1.el9_2.2.noarch"
},
"product_reference": "gitweb-0:2.39.5-1.el9_2.2.noarch",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-0:2.39.5-1.el9_2.2.noarch as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:perl-Git-0:2.39.5-1.el9_2.2.noarch"
},
"product_reference": "perl-Git-0:2.39.5-1.el9_2.2.noarch",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-SVN-0:2.39.5-1.el9_2.2.noarch as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:perl-Git-SVN-0:2.39.5-1.el9_2.2.noarch"
},
"product_reference": "perl-Git-SVN-0:2.39.5-1.el9_2.2.noarch",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-48384",
"cwe": {
"id": "CWE-59",
"name": "Improper Link Resolution Before File Access (\u0027Link Following\u0027)"
},
"discovery_date": "2025-07-08T19:00:48.297925+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2378806"
}
],
"notes": [
{
"category": "description",
"text": "A line-end handling flaw was found in Git. When writing a config entry, values with a trailing carriage return (CR) are not quoted, resulting in the CR being lost when the config is read later. When initializing a submodule, if the submodule path contains a trailing CR, the altered path is read, resulting in the submodule being checked out to an incorrect location.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "git: Git arbitrary code execution",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability marked as Important and not Moderate flaw because it undermines Git\u2019s path and config integrity by allowing carriage return (\\r) injection to manipulate submodule checkout behavior. Git previously failed to quote config values containing trailing CR, causing the value to be misinterpreted when read back. In the context of submodules, this leads to incorrect path resolution, allowing an attacker to redirect the checkout path via a symlink to a sensitive directory like .git/modules/\u003csubmodule\u003e/hooks. If an executable post-checkout hook exists there, it could be inadvertently executed, resulting in arbitrary code execution during submodule operations. This is particularly dangerous in automated CI/CD pipelines or multi-repo projects where submodules are initialized or updated without manual inspection.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.2.0.Z.E4S:git-0:2.39.5-1.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:git-0:2.39.5-1.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:git-0:2.39.5-1.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:git-0:2.39.5-1.el9_2.2.src",
"AppStream-9.2.0.Z.E4S:git-0:2.39.5-1.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:git-all-0:2.39.5-1.el9_2.2.noarch",
"AppStream-9.2.0.Z.E4S:git-core-0:2.39.5-1.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:git-core-0:2.39.5-1.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:git-core-0:2.39.5-1.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:git-core-0:2.39.5-1.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:git-core-debuginfo-0:2.39.5-1.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:git-core-debuginfo-0:2.39.5-1.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:git-core-debuginfo-0:2.39.5-1.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:git-core-debuginfo-0:2.39.5-1.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:git-core-doc-0:2.39.5-1.el9_2.2.noarch",
"AppStream-9.2.0.Z.E4S:git-credential-libsecret-0:2.39.5-1.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:git-credential-libsecret-0:2.39.5-1.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:git-credential-libsecret-0:2.39.5-1.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:git-credential-libsecret-0:2.39.5-1.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:git-daemon-0:2.39.5-1.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:git-daemon-0:2.39.5-1.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:git-daemon-0:2.39.5-1.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:git-daemon-0:2.39.5-1.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:git-daemon-debuginfo-0:2.39.5-1.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:git-daemon-debuginfo-0:2.39.5-1.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:git-daemon-debuginfo-0:2.39.5-1.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:git-daemon-debuginfo-0:2.39.5-1.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:git-debuginfo-0:2.39.5-1.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:git-debuginfo-0:2.39.5-1.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:git-debuginfo-0:2.39.5-1.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:git-debuginfo-0:2.39.5-1.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:git-debugsource-0:2.39.5-1.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:git-debugsource-0:2.39.5-1.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:git-debugsource-0:2.39.5-1.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:git-debugsource-0:2.39.5-1.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:git-email-0:2.39.5-1.el9_2.2.noarch",
"AppStream-9.2.0.Z.E4S:git-gui-0:2.39.5-1.el9_2.2.noarch",
"AppStream-9.2.0.Z.E4S:git-instaweb-0:2.39.5-1.el9_2.2.noarch",
"AppStream-9.2.0.Z.E4S:git-subtree-0:2.39.5-1.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:git-subtree-0:2.39.5-1.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:git-subtree-0:2.39.5-1.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:git-subtree-0:2.39.5-1.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:git-svn-0:2.39.5-1.el9_2.2.noarch",
"AppStream-9.2.0.Z.E4S:gitk-0:2.39.5-1.el9_2.2.noarch",
"AppStream-9.2.0.Z.E4S:gitweb-0:2.39.5-1.el9_2.2.noarch",
"AppStream-9.2.0.Z.E4S:perl-Git-0:2.39.5-1.el9_2.2.noarch",
"AppStream-9.2.0.Z.E4S:perl-Git-SVN-0:2.39.5-1.el9_2.2.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-48384"
},
{
"category": "external",
"summary": "RHBZ#2378806",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2378806"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-48384",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-48384"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-48384",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-48384"
},
{
"category": "external",
"summary": "https://dgl.cx/2025/07/git-clone-submodule-cve-2025-48384",
"url": "https://dgl.cx/2025/07/git-clone-submodule-cve-2025-48384"
},
{
"category": "external",
"summary": "https://github.com/git/git/commit/05e9cd64ee23bbadcea6bcffd6660ed02b8eab89",
"url": "https://github.com/git/git/commit/05e9cd64ee23bbadcea6bcffd6660ed02b8eab89"
},
{
"category": "external",
"summary": "https://github.com/git/git/security/advisories/GHSA-vwqx-4fm8-6qc9",
"url": "https://github.com/git/git/security/advisories/GHSA-vwqx-4fm8-6qc9"
},
{
"category": "external",
"summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog",
"url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
}
],
"release_date": "2025-07-08T18:23:48.710000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-07-28T01:17:10+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.2.0.Z.E4S:git-0:2.39.5-1.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:git-0:2.39.5-1.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:git-0:2.39.5-1.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:git-0:2.39.5-1.el9_2.2.src",
"AppStream-9.2.0.Z.E4S:git-0:2.39.5-1.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:git-all-0:2.39.5-1.el9_2.2.noarch",
"AppStream-9.2.0.Z.E4S:git-core-0:2.39.5-1.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:git-core-0:2.39.5-1.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:git-core-0:2.39.5-1.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:git-core-0:2.39.5-1.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:git-core-debuginfo-0:2.39.5-1.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:git-core-debuginfo-0:2.39.5-1.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:git-core-debuginfo-0:2.39.5-1.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:git-core-debuginfo-0:2.39.5-1.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:git-core-doc-0:2.39.5-1.el9_2.2.noarch",
"AppStream-9.2.0.Z.E4S:git-credential-libsecret-0:2.39.5-1.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:git-credential-libsecret-0:2.39.5-1.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:git-credential-libsecret-0:2.39.5-1.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:git-credential-libsecret-0:2.39.5-1.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:git-daemon-0:2.39.5-1.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:git-daemon-0:2.39.5-1.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:git-daemon-0:2.39.5-1.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:git-daemon-0:2.39.5-1.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:git-daemon-debuginfo-0:2.39.5-1.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:git-daemon-debuginfo-0:2.39.5-1.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:git-daemon-debuginfo-0:2.39.5-1.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:git-daemon-debuginfo-0:2.39.5-1.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:git-debuginfo-0:2.39.5-1.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:git-debuginfo-0:2.39.5-1.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:git-debuginfo-0:2.39.5-1.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:git-debuginfo-0:2.39.5-1.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:git-debugsource-0:2.39.5-1.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:git-debugsource-0:2.39.5-1.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:git-debugsource-0:2.39.5-1.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:git-debugsource-0:2.39.5-1.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:git-email-0:2.39.5-1.el9_2.2.noarch",
"AppStream-9.2.0.Z.E4S:git-gui-0:2.39.5-1.el9_2.2.noarch",
"AppStream-9.2.0.Z.E4S:git-instaweb-0:2.39.5-1.el9_2.2.noarch",
"AppStream-9.2.0.Z.E4S:git-subtree-0:2.39.5-1.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:git-subtree-0:2.39.5-1.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:git-subtree-0:2.39.5-1.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:git-subtree-0:2.39.5-1.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:git-svn-0:2.39.5-1.el9_2.2.noarch",
"AppStream-9.2.0.Z.E4S:gitk-0:2.39.5-1.el9_2.2.noarch",
"AppStream-9.2.0.Z.E4S:gitweb-0:2.39.5-1.el9_2.2.noarch",
"AppStream-9.2.0.Z.E4S:perl-Git-0:2.39.5-1.el9_2.2.noarch",
"AppStream-9.2.0.Z.E4S:perl-Git-SVN-0:2.39.5-1.el9_2.2.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:11795"
},
{
"category": "workaround",
"details": "To mitigate this issue, avoid using --recurse-submodules when cloning repositories from untrusted sources; instead, clone normally and only initialize or update submodules manually after reviewing them.",
"product_ids": [
"AppStream-9.2.0.Z.E4S:git-0:2.39.5-1.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:git-0:2.39.5-1.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:git-0:2.39.5-1.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:git-0:2.39.5-1.el9_2.2.src",
"AppStream-9.2.0.Z.E4S:git-0:2.39.5-1.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:git-all-0:2.39.5-1.el9_2.2.noarch",
"AppStream-9.2.0.Z.E4S:git-core-0:2.39.5-1.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:git-core-0:2.39.5-1.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:git-core-0:2.39.5-1.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:git-core-0:2.39.5-1.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:git-core-debuginfo-0:2.39.5-1.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:git-core-debuginfo-0:2.39.5-1.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:git-core-debuginfo-0:2.39.5-1.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:git-core-debuginfo-0:2.39.5-1.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:git-core-doc-0:2.39.5-1.el9_2.2.noarch",
"AppStream-9.2.0.Z.E4S:git-credential-libsecret-0:2.39.5-1.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:git-credential-libsecret-0:2.39.5-1.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:git-credential-libsecret-0:2.39.5-1.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:git-credential-libsecret-0:2.39.5-1.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:git-daemon-0:2.39.5-1.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:git-daemon-0:2.39.5-1.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:git-daemon-0:2.39.5-1.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:git-daemon-0:2.39.5-1.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:git-daemon-debuginfo-0:2.39.5-1.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:git-daemon-debuginfo-0:2.39.5-1.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:git-daemon-debuginfo-0:2.39.5-1.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:git-daemon-debuginfo-0:2.39.5-1.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:git-debuginfo-0:2.39.5-1.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:git-debuginfo-0:2.39.5-1.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:git-debuginfo-0:2.39.5-1.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:git-debuginfo-0:2.39.5-1.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:git-debugsource-0:2.39.5-1.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:git-debugsource-0:2.39.5-1.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:git-debugsource-0:2.39.5-1.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:git-debugsource-0:2.39.5-1.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:git-email-0:2.39.5-1.el9_2.2.noarch",
"AppStream-9.2.0.Z.E4S:git-gui-0:2.39.5-1.el9_2.2.noarch",
"AppStream-9.2.0.Z.E4S:git-instaweb-0:2.39.5-1.el9_2.2.noarch",
"AppStream-9.2.0.Z.E4S:git-subtree-0:2.39.5-1.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:git-subtree-0:2.39.5-1.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:git-subtree-0:2.39.5-1.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:git-subtree-0:2.39.5-1.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:git-svn-0:2.39.5-1.el9_2.2.noarch",
"AppStream-9.2.0.Z.E4S:gitk-0:2.39.5-1.el9_2.2.noarch",
"AppStream-9.2.0.Z.E4S:gitweb-0:2.39.5-1.el9_2.2.noarch",
"AppStream-9.2.0.Z.E4S:perl-Git-0:2.39.5-1.el9_2.2.noarch",
"AppStream-9.2.0.Z.E4S:perl-Git-SVN-0:2.39.5-1.el9_2.2.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.0,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.2.0.Z.E4S:git-0:2.39.5-1.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:git-0:2.39.5-1.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:git-0:2.39.5-1.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:git-0:2.39.5-1.el9_2.2.src",
"AppStream-9.2.0.Z.E4S:git-0:2.39.5-1.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:git-all-0:2.39.5-1.el9_2.2.noarch",
"AppStream-9.2.0.Z.E4S:git-core-0:2.39.5-1.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:git-core-0:2.39.5-1.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:git-core-0:2.39.5-1.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:git-core-0:2.39.5-1.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:git-core-debuginfo-0:2.39.5-1.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:git-core-debuginfo-0:2.39.5-1.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:git-core-debuginfo-0:2.39.5-1.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:git-core-debuginfo-0:2.39.5-1.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:git-core-doc-0:2.39.5-1.el9_2.2.noarch",
"AppStream-9.2.0.Z.E4S:git-credential-libsecret-0:2.39.5-1.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:git-credential-libsecret-0:2.39.5-1.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:git-credential-libsecret-0:2.39.5-1.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:git-credential-libsecret-0:2.39.5-1.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:git-daemon-0:2.39.5-1.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:git-daemon-0:2.39.5-1.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:git-daemon-0:2.39.5-1.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:git-daemon-0:2.39.5-1.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:git-daemon-debuginfo-0:2.39.5-1.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:git-daemon-debuginfo-0:2.39.5-1.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:git-daemon-debuginfo-0:2.39.5-1.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:git-daemon-debuginfo-0:2.39.5-1.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:git-debuginfo-0:2.39.5-1.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:git-debuginfo-0:2.39.5-1.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:git-debuginfo-0:2.39.5-1.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:git-debuginfo-0:2.39.5-1.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:git-debugsource-0:2.39.5-1.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:git-debugsource-0:2.39.5-1.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:git-debugsource-0:2.39.5-1.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:git-debugsource-0:2.39.5-1.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:git-email-0:2.39.5-1.el9_2.2.noarch",
"AppStream-9.2.0.Z.E4S:git-gui-0:2.39.5-1.el9_2.2.noarch",
"AppStream-9.2.0.Z.E4S:git-instaweb-0:2.39.5-1.el9_2.2.noarch",
"AppStream-9.2.0.Z.E4S:git-subtree-0:2.39.5-1.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:git-subtree-0:2.39.5-1.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:git-subtree-0:2.39.5-1.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:git-subtree-0:2.39.5-1.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:git-svn-0:2.39.5-1.el9_2.2.noarch",
"AppStream-9.2.0.Z.E4S:gitk-0:2.39.5-1.el9_2.2.noarch",
"AppStream-9.2.0.Z.E4S:gitweb-0:2.39.5-1.el9_2.2.noarch",
"AppStream-9.2.0.Z.E4S:perl-Git-0:2.39.5-1.el9_2.2.noarch",
"AppStream-9.2.0.Z.E4S:perl-Git-SVN-0:2.39.5-1.el9_2.2.noarch"
]
}
],
"threats": [
{
"category": "exploit_status",
"date": "2025-08-25T00:00:00+00:00",
"details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
},
{
"category": "impact",
"details": "Important"
}
],
"title": "git: Git arbitrary code execution"
},
{
"cve": "CVE-2025-48385",
"cwe": {
"id": "CWE-88",
"name": "Improper Neutralization of Argument Delimiters in a Command (\u0027Argument Injection\u0027)"
},
"discovery_date": "2025-07-08T19:00:55.106787+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2378808"
}
],
"notes": [
{
"category": "description",
"text": "A bundled uri handling flaw was found in Git. When cloning a repository, Git knows to optionally fetch a bundle advertised by the remote server, which allows the server side to offload parts of the clone to a CDN. The Git client does not perform sufficient validation of the advertised bundles, which allows the remote side to perform protocol injection.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "git: Git arbitrary file writes",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability marked as Important rather than a Moderate flaw because it enables protocol injection at the transport layer of Git\u0027s bundle-uri mechanism, allowing a remote server to manipulate how and where data is written on the client system during a clone operation. The lack of input sanitization on user-controlled values like the URI and target path means that malformed inputs containing spaces or newlines can break protocol framing, leading to arbitrary file writes. In scenarios such as CI pipelines, developer environments, or recursive clones with submodules, an attacker can exploit this to overwrite critical files or inject malicious content, potentially achieving remote code execution (RCE).",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.2.0.Z.E4S:git-0:2.39.5-1.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:git-0:2.39.5-1.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:git-0:2.39.5-1.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:git-0:2.39.5-1.el9_2.2.src",
"AppStream-9.2.0.Z.E4S:git-0:2.39.5-1.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:git-all-0:2.39.5-1.el9_2.2.noarch",
"AppStream-9.2.0.Z.E4S:git-core-0:2.39.5-1.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:git-core-0:2.39.5-1.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:git-core-0:2.39.5-1.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:git-core-0:2.39.5-1.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:git-core-debuginfo-0:2.39.5-1.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:git-core-debuginfo-0:2.39.5-1.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:git-core-debuginfo-0:2.39.5-1.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:git-core-debuginfo-0:2.39.5-1.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:git-core-doc-0:2.39.5-1.el9_2.2.noarch",
"AppStream-9.2.0.Z.E4S:git-credential-libsecret-0:2.39.5-1.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:git-credential-libsecret-0:2.39.5-1.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:git-credential-libsecret-0:2.39.5-1.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:git-credential-libsecret-0:2.39.5-1.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:git-daemon-0:2.39.5-1.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:git-daemon-0:2.39.5-1.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:git-daemon-0:2.39.5-1.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:git-daemon-0:2.39.5-1.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:git-daemon-debuginfo-0:2.39.5-1.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:git-daemon-debuginfo-0:2.39.5-1.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:git-daemon-debuginfo-0:2.39.5-1.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:git-daemon-debuginfo-0:2.39.5-1.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:git-debuginfo-0:2.39.5-1.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:git-debuginfo-0:2.39.5-1.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:git-debuginfo-0:2.39.5-1.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:git-debuginfo-0:2.39.5-1.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:git-debugsource-0:2.39.5-1.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:git-debugsource-0:2.39.5-1.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:git-debugsource-0:2.39.5-1.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:git-debugsource-0:2.39.5-1.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:git-email-0:2.39.5-1.el9_2.2.noarch",
"AppStream-9.2.0.Z.E4S:git-gui-0:2.39.5-1.el9_2.2.noarch",
"AppStream-9.2.0.Z.E4S:git-instaweb-0:2.39.5-1.el9_2.2.noarch",
"AppStream-9.2.0.Z.E4S:git-subtree-0:2.39.5-1.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:git-subtree-0:2.39.5-1.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:git-subtree-0:2.39.5-1.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:git-subtree-0:2.39.5-1.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:git-svn-0:2.39.5-1.el9_2.2.noarch",
"AppStream-9.2.0.Z.E4S:gitk-0:2.39.5-1.el9_2.2.noarch",
"AppStream-9.2.0.Z.E4S:gitweb-0:2.39.5-1.el9_2.2.noarch",
"AppStream-9.2.0.Z.E4S:perl-Git-0:2.39.5-1.el9_2.2.noarch",
"AppStream-9.2.0.Z.E4S:perl-Git-SVN-0:2.39.5-1.el9_2.2.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-48385"
},
{
"category": "external",
"summary": "RHBZ#2378808",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2378808"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-48385",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-48385"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-48385",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-48385"
},
{
"category": "external",
"summary": "https://github.com/git/git/security/advisories/GHSA-m98c-vgpc-9655",
"url": "https://github.com/git/git/security/advisories/GHSA-m98c-vgpc-9655"
}
],
"release_date": "2025-07-08T18:23:44.405000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-07-28T01:17:10+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.2.0.Z.E4S:git-0:2.39.5-1.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:git-0:2.39.5-1.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:git-0:2.39.5-1.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:git-0:2.39.5-1.el9_2.2.src",
"AppStream-9.2.0.Z.E4S:git-0:2.39.5-1.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:git-all-0:2.39.5-1.el9_2.2.noarch",
"AppStream-9.2.0.Z.E4S:git-core-0:2.39.5-1.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:git-core-0:2.39.5-1.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:git-core-0:2.39.5-1.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:git-core-0:2.39.5-1.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:git-core-debuginfo-0:2.39.5-1.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:git-core-debuginfo-0:2.39.5-1.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:git-core-debuginfo-0:2.39.5-1.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:git-core-debuginfo-0:2.39.5-1.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:git-core-doc-0:2.39.5-1.el9_2.2.noarch",
"AppStream-9.2.0.Z.E4S:git-credential-libsecret-0:2.39.5-1.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:git-credential-libsecret-0:2.39.5-1.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:git-credential-libsecret-0:2.39.5-1.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:git-credential-libsecret-0:2.39.5-1.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:git-daemon-0:2.39.5-1.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:git-daemon-0:2.39.5-1.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:git-daemon-0:2.39.5-1.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:git-daemon-0:2.39.5-1.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:git-daemon-debuginfo-0:2.39.5-1.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:git-daemon-debuginfo-0:2.39.5-1.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:git-daemon-debuginfo-0:2.39.5-1.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:git-daemon-debuginfo-0:2.39.5-1.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:git-debuginfo-0:2.39.5-1.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:git-debuginfo-0:2.39.5-1.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:git-debuginfo-0:2.39.5-1.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:git-debuginfo-0:2.39.5-1.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:git-debugsource-0:2.39.5-1.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:git-debugsource-0:2.39.5-1.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:git-debugsource-0:2.39.5-1.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:git-debugsource-0:2.39.5-1.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:git-email-0:2.39.5-1.el9_2.2.noarch",
"AppStream-9.2.0.Z.E4S:git-gui-0:2.39.5-1.el9_2.2.noarch",
"AppStream-9.2.0.Z.E4S:git-instaweb-0:2.39.5-1.el9_2.2.noarch",
"AppStream-9.2.0.Z.E4S:git-subtree-0:2.39.5-1.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:git-subtree-0:2.39.5-1.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:git-subtree-0:2.39.5-1.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:git-subtree-0:2.39.5-1.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:git-svn-0:2.39.5-1.el9_2.2.noarch",
"AppStream-9.2.0.Z.E4S:gitk-0:2.39.5-1.el9_2.2.noarch",
"AppStream-9.2.0.Z.E4S:gitweb-0:2.39.5-1.el9_2.2.noarch",
"AppStream-9.2.0.Z.E4S:perl-Git-0:2.39.5-1.el9_2.2.noarch",
"AppStream-9.2.0.Z.E4S:perl-Git-SVN-0:2.39.5-1.el9_2.2.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:11795"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-9.2.0.Z.E4S:git-0:2.39.5-1.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:git-0:2.39.5-1.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:git-0:2.39.5-1.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:git-0:2.39.5-1.el9_2.2.src",
"AppStream-9.2.0.Z.E4S:git-0:2.39.5-1.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:git-all-0:2.39.5-1.el9_2.2.noarch",
"AppStream-9.2.0.Z.E4S:git-core-0:2.39.5-1.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:git-core-0:2.39.5-1.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:git-core-0:2.39.5-1.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:git-core-0:2.39.5-1.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:git-core-debuginfo-0:2.39.5-1.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:git-core-debuginfo-0:2.39.5-1.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:git-core-debuginfo-0:2.39.5-1.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:git-core-debuginfo-0:2.39.5-1.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:git-core-doc-0:2.39.5-1.el9_2.2.noarch",
"AppStream-9.2.0.Z.E4S:git-credential-libsecret-0:2.39.5-1.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:git-credential-libsecret-0:2.39.5-1.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:git-credential-libsecret-0:2.39.5-1.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:git-credential-libsecret-0:2.39.5-1.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:git-daemon-0:2.39.5-1.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:git-daemon-0:2.39.5-1.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:git-daemon-0:2.39.5-1.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:git-daemon-0:2.39.5-1.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:git-daemon-debuginfo-0:2.39.5-1.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:git-daemon-debuginfo-0:2.39.5-1.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:git-daemon-debuginfo-0:2.39.5-1.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:git-daemon-debuginfo-0:2.39.5-1.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:git-debuginfo-0:2.39.5-1.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:git-debuginfo-0:2.39.5-1.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:git-debuginfo-0:2.39.5-1.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:git-debuginfo-0:2.39.5-1.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:git-debugsource-0:2.39.5-1.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:git-debugsource-0:2.39.5-1.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:git-debugsource-0:2.39.5-1.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:git-debugsource-0:2.39.5-1.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:git-email-0:2.39.5-1.el9_2.2.noarch",
"AppStream-9.2.0.Z.E4S:git-gui-0:2.39.5-1.el9_2.2.noarch",
"AppStream-9.2.0.Z.E4S:git-instaweb-0:2.39.5-1.el9_2.2.noarch",
"AppStream-9.2.0.Z.E4S:git-subtree-0:2.39.5-1.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:git-subtree-0:2.39.5-1.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:git-subtree-0:2.39.5-1.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:git-subtree-0:2.39.5-1.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:git-svn-0:2.39.5-1.el9_2.2.noarch",
"AppStream-9.2.0.Z.E4S:gitk-0:2.39.5-1.el9_2.2.noarch",
"AppStream-9.2.0.Z.E4S:gitweb-0:2.39.5-1.el9_2.2.noarch",
"AppStream-9.2.0.Z.E4S:perl-Git-0:2.39.5-1.el9_2.2.noarch",
"AppStream-9.2.0.Z.E4S:perl-Git-SVN-0:2.39.5-1.el9_2.2.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 8.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:L",
"version": "3.1"
},
"products": [
"AppStream-9.2.0.Z.E4S:git-0:2.39.5-1.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:git-0:2.39.5-1.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:git-0:2.39.5-1.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:git-0:2.39.5-1.el9_2.2.src",
"AppStream-9.2.0.Z.E4S:git-0:2.39.5-1.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:git-all-0:2.39.5-1.el9_2.2.noarch",
"AppStream-9.2.0.Z.E4S:git-core-0:2.39.5-1.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:git-core-0:2.39.5-1.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:git-core-0:2.39.5-1.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:git-core-0:2.39.5-1.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:git-core-debuginfo-0:2.39.5-1.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:git-core-debuginfo-0:2.39.5-1.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:git-core-debuginfo-0:2.39.5-1.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:git-core-debuginfo-0:2.39.5-1.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:git-core-doc-0:2.39.5-1.el9_2.2.noarch",
"AppStream-9.2.0.Z.E4S:git-credential-libsecret-0:2.39.5-1.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:git-credential-libsecret-0:2.39.5-1.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:git-credential-libsecret-0:2.39.5-1.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:git-credential-libsecret-0:2.39.5-1.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:git-credential-libsecret-debuginfo-0:2.39.5-1.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:git-daemon-0:2.39.5-1.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:git-daemon-0:2.39.5-1.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:git-daemon-0:2.39.5-1.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:git-daemon-0:2.39.5-1.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:git-daemon-debuginfo-0:2.39.5-1.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:git-daemon-debuginfo-0:2.39.5-1.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:git-daemon-debuginfo-0:2.39.5-1.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:git-daemon-debuginfo-0:2.39.5-1.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:git-debuginfo-0:2.39.5-1.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:git-debuginfo-0:2.39.5-1.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:git-debuginfo-0:2.39.5-1.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:git-debuginfo-0:2.39.5-1.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:git-debugsource-0:2.39.5-1.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:git-debugsource-0:2.39.5-1.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:git-debugsource-0:2.39.5-1.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:git-debugsource-0:2.39.5-1.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:git-email-0:2.39.5-1.el9_2.2.noarch",
"AppStream-9.2.0.Z.E4S:git-gui-0:2.39.5-1.el9_2.2.noarch",
"AppStream-9.2.0.Z.E4S:git-instaweb-0:2.39.5-1.el9_2.2.noarch",
"AppStream-9.2.0.Z.E4S:git-subtree-0:2.39.5-1.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:git-subtree-0:2.39.5-1.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:git-subtree-0:2.39.5-1.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:git-subtree-0:2.39.5-1.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:git-svn-0:2.39.5-1.el9_2.2.noarch",
"AppStream-9.2.0.Z.E4S:gitk-0:2.39.5-1.el9_2.2.noarch",
"AppStream-9.2.0.Z.E4S:gitweb-0:2.39.5-1.el9_2.2.noarch",
"AppStream-9.2.0.Z.E4S:perl-Git-0:2.39.5-1.el9_2.2.noarch",
"AppStream-9.2.0.Z.E4S:perl-Git-SVN-0:2.39.5-1.el9_2.2.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "git: Git arbitrary file writes"
}
]
}
rhsa-2025:13276
Vulnerability from csaf_redhat
Published
2025-08-07 06:31
Modified
2025-11-06 23:41
Summary
Red Hat Security Advisory: updated RHEL-8 based Middleware Containers container images
Notes
Topic
Updated RHEL-8 based Middleware Containers container images are now available
Details
The RHEL-8 based Middleware Containers container images have been updated to address the following security advisory: RHSA-2025:11534 (see References)
Users of RHEL-8 based Middleware Containers container images are advised to upgrade to these updated images, which contain backported patches to correct these security issues, fix these bugs and add these enhancements. Users of these images are also encouraged to rebuild all container images that depend on these images.
You can find images updated by this advisory in Red Hat Container Catalog (see References).
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated RHEL-8 based Middleware Containers container images are now available",
"title": "Topic"
},
{
"category": "general",
"text": "The RHEL-8 based Middleware Containers container images have been updated to address the following security advisory: RHSA-2025:11534 (see References)\n\nUsers of RHEL-8 based Middleware Containers container images are advised to upgrade to these updated images, which contain backported patches to correct these security issues, fix these bugs and add these enhancements. Users of these images are also encouraged to rebuild all container images that depend on these images.\n\nYou can find images updated by this advisory in Red Hat Container Catalog (see References).",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:13276",
"url": "https://access.redhat.com/errata/RHSA-2025:13276"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "https://access.redhat.com/errata/RHSA-2025:11534",
"url": "https://access.redhat.com/errata/RHSA-2025:11534"
},
{
"category": "external",
"summary": "https://access.redhat.com/containers",
"url": "https://access.redhat.com/containers"
},
{
"category": "external",
"summary": "2279632",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2279632"
},
{
"category": "external",
"summary": "2325340",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2325340"
},
{
"category": "external",
"summary": "2337824",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2337824"
},
{
"category": "external",
"summary": "2337956",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2337956"
},
{
"category": "external",
"summary": "2364265",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2364265"
},
{
"category": "external",
"summary": "2378806",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2378806"
},
{
"category": "external",
"summary": "2378808",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2378808"
},
{
"category": "external",
"summary": "2379124",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2379124"
},
{
"category": "external",
"summary": "2379125",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2379125"
},
{
"category": "external",
"summary": "2379326",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2379326"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_13276.json"
}
],
"title": "Red Hat Security Advisory: updated RHEL-8 based Middleware Containers container images",
"tracking": {
"current_release_date": "2025-11-06T23:41:57+00:00",
"generator": {
"date": "2025-11-06T23:41:57+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.11"
}
},
"id": "RHSA-2025:13276",
"initial_release_date": "2025-08-07T06:31:06+00:00",
"revision_history": [
{
"date": "2025-08-07T06:31:06+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-08-07T06:31:06+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-06T23:41:57+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Middleware Containers for OpenShift",
"product": {
"name": "Middleware Containers for OpenShift",
"product_id": "8Base-RHOSE-Middleware",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhosemc:1.0::el8"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift Enterprise"
},
{
"branches": [
{
"category": "product_version",
"name": "rhpam-7/rhpam-businesscentral-monitoring-rhel8@sha256:26a7fe83f3a34f02c2d0fdb0c67958166d79e47d264e7538e7c041c73af8406b_amd64",
"product": {
"name": "rhpam-7/rhpam-businesscentral-monitoring-rhel8@sha256:26a7fe83f3a34f02c2d0fdb0c67958166d79e47d264e7538e7c041c73af8406b_amd64",
"product_id": "rhpam-7/rhpam-businesscentral-monitoring-rhel8@sha256:26a7fe83f3a34f02c2d0fdb0c67958166d79e47d264e7538e7c041c73af8406b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhpam-businesscentral-monitoring-rhel8@sha256:26a7fe83f3a34f02c2d0fdb0c67958166d79e47d264e7538e7c041c73af8406b?arch=amd64\u0026repository_url=registry.redhat.io/rhpam-7/rhpam-businesscentral-monitoring-rhel8\u0026tag=7.13.5-4.1753280805"
}
}
},
{
"category": "product_version",
"name": "rhpam-7/rhpam-businesscentral-rhel8@sha256:b4804f253e75441ba011a85a38673f1499b11df42e7d63a5d850e2e7f99c4f63_amd64",
"product": {
"name": "rhpam-7/rhpam-businesscentral-rhel8@sha256:b4804f253e75441ba011a85a38673f1499b11df42e7d63a5d850e2e7f99c4f63_amd64",
"product_id": "rhpam-7/rhpam-businesscentral-rhel8@sha256:b4804f253e75441ba011a85a38673f1499b11df42e7d63a5d850e2e7f99c4f63_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhpam-businesscentral-rhel8@sha256:b4804f253e75441ba011a85a38673f1499b11df42e7d63a5d850e2e7f99c4f63?arch=amd64\u0026repository_url=registry.redhat.io/rhpam-7/rhpam-businesscentral-rhel8\u0026tag=7.13.5-4.1753280812"
}
}
},
{
"category": "product_version",
"name": "rhpam-7/rhpam-controller-rhel8@sha256:b6344cd0cfa033dca638dffa1d6f05b1b44c49cec805a4bead4bb31e967152e7_amd64",
"product": {
"name": "rhpam-7/rhpam-controller-rhel8@sha256:b6344cd0cfa033dca638dffa1d6f05b1b44c49cec805a4bead4bb31e967152e7_amd64",
"product_id": "rhpam-7/rhpam-controller-rhel8@sha256:b6344cd0cfa033dca638dffa1d6f05b1b44c49cec805a4bead4bb31e967152e7_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhpam-controller-rhel8@sha256:b6344cd0cfa033dca638dffa1d6f05b1b44c49cec805a4bead4bb31e967152e7?arch=amd64\u0026repository_url=registry.redhat.io/rhpam-7/rhpam-controller-rhel8\u0026tag=7.13.5-4.1752676933"
}
}
},
{
"category": "product_version",
"name": "rhpam-7/rhpam-dashbuilder-rhel8@sha256:47dacb456c1349638195e8d1a13224f63c1675199fc819803b50b617b9442c60_amd64",
"product": {
"name": "rhpam-7/rhpam-dashbuilder-rhel8@sha256:47dacb456c1349638195e8d1a13224f63c1675199fc819803b50b617b9442c60_amd64",
"product_id": "rhpam-7/rhpam-dashbuilder-rhel8@sha256:47dacb456c1349638195e8d1a13224f63c1675199fc819803b50b617b9442c60_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhpam-dashbuilder-rhel8@sha256:47dacb456c1349638195e8d1a13224f63c1675199fc819803b50b617b9442c60?arch=amd64\u0026repository_url=registry.redhat.io/rhpam-7/rhpam-dashbuilder-rhel8\u0026tag=7.13.5-3.1752676926"
}
}
},
{
"category": "product_version",
"name": "rhpam-7/rhpam-kieserver-rhel8@sha256:1b23a90b54af8f3d61cd9b1cad05cf30f0225af6d8cf1f833e21b0630623070a_amd64",
"product": {
"name": "rhpam-7/rhpam-kieserver-rhel8@sha256:1b23a90b54af8f3d61cd9b1cad05cf30f0225af6d8cf1f833e21b0630623070a_amd64",
"product_id": "rhpam-7/rhpam-kieserver-rhel8@sha256:1b23a90b54af8f3d61cd9b1cad05cf30f0225af6d8cf1f833e21b0630623070a_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhpam-kieserver-rhel8@sha256:1b23a90b54af8f3d61cd9b1cad05cf30f0225af6d8cf1f833e21b0630623070a?arch=amd64\u0026repository_url=registry.redhat.io/rhpam-7/rhpam-kieserver-rhel8\u0026tag=7.13.5-4.1752676932"
}
}
},
{
"category": "product_version",
"name": "rhpam-7/rhpam-process-migration-rhel8@sha256:3c56a1235f0a61744b38b4b579b91b179ba07ae001ead41c64579bd9fd1b4f9c_amd64",
"product": {
"name": "rhpam-7/rhpam-process-migration-rhel8@sha256:3c56a1235f0a61744b38b4b579b91b179ba07ae001ead41c64579bd9fd1b4f9c_amd64",
"product_id": "rhpam-7/rhpam-process-migration-rhel8@sha256:3c56a1235f0a61744b38b4b579b91b179ba07ae001ead41c64579bd9fd1b4f9c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhpam-process-migration-rhel8@sha256:3c56a1235f0a61744b38b4b579b91b179ba07ae001ead41c64579bd9fd1b4f9c?arch=amd64\u0026repository_url=registry.redhat.io/rhpam-7/rhpam-process-migration-rhel8\u0026tag=7.13.5-4.1752676925"
}
}
},
{
"category": "product_version",
"name": "rhpam-7/rhpam-rhel8-operator@sha256:add1edfb633e14a4d23794b80ca0d3f96720d33e11c132580d7b58bf29f9a167_amd64",
"product": {
"name": "rhpam-7/rhpam-rhel8-operator@sha256:add1edfb633e14a4d23794b80ca0d3f96720d33e11c132580d7b58bf29f9a167_amd64",
"product_id": "rhpam-7/rhpam-rhel8-operator@sha256:add1edfb633e14a4d23794b80ca0d3f96720d33e11c132580d7b58bf29f9a167_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhpam-rhel8-operator@sha256:add1edfb633e14a4d23794b80ca0d3f96720d33e11c132580d7b58bf29f9a167?arch=amd64\u0026repository_url=registry.redhat.io/rhpam-7/rhpam-rhel8-operator\u0026tag=7.13.5-2.1752676931"
}
}
},
{
"category": "product_version",
"name": "rhpam-7/rhpam-smartrouter-rhel8@sha256:63fad8909d38e5f5e5bdb539f025bd95f1d2ec7cc6b6ee5e9b48e36036d19484_amd64",
"product": {
"name": "rhpam-7/rhpam-smartrouter-rhel8@sha256:63fad8909d38e5f5e5bdb539f025bd95f1d2ec7cc6b6ee5e9b48e36036d19484_amd64",
"product_id": "rhpam-7/rhpam-smartrouter-rhel8@sha256:63fad8909d38e5f5e5bdb539f025bd95f1d2ec7cc6b6ee5e9b48e36036d19484_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhpam-smartrouter-rhel8@sha256:63fad8909d38e5f5e5bdb539f025bd95f1d2ec7cc6b6ee5e9b48e36036d19484?arch=amd64\u0026repository_url=registry.redhat.io/rhpam-7/rhpam-smartrouter-rhel8\u0026tag=7.13.5-4.1752676930"
}
}
},
{
"category": "product_version",
"name": "rhpam-7/rhpam-operator-bundle@sha256:b005ca81fb10121bed0422266e415164d58fc48d85e1fe5b4d36a3a222c249f1_amd64",
"product": {
"name": "rhpam-7/rhpam-operator-bundle@sha256:b005ca81fb10121bed0422266e415164d58fc48d85e1fe5b4d36a3a222c249f1_amd64",
"product_id": "rhpam-7/rhpam-operator-bundle@sha256:b005ca81fb10121bed0422266e415164d58fc48d85e1fe5b4d36a3a222c249f1_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhpam-operator-bundle@sha256:b005ca81fb10121bed0422266e415164d58fc48d85e1fe5b4d36a3a222c249f1?arch=amd64\u0026repository_url=registry.redhat.io/rhpam-7/rhpam-operator-bundle\u0026tag=7.13.5-27"
}
}
}
],
"category": "architecture",
"name": "amd64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "rhpam-7/rhpam-businesscentral-monitoring-rhel8@sha256:26a7fe83f3a34f02c2d0fdb0c67958166d79e47d264e7538e7c041c73af8406b_amd64 as a component of Middleware Containers for OpenShift",
"product_id": "8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-monitoring-rhel8@sha256:26a7fe83f3a34f02c2d0fdb0c67958166d79e47d264e7538e7c041c73af8406b_amd64"
},
"product_reference": "rhpam-7/rhpam-businesscentral-monitoring-rhel8@sha256:26a7fe83f3a34f02c2d0fdb0c67958166d79e47d264e7538e7c041c73af8406b_amd64",
"relates_to_product_reference": "8Base-RHOSE-Middleware"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhpam-7/rhpam-businesscentral-rhel8@sha256:b4804f253e75441ba011a85a38673f1499b11df42e7d63a5d850e2e7f99c4f63_amd64 as a component of Middleware Containers for OpenShift",
"product_id": "8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-rhel8@sha256:b4804f253e75441ba011a85a38673f1499b11df42e7d63a5d850e2e7f99c4f63_amd64"
},
"product_reference": "rhpam-7/rhpam-businesscentral-rhel8@sha256:b4804f253e75441ba011a85a38673f1499b11df42e7d63a5d850e2e7f99c4f63_amd64",
"relates_to_product_reference": "8Base-RHOSE-Middleware"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhpam-7/rhpam-controller-rhel8@sha256:b6344cd0cfa033dca638dffa1d6f05b1b44c49cec805a4bead4bb31e967152e7_amd64 as a component of Middleware Containers for OpenShift",
"product_id": "8Base-RHOSE-Middleware:rhpam-7/rhpam-controller-rhel8@sha256:b6344cd0cfa033dca638dffa1d6f05b1b44c49cec805a4bead4bb31e967152e7_amd64"
},
"product_reference": "rhpam-7/rhpam-controller-rhel8@sha256:b6344cd0cfa033dca638dffa1d6f05b1b44c49cec805a4bead4bb31e967152e7_amd64",
"relates_to_product_reference": "8Base-RHOSE-Middleware"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhpam-7/rhpam-dashbuilder-rhel8@sha256:47dacb456c1349638195e8d1a13224f63c1675199fc819803b50b617b9442c60_amd64 as a component of Middleware Containers for OpenShift",
"product_id": "8Base-RHOSE-Middleware:rhpam-7/rhpam-dashbuilder-rhel8@sha256:47dacb456c1349638195e8d1a13224f63c1675199fc819803b50b617b9442c60_amd64"
},
"product_reference": "rhpam-7/rhpam-dashbuilder-rhel8@sha256:47dacb456c1349638195e8d1a13224f63c1675199fc819803b50b617b9442c60_amd64",
"relates_to_product_reference": "8Base-RHOSE-Middleware"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhpam-7/rhpam-kieserver-rhel8@sha256:1b23a90b54af8f3d61cd9b1cad05cf30f0225af6d8cf1f833e21b0630623070a_amd64 as a component of Middleware Containers for OpenShift",
"product_id": "8Base-RHOSE-Middleware:rhpam-7/rhpam-kieserver-rhel8@sha256:1b23a90b54af8f3d61cd9b1cad05cf30f0225af6d8cf1f833e21b0630623070a_amd64"
},
"product_reference": "rhpam-7/rhpam-kieserver-rhel8@sha256:1b23a90b54af8f3d61cd9b1cad05cf30f0225af6d8cf1f833e21b0630623070a_amd64",
"relates_to_product_reference": "8Base-RHOSE-Middleware"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhpam-7/rhpam-operator-bundle@sha256:b005ca81fb10121bed0422266e415164d58fc48d85e1fe5b4d36a3a222c249f1_amd64 as a component of Middleware Containers for OpenShift",
"product_id": "8Base-RHOSE-Middleware:rhpam-7/rhpam-operator-bundle@sha256:b005ca81fb10121bed0422266e415164d58fc48d85e1fe5b4d36a3a222c249f1_amd64"
},
"product_reference": "rhpam-7/rhpam-operator-bundle@sha256:b005ca81fb10121bed0422266e415164d58fc48d85e1fe5b4d36a3a222c249f1_amd64",
"relates_to_product_reference": "8Base-RHOSE-Middleware"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhpam-7/rhpam-process-migration-rhel8@sha256:3c56a1235f0a61744b38b4b579b91b179ba07ae001ead41c64579bd9fd1b4f9c_amd64 as a component of Middleware Containers for OpenShift",
"product_id": "8Base-RHOSE-Middleware:rhpam-7/rhpam-process-migration-rhel8@sha256:3c56a1235f0a61744b38b4b579b91b179ba07ae001ead41c64579bd9fd1b4f9c_amd64"
},
"product_reference": "rhpam-7/rhpam-process-migration-rhel8@sha256:3c56a1235f0a61744b38b4b579b91b179ba07ae001ead41c64579bd9fd1b4f9c_amd64",
"relates_to_product_reference": "8Base-RHOSE-Middleware"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhpam-7/rhpam-rhel8-operator@sha256:add1edfb633e14a4d23794b80ca0d3f96720d33e11c132580d7b58bf29f9a167_amd64 as a component of Middleware Containers for OpenShift",
"product_id": "8Base-RHOSE-Middleware:rhpam-7/rhpam-rhel8-operator@sha256:add1edfb633e14a4d23794b80ca0d3f96720d33e11c132580d7b58bf29f9a167_amd64"
},
"product_reference": "rhpam-7/rhpam-rhel8-operator@sha256:add1edfb633e14a4d23794b80ca0d3f96720d33e11c132580d7b58bf29f9a167_amd64",
"relates_to_product_reference": "8Base-RHOSE-Middleware"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhpam-7/rhpam-smartrouter-rhel8@sha256:63fad8909d38e5f5e5bdb539f025bd95f1d2ec7cc6b6ee5e9b48e36036d19484_amd64 as a component of Middleware Containers for OpenShift",
"product_id": "8Base-RHOSE-Middleware:rhpam-7/rhpam-smartrouter-rhel8@sha256:63fad8909d38e5f5e5bdb539f025bd95f1d2ec7cc6b6ee5e9b48e36036d19484_amd64"
},
"product_reference": "rhpam-7/rhpam-smartrouter-rhel8@sha256:63fad8909d38e5f5e5bdb539f025bd95f1d2ec7cc6b6ee5e9b48e36036d19484_amd64",
"relates_to_product_reference": "8Base-RHOSE-Middleware"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-48384",
"cwe": {
"id": "CWE-59",
"name": "Improper Link Resolution Before File Access (\u0027Link Following\u0027)"
},
"discovery_date": "2025-07-08T19:00:48.297925+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2378806"
}
],
"notes": [
{
"category": "description",
"text": "A line-end handling flaw was found in Git. When writing a config entry, values with a trailing carriage return (CR) are not quoted, resulting in the CR being lost when the config is read later. When initializing a submodule, if the submodule path contains a trailing CR, the altered path is read, resulting in the submodule being checked out to an incorrect location.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "git: Git arbitrary code execution",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability marked as Important and not Moderate flaw because it undermines Git\u2019s path and config integrity by allowing carriage return (\\r) injection to manipulate submodule checkout behavior. Git previously failed to quote config values containing trailing CR, causing the value to be misinterpreted when read back. In the context of submodules, this leads to incorrect path resolution, allowing an attacker to redirect the checkout path via a symlink to a sensitive directory like .git/modules/\u003csubmodule\u003e/hooks. If an executable post-checkout hook exists there, it could be inadvertently executed, resulting in arbitrary code execution during submodule operations. This is particularly dangerous in automated CI/CD pipelines or multi-repo projects where submodules are initialized or updated without manual inspection.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-monitoring-rhel8@sha256:26a7fe83f3a34f02c2d0fdb0c67958166d79e47d264e7538e7c041c73af8406b_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-rhel8@sha256:b4804f253e75441ba011a85a38673f1499b11df42e7d63a5d850e2e7f99c4f63_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-controller-rhel8@sha256:b6344cd0cfa033dca638dffa1d6f05b1b44c49cec805a4bead4bb31e967152e7_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-dashbuilder-rhel8@sha256:47dacb456c1349638195e8d1a13224f63c1675199fc819803b50b617b9442c60_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-kieserver-rhel8@sha256:1b23a90b54af8f3d61cd9b1cad05cf30f0225af6d8cf1f833e21b0630623070a_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-operator-bundle@sha256:b005ca81fb10121bed0422266e415164d58fc48d85e1fe5b4d36a3a222c249f1_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-process-migration-rhel8@sha256:3c56a1235f0a61744b38b4b579b91b179ba07ae001ead41c64579bd9fd1b4f9c_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-rhel8-operator@sha256:add1edfb633e14a4d23794b80ca0d3f96720d33e11c132580d7b58bf29f9a167_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-smartrouter-rhel8@sha256:63fad8909d38e5f5e5bdb539f025bd95f1d2ec7cc6b6ee5e9b48e36036d19484_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-48384"
},
{
"category": "external",
"summary": "RHBZ#2378806",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2378806"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-48384",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-48384"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-48384",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-48384"
},
{
"category": "external",
"summary": "https://dgl.cx/2025/07/git-clone-submodule-cve-2025-48384",
"url": "https://dgl.cx/2025/07/git-clone-submodule-cve-2025-48384"
},
{
"category": "external",
"summary": "https://github.com/git/git/commit/05e9cd64ee23bbadcea6bcffd6660ed02b8eab89",
"url": "https://github.com/git/git/commit/05e9cd64ee23bbadcea6bcffd6660ed02b8eab89"
},
{
"category": "external",
"summary": "https://github.com/git/git/security/advisories/GHSA-vwqx-4fm8-6qc9",
"url": "https://github.com/git/git/security/advisories/GHSA-vwqx-4fm8-6qc9"
},
{
"category": "external",
"summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog",
"url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
}
],
"release_date": "2025-07-08T18:23:48.710000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-08-07T06:31:06+00:00",
"details": "The RHEL-8 based Middleware Containers container images provided by this update can be downloaded from the Red Hat Container Registry at registry.access.redhat.com. Installation instructions for your platform are available at Red Hat Container Catalog (see References).\n\nDockerfiles and scripts should be amended either to refer to this new image specifically, or to the latest image generally.",
"product_ids": [
"8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-monitoring-rhel8@sha256:26a7fe83f3a34f02c2d0fdb0c67958166d79e47d264e7538e7c041c73af8406b_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-rhel8@sha256:b4804f253e75441ba011a85a38673f1499b11df42e7d63a5d850e2e7f99c4f63_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-controller-rhel8@sha256:b6344cd0cfa033dca638dffa1d6f05b1b44c49cec805a4bead4bb31e967152e7_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-dashbuilder-rhel8@sha256:47dacb456c1349638195e8d1a13224f63c1675199fc819803b50b617b9442c60_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-kieserver-rhel8@sha256:1b23a90b54af8f3d61cd9b1cad05cf30f0225af6d8cf1f833e21b0630623070a_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-operator-bundle@sha256:b005ca81fb10121bed0422266e415164d58fc48d85e1fe5b4d36a3a222c249f1_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-process-migration-rhel8@sha256:3c56a1235f0a61744b38b4b579b91b179ba07ae001ead41c64579bd9fd1b4f9c_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-rhel8-operator@sha256:add1edfb633e14a4d23794b80ca0d3f96720d33e11c132580d7b58bf29f9a167_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-smartrouter-rhel8@sha256:63fad8909d38e5f5e5bdb539f025bd95f1d2ec7cc6b6ee5e9b48e36036d19484_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:13276"
},
{
"category": "workaround",
"details": "To mitigate this issue, avoid using --recurse-submodules when cloning repositories from untrusted sources; instead, clone normally and only initialize or update submodules manually after reviewing them.",
"product_ids": [
"8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-monitoring-rhel8@sha256:26a7fe83f3a34f02c2d0fdb0c67958166d79e47d264e7538e7c041c73af8406b_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-rhel8@sha256:b4804f253e75441ba011a85a38673f1499b11df42e7d63a5d850e2e7f99c4f63_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-controller-rhel8@sha256:b6344cd0cfa033dca638dffa1d6f05b1b44c49cec805a4bead4bb31e967152e7_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-dashbuilder-rhel8@sha256:47dacb456c1349638195e8d1a13224f63c1675199fc819803b50b617b9442c60_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-kieserver-rhel8@sha256:1b23a90b54af8f3d61cd9b1cad05cf30f0225af6d8cf1f833e21b0630623070a_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-operator-bundle@sha256:b005ca81fb10121bed0422266e415164d58fc48d85e1fe5b4d36a3a222c249f1_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-process-migration-rhel8@sha256:3c56a1235f0a61744b38b4b579b91b179ba07ae001ead41c64579bd9fd1b4f9c_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-rhel8-operator@sha256:add1edfb633e14a4d23794b80ca0d3f96720d33e11c132580d7b58bf29f9a167_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-smartrouter-rhel8@sha256:63fad8909d38e5f5e5bdb539f025bd95f1d2ec7cc6b6ee5e9b48e36036d19484_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.0,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-monitoring-rhel8@sha256:26a7fe83f3a34f02c2d0fdb0c67958166d79e47d264e7538e7c041c73af8406b_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-rhel8@sha256:b4804f253e75441ba011a85a38673f1499b11df42e7d63a5d850e2e7f99c4f63_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-controller-rhel8@sha256:b6344cd0cfa033dca638dffa1d6f05b1b44c49cec805a4bead4bb31e967152e7_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-dashbuilder-rhel8@sha256:47dacb456c1349638195e8d1a13224f63c1675199fc819803b50b617b9442c60_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-kieserver-rhel8@sha256:1b23a90b54af8f3d61cd9b1cad05cf30f0225af6d8cf1f833e21b0630623070a_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-operator-bundle@sha256:b005ca81fb10121bed0422266e415164d58fc48d85e1fe5b4d36a3a222c249f1_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-process-migration-rhel8@sha256:3c56a1235f0a61744b38b4b579b91b179ba07ae001ead41c64579bd9fd1b4f9c_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-rhel8-operator@sha256:add1edfb633e14a4d23794b80ca0d3f96720d33e11c132580d7b58bf29f9a167_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-smartrouter-rhel8@sha256:63fad8909d38e5f5e5bdb539f025bd95f1d2ec7cc6b6ee5e9b48e36036d19484_amd64"
]
}
],
"threats": [
{
"category": "exploit_status",
"date": "2025-08-25T00:00:00+00:00",
"details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
},
{
"category": "impact",
"details": "Important"
}
],
"title": "git: Git arbitrary code execution"
},
{
"cve": "CVE-2025-48385",
"cwe": {
"id": "CWE-88",
"name": "Improper Neutralization of Argument Delimiters in a Command (\u0027Argument Injection\u0027)"
},
"discovery_date": "2025-07-08T19:00:55.106787+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2378808"
}
],
"notes": [
{
"category": "description",
"text": "A bundled uri handling flaw was found in Git. When cloning a repository, Git knows to optionally fetch a bundle advertised by the remote server, which allows the server side to offload parts of the clone to a CDN. The Git client does not perform sufficient validation of the advertised bundles, which allows the remote side to perform protocol injection.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "git: Git arbitrary file writes",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability marked as Important rather than a Moderate flaw because it enables protocol injection at the transport layer of Git\u0027s bundle-uri mechanism, allowing a remote server to manipulate how and where data is written on the client system during a clone operation. The lack of input sanitization on user-controlled values like the URI and target path means that malformed inputs containing spaces or newlines can break protocol framing, leading to arbitrary file writes. In scenarios such as CI pipelines, developer environments, or recursive clones with submodules, an attacker can exploit this to overwrite critical files or inject malicious content, potentially achieving remote code execution (RCE).",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-monitoring-rhel8@sha256:26a7fe83f3a34f02c2d0fdb0c67958166d79e47d264e7538e7c041c73af8406b_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-rhel8@sha256:b4804f253e75441ba011a85a38673f1499b11df42e7d63a5d850e2e7f99c4f63_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-controller-rhel8@sha256:b6344cd0cfa033dca638dffa1d6f05b1b44c49cec805a4bead4bb31e967152e7_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-dashbuilder-rhel8@sha256:47dacb456c1349638195e8d1a13224f63c1675199fc819803b50b617b9442c60_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-kieserver-rhel8@sha256:1b23a90b54af8f3d61cd9b1cad05cf30f0225af6d8cf1f833e21b0630623070a_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-operator-bundle@sha256:b005ca81fb10121bed0422266e415164d58fc48d85e1fe5b4d36a3a222c249f1_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-process-migration-rhel8@sha256:3c56a1235f0a61744b38b4b579b91b179ba07ae001ead41c64579bd9fd1b4f9c_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-rhel8-operator@sha256:add1edfb633e14a4d23794b80ca0d3f96720d33e11c132580d7b58bf29f9a167_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-smartrouter-rhel8@sha256:63fad8909d38e5f5e5bdb539f025bd95f1d2ec7cc6b6ee5e9b48e36036d19484_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-48385"
},
{
"category": "external",
"summary": "RHBZ#2378808",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2378808"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-48385",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-48385"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-48385",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-48385"
},
{
"category": "external",
"summary": "https://github.com/git/git/security/advisories/GHSA-m98c-vgpc-9655",
"url": "https://github.com/git/git/security/advisories/GHSA-m98c-vgpc-9655"
}
],
"release_date": "2025-07-08T18:23:44.405000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-08-07T06:31:06+00:00",
"details": "The RHEL-8 based Middleware Containers container images provided by this update can be downloaded from the Red Hat Container Registry at registry.access.redhat.com. Installation instructions for your platform are available at Red Hat Container Catalog (see References).\n\nDockerfiles and scripts should be amended either to refer to this new image specifically, or to the latest image generally.",
"product_ids": [
"8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-monitoring-rhel8@sha256:26a7fe83f3a34f02c2d0fdb0c67958166d79e47d264e7538e7c041c73af8406b_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-rhel8@sha256:b4804f253e75441ba011a85a38673f1499b11df42e7d63a5d850e2e7f99c4f63_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-controller-rhel8@sha256:b6344cd0cfa033dca638dffa1d6f05b1b44c49cec805a4bead4bb31e967152e7_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-dashbuilder-rhel8@sha256:47dacb456c1349638195e8d1a13224f63c1675199fc819803b50b617b9442c60_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-kieserver-rhel8@sha256:1b23a90b54af8f3d61cd9b1cad05cf30f0225af6d8cf1f833e21b0630623070a_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-operator-bundle@sha256:b005ca81fb10121bed0422266e415164d58fc48d85e1fe5b4d36a3a222c249f1_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-process-migration-rhel8@sha256:3c56a1235f0a61744b38b4b579b91b179ba07ae001ead41c64579bd9fd1b4f9c_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-rhel8-operator@sha256:add1edfb633e14a4d23794b80ca0d3f96720d33e11c132580d7b58bf29f9a167_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-smartrouter-rhel8@sha256:63fad8909d38e5f5e5bdb539f025bd95f1d2ec7cc6b6ee5e9b48e36036d19484_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:13276"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-monitoring-rhel8@sha256:26a7fe83f3a34f02c2d0fdb0c67958166d79e47d264e7538e7c041c73af8406b_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-rhel8@sha256:b4804f253e75441ba011a85a38673f1499b11df42e7d63a5d850e2e7f99c4f63_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-controller-rhel8@sha256:b6344cd0cfa033dca638dffa1d6f05b1b44c49cec805a4bead4bb31e967152e7_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-dashbuilder-rhel8@sha256:47dacb456c1349638195e8d1a13224f63c1675199fc819803b50b617b9442c60_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-kieserver-rhel8@sha256:1b23a90b54af8f3d61cd9b1cad05cf30f0225af6d8cf1f833e21b0630623070a_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-operator-bundle@sha256:b005ca81fb10121bed0422266e415164d58fc48d85e1fe5b4d36a3a222c249f1_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-process-migration-rhel8@sha256:3c56a1235f0a61744b38b4b579b91b179ba07ae001ead41c64579bd9fd1b4f9c_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-rhel8-operator@sha256:add1edfb633e14a4d23794b80ca0d3f96720d33e11c132580d7b58bf29f9a167_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-smartrouter-rhel8@sha256:63fad8909d38e5f5e5bdb539f025bd95f1d2ec7cc6b6ee5e9b48e36036d19484_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 8.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:L",
"version": "3.1"
},
"products": [
"8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-monitoring-rhel8@sha256:26a7fe83f3a34f02c2d0fdb0c67958166d79e47d264e7538e7c041c73af8406b_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-businesscentral-rhel8@sha256:b4804f253e75441ba011a85a38673f1499b11df42e7d63a5d850e2e7f99c4f63_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-controller-rhel8@sha256:b6344cd0cfa033dca638dffa1d6f05b1b44c49cec805a4bead4bb31e967152e7_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-dashbuilder-rhel8@sha256:47dacb456c1349638195e8d1a13224f63c1675199fc819803b50b617b9442c60_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-kieserver-rhel8@sha256:1b23a90b54af8f3d61cd9b1cad05cf30f0225af6d8cf1f833e21b0630623070a_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-operator-bundle@sha256:b005ca81fb10121bed0422266e415164d58fc48d85e1fe5b4d36a3a222c249f1_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-process-migration-rhel8@sha256:3c56a1235f0a61744b38b4b579b91b179ba07ae001ead41c64579bd9fd1b4f9c_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-rhel8-operator@sha256:add1edfb633e14a4d23794b80ca0d3f96720d33e11c132580d7b58bf29f9a167_amd64",
"8Base-RHOSE-Middleware:rhpam-7/rhpam-smartrouter-rhel8@sha256:63fad8909d38e5f5e5bdb539f025bd95f1d2ec7cc6b6ee5e9b48e36036d19484_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "git: Git arbitrary file writes"
}
]
}
rhsa-2025:11533
Vulnerability from csaf_redhat
Published
2025-07-22 12:03
Modified
2025-11-06 22:35
Summary
Red Hat Security Advisory: git security update
Notes
Topic
An update for git is now available for Red Hat Enterprise Linux 10.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Git is a distributed revision control system with a decentralized architecture. As opposed to centralized version control systems with a client-server model, Git ensures that each working copy of a Git repository is an exact copy with complete revision history. This not only allows the user to work on and contribute to projects without the need to have permission to push the changes to their official repositories, but also makes it possible for the user to work with no network connection.
Security Fix(es):
* git: Git does not sanitize URLs when asking for credentials interactively (CVE-2024-50349)
* git: Newline confusion in credential helpers can lead to credential exfiltration in git (CVE-2024-52006)
* git: Git arbitrary code execution (CVE-2025-48384)
* git: Git arbitrary file writes (CVE-2025-48385)
* gitk: Git file creation flaw (CVE-2025-27613)
* gitk: git script execution flaw (CVE-2025-27614)
* git: Git GUI can create and overwrite files for which the user has write permission (CVE-2025-46835)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for git is now available for Red Hat Enterprise Linux 10.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Git is a distributed revision control system with a decentralized architecture. As opposed to centralized version control systems with a client-server model, Git ensures that each working copy of a Git repository is an exact copy with complete revision history. This not only allows the user to work on and contribute to projects without the need to have permission to push the changes to their official repositories, but also makes it possible for the user to work with no network connection.\n\nSecurity Fix(es):\n\n* git: Git does not sanitize URLs when asking for credentials interactively (CVE-2024-50349)\n\n* git: Newline confusion in credential helpers can lead to credential exfiltration in git (CVE-2024-52006)\n\n* git: Git arbitrary code execution (CVE-2025-48384)\n\n* git: Git arbitrary file writes (CVE-2025-48385)\n\n* gitk: Git file creation flaw (CVE-2025-27613)\n\n* gitk: git script execution flaw (CVE-2025-27614)\n\n* git: Git GUI can create and overwrite files for which the user has write permission (CVE-2025-46835)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:11533",
"url": "https://access.redhat.com/errata/RHSA-2025:11533"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2337824",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2337824"
},
{
"category": "external",
"summary": "2337956",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2337956"
},
{
"category": "external",
"summary": "2378806",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2378806"
},
{
"category": "external",
"summary": "2378808",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2378808"
},
{
"category": "external",
"summary": "2379124",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2379124"
},
{
"category": "external",
"summary": "2379125",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2379125"
},
{
"category": "external",
"summary": "2379326",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2379326"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_11533.json"
}
],
"title": "Red Hat Security Advisory: git security update",
"tracking": {
"current_release_date": "2025-11-06T22:35:16+00:00",
"generator": {
"date": "2025-11-06T22:35:16+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.11"
}
},
"id": "RHSA-2025:11533",
"initial_release_date": "2025-07-22T12:03:30+00:00",
"revision_history": [
{
"date": "2025-07-22T12:03:30+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-07-22T12:03:30+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-06T22:35:16+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream (v. 10)",
"product": {
"name": "Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:10.0"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "git-0:2.47.3-1.el10_0.src",
"product": {
"name": "git-0:2.47.3-1.el10_0.src",
"product_id": "git-0:2.47.3-1.el10_0.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git@2.47.3-1.el10_0?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "git-0:2.47.3-1.el10_0.aarch64",
"product": {
"name": "git-0:2.47.3-1.el10_0.aarch64",
"product_id": "git-0:2.47.3-1.el10_0.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git@2.47.3-1.el10_0?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-core-0:2.47.3-1.el10_0.aarch64",
"product": {
"name": "git-core-0:2.47.3-1.el10_0.aarch64",
"product_id": "git-core-0:2.47.3-1.el10_0.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core@2.47.3-1.el10_0?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-0:2.47.3-1.el10_0.aarch64",
"product": {
"name": "git-credential-libsecret-0:2.47.3-1.el10_0.aarch64",
"product_id": "git-credential-libsecret-0:2.47.3-1.el10_0.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret@2.47.3-1.el10_0?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-daemon-0:2.47.3-1.el10_0.aarch64",
"product": {
"name": "git-daemon-0:2.47.3-1.el10_0.aarch64",
"product_id": "git-daemon-0:2.47.3-1.el10_0.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon@2.47.3-1.el10_0?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-debugsource-0:2.47.3-1.el10_0.aarch64",
"product": {
"name": "git-debugsource-0:2.47.3-1.el10_0.aarch64",
"product_id": "git-debugsource-0:2.47.3-1.el10_0.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debugsource@2.47.3-1.el10_0?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-core-debuginfo-0:2.47.3-1.el10_0.aarch64",
"product": {
"name": "git-core-debuginfo-0:2.47.3-1.el10_0.aarch64",
"product_id": "git-core-debuginfo-0:2.47.3-1.el10_0.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core-debuginfo@2.47.3-1.el10_0?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.aarch64",
"product": {
"name": "git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.aarch64",
"product_id": "git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret-debuginfo@2.47.3-1.el10_0?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-daemon-debuginfo-0:2.47.3-1.el10_0.aarch64",
"product": {
"name": "git-daemon-debuginfo-0:2.47.3-1.el10_0.aarch64",
"product_id": "git-daemon-debuginfo-0:2.47.3-1.el10_0.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon-debuginfo@2.47.3-1.el10_0?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-debuginfo-0:2.47.3-1.el10_0.aarch64",
"product": {
"name": "git-debuginfo-0:2.47.3-1.el10_0.aarch64",
"product_id": "git-debuginfo-0:2.47.3-1.el10_0.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debuginfo@2.47.3-1.el10_0?arch=aarch64"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "git-0:2.47.3-1.el10_0.ppc64le",
"product": {
"name": "git-0:2.47.3-1.el10_0.ppc64le",
"product_id": "git-0:2.47.3-1.el10_0.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git@2.47.3-1.el10_0?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-core-0:2.47.3-1.el10_0.ppc64le",
"product": {
"name": "git-core-0:2.47.3-1.el10_0.ppc64le",
"product_id": "git-core-0:2.47.3-1.el10_0.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core@2.47.3-1.el10_0?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-0:2.47.3-1.el10_0.ppc64le",
"product": {
"name": "git-credential-libsecret-0:2.47.3-1.el10_0.ppc64le",
"product_id": "git-credential-libsecret-0:2.47.3-1.el10_0.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret@2.47.3-1.el10_0?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-daemon-0:2.47.3-1.el10_0.ppc64le",
"product": {
"name": "git-daemon-0:2.47.3-1.el10_0.ppc64le",
"product_id": "git-daemon-0:2.47.3-1.el10_0.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon@2.47.3-1.el10_0?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-debugsource-0:2.47.3-1.el10_0.ppc64le",
"product": {
"name": "git-debugsource-0:2.47.3-1.el10_0.ppc64le",
"product_id": "git-debugsource-0:2.47.3-1.el10_0.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debugsource@2.47.3-1.el10_0?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-core-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"product": {
"name": "git-core-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"product_id": "git-core-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core-debuginfo@2.47.3-1.el10_0?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"product": {
"name": "git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"product_id": "git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret-debuginfo@2.47.3-1.el10_0?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-daemon-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"product": {
"name": "git-daemon-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"product_id": "git-daemon-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon-debuginfo@2.47.3-1.el10_0?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"product": {
"name": "git-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"product_id": "git-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debuginfo@2.47.3-1.el10_0?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "git-0:2.47.3-1.el10_0.x86_64",
"product": {
"name": "git-0:2.47.3-1.el10_0.x86_64",
"product_id": "git-0:2.47.3-1.el10_0.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git@2.47.3-1.el10_0?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-core-0:2.47.3-1.el10_0.x86_64",
"product": {
"name": "git-core-0:2.47.3-1.el10_0.x86_64",
"product_id": "git-core-0:2.47.3-1.el10_0.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core@2.47.3-1.el10_0?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-0:2.47.3-1.el10_0.x86_64",
"product": {
"name": "git-credential-libsecret-0:2.47.3-1.el10_0.x86_64",
"product_id": "git-credential-libsecret-0:2.47.3-1.el10_0.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret@2.47.3-1.el10_0?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-daemon-0:2.47.3-1.el10_0.x86_64",
"product": {
"name": "git-daemon-0:2.47.3-1.el10_0.x86_64",
"product_id": "git-daemon-0:2.47.3-1.el10_0.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon@2.47.3-1.el10_0?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-debugsource-0:2.47.3-1.el10_0.x86_64",
"product": {
"name": "git-debugsource-0:2.47.3-1.el10_0.x86_64",
"product_id": "git-debugsource-0:2.47.3-1.el10_0.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debugsource@2.47.3-1.el10_0?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-core-debuginfo-0:2.47.3-1.el10_0.x86_64",
"product": {
"name": "git-core-debuginfo-0:2.47.3-1.el10_0.x86_64",
"product_id": "git-core-debuginfo-0:2.47.3-1.el10_0.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core-debuginfo@2.47.3-1.el10_0?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.x86_64",
"product": {
"name": "git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.x86_64",
"product_id": "git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret-debuginfo@2.47.3-1.el10_0?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-daemon-debuginfo-0:2.47.3-1.el10_0.x86_64",
"product": {
"name": "git-daemon-debuginfo-0:2.47.3-1.el10_0.x86_64",
"product_id": "git-daemon-debuginfo-0:2.47.3-1.el10_0.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon-debuginfo@2.47.3-1.el10_0?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-debuginfo-0:2.47.3-1.el10_0.x86_64",
"product": {
"name": "git-debuginfo-0:2.47.3-1.el10_0.x86_64",
"product_id": "git-debuginfo-0:2.47.3-1.el10_0.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debuginfo@2.47.3-1.el10_0?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "git-0:2.47.3-1.el10_0.s390x",
"product": {
"name": "git-0:2.47.3-1.el10_0.s390x",
"product_id": "git-0:2.47.3-1.el10_0.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git@2.47.3-1.el10_0?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-core-0:2.47.3-1.el10_0.s390x",
"product": {
"name": "git-core-0:2.47.3-1.el10_0.s390x",
"product_id": "git-core-0:2.47.3-1.el10_0.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core@2.47.3-1.el10_0?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-0:2.47.3-1.el10_0.s390x",
"product": {
"name": "git-credential-libsecret-0:2.47.3-1.el10_0.s390x",
"product_id": "git-credential-libsecret-0:2.47.3-1.el10_0.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret@2.47.3-1.el10_0?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-daemon-0:2.47.3-1.el10_0.s390x",
"product": {
"name": "git-daemon-0:2.47.3-1.el10_0.s390x",
"product_id": "git-daemon-0:2.47.3-1.el10_0.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon@2.47.3-1.el10_0?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-debugsource-0:2.47.3-1.el10_0.s390x",
"product": {
"name": "git-debugsource-0:2.47.3-1.el10_0.s390x",
"product_id": "git-debugsource-0:2.47.3-1.el10_0.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debugsource@2.47.3-1.el10_0?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-core-debuginfo-0:2.47.3-1.el10_0.s390x",
"product": {
"name": "git-core-debuginfo-0:2.47.3-1.el10_0.s390x",
"product_id": "git-core-debuginfo-0:2.47.3-1.el10_0.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core-debuginfo@2.47.3-1.el10_0?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.s390x",
"product": {
"name": "git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.s390x",
"product_id": "git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret-debuginfo@2.47.3-1.el10_0?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-daemon-debuginfo-0:2.47.3-1.el10_0.s390x",
"product": {
"name": "git-daemon-debuginfo-0:2.47.3-1.el10_0.s390x",
"product_id": "git-daemon-debuginfo-0:2.47.3-1.el10_0.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon-debuginfo@2.47.3-1.el10_0?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-debuginfo-0:2.47.3-1.el10_0.s390x",
"product": {
"name": "git-debuginfo-0:2.47.3-1.el10_0.s390x",
"product_id": "git-debuginfo-0:2.47.3-1.el10_0.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debuginfo@2.47.3-1.el10_0?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "git-all-0:2.47.3-1.el10_0.noarch",
"product": {
"name": "git-all-0:2.47.3-1.el10_0.noarch",
"product_id": "git-all-0:2.47.3-1.el10_0.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-all@2.47.3-1.el10_0?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "git-core-doc-0:2.47.3-1.el10_0.noarch",
"product": {
"name": "git-core-doc-0:2.47.3-1.el10_0.noarch",
"product_id": "git-core-doc-0:2.47.3-1.el10_0.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core-doc@2.47.3-1.el10_0?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "git-email-0:2.47.3-1.el10_0.noarch",
"product": {
"name": "git-email-0:2.47.3-1.el10_0.noarch",
"product_id": "git-email-0:2.47.3-1.el10_0.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-email@2.47.3-1.el10_0?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "git-gui-0:2.47.3-1.el10_0.noarch",
"product": {
"name": "git-gui-0:2.47.3-1.el10_0.noarch",
"product_id": "git-gui-0:2.47.3-1.el10_0.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-gui@2.47.3-1.el10_0?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "git-instaweb-0:2.47.3-1.el10_0.noarch",
"product": {
"name": "git-instaweb-0:2.47.3-1.el10_0.noarch",
"product_id": "git-instaweb-0:2.47.3-1.el10_0.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-instaweb@2.47.3-1.el10_0?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "git-subtree-0:2.47.3-1.el10_0.noarch",
"product": {
"name": "git-subtree-0:2.47.3-1.el10_0.noarch",
"product_id": "git-subtree-0:2.47.3-1.el10_0.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-subtree@2.47.3-1.el10_0?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "git-svn-0:2.47.3-1.el10_0.noarch",
"product": {
"name": "git-svn-0:2.47.3-1.el10_0.noarch",
"product_id": "git-svn-0:2.47.3-1.el10_0.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-svn@2.47.3-1.el10_0?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "gitk-0:2.47.3-1.el10_0.noarch",
"product": {
"name": "gitk-0:2.47.3-1.el10_0.noarch",
"product_id": "gitk-0:2.47.3-1.el10_0.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/gitk@2.47.3-1.el10_0?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "gitweb-0:2.47.3-1.el10_0.noarch",
"product": {
"name": "gitweb-0:2.47.3-1.el10_0.noarch",
"product_id": "gitweb-0:2.47.3-1.el10_0.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/gitweb@2.47.3-1.el10_0?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "perl-Git-0:2.47.3-1.el10_0.noarch",
"product": {
"name": "perl-Git-0:2.47.3-1.el10_0.noarch",
"product_id": "perl-Git-0:2.47.3-1.el10_0.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/perl-Git@2.47.3-1.el10_0?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "perl-Git-SVN-0:2.47.3-1.el10_0.noarch",
"product": {
"name": "perl-Git-SVN-0:2.47.3-1.el10_0.noarch",
"product_id": "perl-Git-SVN-0:2.47.3-1.el10_0.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/perl-Git-SVN@2.47.3-1.el10_0?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "git-0:2.47.3-1.el10_0.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:git-0:2.47.3-1.el10_0.aarch64"
},
"product_reference": "git-0:2.47.3-1.el10_0.aarch64",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-0:2.47.3-1.el10_0.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:git-0:2.47.3-1.el10_0.ppc64le"
},
"product_reference": "git-0:2.47.3-1.el10_0.ppc64le",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-0:2.47.3-1.el10_0.s390x as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:git-0:2.47.3-1.el10_0.s390x"
},
"product_reference": "git-0:2.47.3-1.el10_0.s390x",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-0:2.47.3-1.el10_0.src as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:git-0:2.47.3-1.el10_0.src"
},
"product_reference": "git-0:2.47.3-1.el10_0.src",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-0:2.47.3-1.el10_0.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:git-0:2.47.3-1.el10_0.x86_64"
},
"product_reference": "git-0:2.47.3-1.el10_0.x86_64",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-all-0:2.47.3-1.el10_0.noarch as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:git-all-0:2.47.3-1.el10_0.noarch"
},
"product_reference": "git-all-0:2.47.3-1.el10_0.noarch",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-0:2.47.3-1.el10_0.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:git-core-0:2.47.3-1.el10_0.aarch64"
},
"product_reference": "git-core-0:2.47.3-1.el10_0.aarch64",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-0:2.47.3-1.el10_0.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:git-core-0:2.47.3-1.el10_0.ppc64le"
},
"product_reference": "git-core-0:2.47.3-1.el10_0.ppc64le",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-0:2.47.3-1.el10_0.s390x as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:git-core-0:2.47.3-1.el10_0.s390x"
},
"product_reference": "git-core-0:2.47.3-1.el10_0.s390x",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-0:2.47.3-1.el10_0.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:git-core-0:2.47.3-1.el10_0.x86_64"
},
"product_reference": "git-core-0:2.47.3-1.el10_0.x86_64",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-debuginfo-0:2.47.3-1.el10_0.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:git-core-debuginfo-0:2.47.3-1.el10_0.aarch64"
},
"product_reference": "git-core-debuginfo-0:2.47.3-1.el10_0.aarch64",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-debuginfo-0:2.47.3-1.el10_0.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:git-core-debuginfo-0:2.47.3-1.el10_0.ppc64le"
},
"product_reference": "git-core-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-debuginfo-0:2.47.3-1.el10_0.s390x as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:git-core-debuginfo-0:2.47.3-1.el10_0.s390x"
},
"product_reference": "git-core-debuginfo-0:2.47.3-1.el10_0.s390x",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-debuginfo-0:2.47.3-1.el10_0.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:git-core-debuginfo-0:2.47.3-1.el10_0.x86_64"
},
"product_reference": "git-core-debuginfo-0:2.47.3-1.el10_0.x86_64",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-doc-0:2.47.3-1.el10_0.noarch as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:git-core-doc-0:2.47.3-1.el10_0.noarch"
},
"product_reference": "git-core-doc-0:2.47.3-1.el10_0.noarch",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-0:2.47.3-1.el10_0.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:git-credential-libsecret-0:2.47.3-1.el10_0.aarch64"
},
"product_reference": "git-credential-libsecret-0:2.47.3-1.el10_0.aarch64",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-0:2.47.3-1.el10_0.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:git-credential-libsecret-0:2.47.3-1.el10_0.ppc64le"
},
"product_reference": "git-credential-libsecret-0:2.47.3-1.el10_0.ppc64le",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-0:2.47.3-1.el10_0.s390x as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:git-credential-libsecret-0:2.47.3-1.el10_0.s390x"
},
"product_reference": "git-credential-libsecret-0:2.47.3-1.el10_0.s390x",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-0:2.47.3-1.el10_0.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:git-credential-libsecret-0:2.47.3-1.el10_0.x86_64"
},
"product_reference": "git-credential-libsecret-0:2.47.3-1.el10_0.x86_64",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.aarch64"
},
"product_reference": "git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.aarch64",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.ppc64le"
},
"product_reference": "git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.s390x as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.s390x"
},
"product_reference": "git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.s390x",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.x86_64"
},
"product_reference": "git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.x86_64",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-0:2.47.3-1.el10_0.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:git-daemon-0:2.47.3-1.el10_0.aarch64"
},
"product_reference": "git-daemon-0:2.47.3-1.el10_0.aarch64",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-0:2.47.3-1.el10_0.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:git-daemon-0:2.47.3-1.el10_0.ppc64le"
},
"product_reference": "git-daemon-0:2.47.3-1.el10_0.ppc64le",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-0:2.47.3-1.el10_0.s390x as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:git-daemon-0:2.47.3-1.el10_0.s390x"
},
"product_reference": "git-daemon-0:2.47.3-1.el10_0.s390x",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-0:2.47.3-1.el10_0.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:git-daemon-0:2.47.3-1.el10_0.x86_64"
},
"product_reference": "git-daemon-0:2.47.3-1.el10_0.x86_64",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-debuginfo-0:2.47.3-1.el10_0.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:git-daemon-debuginfo-0:2.47.3-1.el10_0.aarch64"
},
"product_reference": "git-daemon-debuginfo-0:2.47.3-1.el10_0.aarch64",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-debuginfo-0:2.47.3-1.el10_0.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:git-daemon-debuginfo-0:2.47.3-1.el10_0.ppc64le"
},
"product_reference": "git-daemon-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-debuginfo-0:2.47.3-1.el10_0.s390x as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:git-daemon-debuginfo-0:2.47.3-1.el10_0.s390x"
},
"product_reference": "git-daemon-debuginfo-0:2.47.3-1.el10_0.s390x",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-debuginfo-0:2.47.3-1.el10_0.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:git-daemon-debuginfo-0:2.47.3-1.el10_0.x86_64"
},
"product_reference": "git-daemon-debuginfo-0:2.47.3-1.el10_0.x86_64",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debuginfo-0:2.47.3-1.el10_0.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:git-debuginfo-0:2.47.3-1.el10_0.aarch64"
},
"product_reference": "git-debuginfo-0:2.47.3-1.el10_0.aarch64",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debuginfo-0:2.47.3-1.el10_0.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:git-debuginfo-0:2.47.3-1.el10_0.ppc64le"
},
"product_reference": "git-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debuginfo-0:2.47.3-1.el10_0.s390x as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:git-debuginfo-0:2.47.3-1.el10_0.s390x"
},
"product_reference": "git-debuginfo-0:2.47.3-1.el10_0.s390x",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debuginfo-0:2.47.3-1.el10_0.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:git-debuginfo-0:2.47.3-1.el10_0.x86_64"
},
"product_reference": "git-debuginfo-0:2.47.3-1.el10_0.x86_64",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debugsource-0:2.47.3-1.el10_0.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:git-debugsource-0:2.47.3-1.el10_0.aarch64"
},
"product_reference": "git-debugsource-0:2.47.3-1.el10_0.aarch64",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debugsource-0:2.47.3-1.el10_0.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:git-debugsource-0:2.47.3-1.el10_0.ppc64le"
},
"product_reference": "git-debugsource-0:2.47.3-1.el10_0.ppc64le",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debugsource-0:2.47.3-1.el10_0.s390x as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:git-debugsource-0:2.47.3-1.el10_0.s390x"
},
"product_reference": "git-debugsource-0:2.47.3-1.el10_0.s390x",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debugsource-0:2.47.3-1.el10_0.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:git-debugsource-0:2.47.3-1.el10_0.x86_64"
},
"product_reference": "git-debugsource-0:2.47.3-1.el10_0.x86_64",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-0:2.47.3-1.el10_0.noarch as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:git-email-0:2.47.3-1.el10_0.noarch"
},
"product_reference": "git-email-0:2.47.3-1.el10_0.noarch",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-0:2.47.3-1.el10_0.noarch as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:git-gui-0:2.47.3-1.el10_0.noarch"
},
"product_reference": "git-gui-0:2.47.3-1.el10_0.noarch",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-instaweb-0:2.47.3-1.el10_0.noarch as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:git-instaweb-0:2.47.3-1.el10_0.noarch"
},
"product_reference": "git-instaweb-0:2.47.3-1.el10_0.noarch",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-subtree-0:2.47.3-1.el10_0.noarch as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:git-subtree-0:2.47.3-1.el10_0.noarch"
},
"product_reference": "git-subtree-0:2.47.3-1.el10_0.noarch",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-0:2.47.3-1.el10_0.noarch as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:git-svn-0:2.47.3-1.el10_0.noarch"
},
"product_reference": "git-svn-0:2.47.3-1.el10_0.noarch",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-0:2.47.3-1.el10_0.noarch as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:gitk-0:2.47.3-1.el10_0.noarch"
},
"product_reference": "gitk-0:2.47.3-1.el10_0.noarch",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitweb-0:2.47.3-1.el10_0.noarch as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:gitweb-0:2.47.3-1.el10_0.noarch"
},
"product_reference": "gitweb-0:2.47.3-1.el10_0.noarch",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-0:2.47.3-1.el10_0.noarch as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:perl-Git-0:2.47.3-1.el10_0.noarch"
},
"product_reference": "perl-Git-0:2.47.3-1.el10_0.noarch",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-SVN-0:2.47.3-1.el10_0.noarch as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:perl-Git-SVN-0:2.47.3-1.el10_0.noarch"
},
"product_reference": "perl-Git-SVN-0:2.47.3-1.el10_0.noarch",
"relates_to_product_reference": "AppStream-10.0.Z"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-50349",
"cwe": {
"id": "CWE-150",
"name": "Improper Neutralization of Escape, Meta, or Control Sequences"
},
"discovery_date": "2025-01-14T19:00:58.133257+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2337824"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Git. This vulnerability occurs when Git requests credentials via a terminal prompt, for example, without the use of a credential helper. During this process, Git displays the host name for which the credentials are needed, but any URL-encoded parts are decoded and displayed directly. This can allow an attacker to manipulate URLs by including ANSI escape sequences, which can be interpreted by the terminal to mislead users by tricking them into entering passwords that are redirected to malicious attacker-controlled sites.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "git: Git does not sanitize URLs when asking for credentials interactively",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.src",
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-all-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-core-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-core-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-core-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-core-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-core-debuginfo-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-core-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-core-debuginfo-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-core-debuginfo-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-core-doc-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-credential-libsecret-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-credential-libsecret-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-credential-libsecret-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-credential-libsecret-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-daemon-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-daemon-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-daemon-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-daemon-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-daemon-debuginfo-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-daemon-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-daemon-debuginfo-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-daemon-debuginfo-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-debuginfo-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-debuginfo-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-debuginfo-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-debugsource-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-debugsource-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-debugsource-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-debugsource-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-email-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-gui-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-instaweb-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-subtree-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-svn-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:gitk-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:gitweb-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:perl-Git-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:perl-Git-SVN-0:2.47.3-1.el10_0.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-50349"
},
{
"category": "external",
"summary": "RHBZ#2337824",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2337824"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-50349",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50349"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-50349",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-50349"
},
{
"category": "external",
"summary": "https://github.com/git/git/commit/7725b8100ffbbff2750ee4d61a0fcc1f53a086e8",
"url": "https://github.com/git/git/commit/7725b8100ffbbff2750ee4d61a0fcc1f53a086e8"
},
{
"category": "external",
"summary": "https://github.com/git/git/commit/c903985bf7e772e2d08275c1a95c8a55ab011577",
"url": "https://github.com/git/git/commit/c903985bf7e772e2d08275c1a95c8a55ab011577"
},
{
"category": "external",
"summary": "https://github.com/git/git/security/advisories/GHSA-hmg8-h7qf-7cxr",
"url": "https://github.com/git/git/security/advisories/GHSA-hmg8-h7qf-7cxr"
}
],
"release_date": "2025-01-14T18:43:42.620000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-07-22T12:03:30+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.src",
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-all-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-core-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-core-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-core-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-core-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-core-debuginfo-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-core-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-core-debuginfo-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-core-debuginfo-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-core-doc-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-credential-libsecret-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-credential-libsecret-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-credential-libsecret-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-credential-libsecret-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-daemon-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-daemon-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-daemon-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-daemon-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-daemon-debuginfo-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-daemon-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-daemon-debuginfo-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-daemon-debuginfo-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-debuginfo-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-debuginfo-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-debuginfo-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-debugsource-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-debugsource-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-debugsource-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-debugsource-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-email-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-gui-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-instaweb-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-subtree-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-svn-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:gitk-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:gitweb-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:perl-Git-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:perl-Git-SVN-0:2.47.3-1.el10_0.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:11533"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 3.1,
"baseSeverity": "LOW",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.src",
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-all-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-core-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-core-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-core-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-core-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-core-debuginfo-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-core-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-core-debuginfo-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-core-debuginfo-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-core-doc-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-credential-libsecret-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-credential-libsecret-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-credential-libsecret-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-credential-libsecret-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-daemon-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-daemon-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-daemon-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-daemon-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-daemon-debuginfo-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-daemon-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-daemon-debuginfo-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-daemon-debuginfo-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-debuginfo-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-debuginfo-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-debuginfo-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-debugsource-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-debugsource-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-debugsource-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-debugsource-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-email-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-gui-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-instaweb-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-subtree-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-svn-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:gitk-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:gitweb-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:perl-Git-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:perl-Git-SVN-0:2.47.3-1.el10_0.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "git: Git does not sanitize URLs when asking for credentials interactively"
},
{
"cve": "CVE-2024-52006",
"cwe": {
"id": "CWE-150",
"name": "Improper Neutralization of Escape, Meta, or Control Sequences"
},
"discovery_date": "2025-01-14T19:09:43.720302+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2337956"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Git. Git defines a line-based protocol that is used to exchange information between Git and Git credential helpers. Some ecosystems, most notably .NET and node.js, interpret single Carriage Return characters as newlines, which render the protections against CVE-2020-5260 incomplete for credential helpers, which has the potential to expose stored credentials to malicious URLs.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "git: Newline confusion in credential helpers can lead to credential exfiltration in git",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.src",
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-all-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-core-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-core-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-core-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-core-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-core-debuginfo-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-core-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-core-debuginfo-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-core-debuginfo-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-core-doc-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-credential-libsecret-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-credential-libsecret-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-credential-libsecret-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-credential-libsecret-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-daemon-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-daemon-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-daemon-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-daemon-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-daemon-debuginfo-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-daemon-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-daemon-debuginfo-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-daemon-debuginfo-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-debuginfo-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-debuginfo-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-debuginfo-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-debugsource-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-debugsource-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-debugsource-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-debugsource-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-email-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-gui-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-instaweb-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-subtree-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-svn-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:gitk-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:gitweb-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:perl-Git-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:perl-Git-SVN-0:2.47.3-1.el10_0.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-52006"
},
{
"category": "external",
"summary": "RHBZ#2337956",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2337956"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-52006",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-52006"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-52006",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-52006"
},
{
"category": "external",
"summary": "https://github.com/git-ecosystem/git-credential-manager/security/advisories/GHSA-86c2-4x57-wc8g",
"url": "https://github.com/git-ecosystem/git-credential-manager/security/advisories/GHSA-86c2-4x57-wc8g"
},
{
"category": "external",
"summary": "https://github.com/git/git/commit/b01b9b81d36759cdcd07305e78765199e1bc2060",
"url": "https://github.com/git/git/commit/b01b9b81d36759cdcd07305e78765199e1bc2060"
},
{
"category": "external",
"summary": "https://github.com/git/git/security/advisories/GHSA-qm7j-c969-7j4q",
"url": "https://github.com/git/git/security/advisories/GHSA-qm7j-c969-7j4q"
},
{
"category": "external",
"summary": "https://github.com/git/git/security/advisories/GHSA-r5ph-xg7q-xfrp",
"url": "https://github.com/git/git/security/advisories/GHSA-r5ph-xg7q-xfrp"
}
],
"release_date": "2025-01-14T18:39:52.748000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-07-22T12:03:30+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.src",
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-all-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-core-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-core-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-core-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-core-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-core-debuginfo-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-core-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-core-debuginfo-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-core-debuginfo-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-core-doc-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-credential-libsecret-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-credential-libsecret-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-credential-libsecret-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-credential-libsecret-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-daemon-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-daemon-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-daemon-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-daemon-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-daemon-debuginfo-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-daemon-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-daemon-debuginfo-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-daemon-debuginfo-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-debuginfo-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-debuginfo-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-debuginfo-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-debugsource-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-debugsource-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-debugsource-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-debugsource-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-email-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-gui-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-instaweb-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-subtree-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-svn-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:gitk-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:gitweb-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:perl-Git-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:perl-Git-SVN-0:2.47.3-1.el10_0.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:11533"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.src",
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-all-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-core-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-core-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-core-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-core-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-core-debuginfo-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-core-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-core-debuginfo-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-core-debuginfo-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-core-doc-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-credential-libsecret-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-credential-libsecret-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-credential-libsecret-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-credential-libsecret-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-daemon-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-daemon-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-daemon-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-daemon-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-daemon-debuginfo-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-daemon-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-daemon-debuginfo-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-daemon-debuginfo-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-debuginfo-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-debuginfo-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-debuginfo-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-debugsource-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-debugsource-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-debugsource-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-debugsource-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-email-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-gui-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-instaweb-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-subtree-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-svn-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:gitk-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:gitweb-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:perl-Git-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:perl-Git-SVN-0:2.47.3-1.el10_0.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "git: Newline confusion in credential helpers can lead to credential exfiltration in git"
},
{
"cve": "CVE-2025-27613",
"cwe": {
"id": "CWE-73",
"name": "External Control of File Name or Path"
},
"discovery_date": "2025-07-09T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2379124"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability has been identified in the gitk application that could lead to unauthorized file modification or data loss.\n\nThis flaw manifests in two primary scenarios:\n- Untrusted Repository Cloning: When a user is tricked into cloning an untrusted Git repository and then uses gitk to visualize it without any additional parameters, any writable file on the user\u0027s system can be arbitrarily created or truncated. Exploitation via this method also requires the Support per-file encoding option to be explicitly enabled in Gitk\u0027s preferences, which is not the default setting.\n- \u0027Show origin of this line\u0027 Command: The vulnerability can also be triggered if a user employs the Show origin of this line command within gitk\u0027s main window while viewing a malicious repository. This method does not depend on the Support per-file encoding option being enabled.\n\nThe primary risk is unauthorized file system modification, which could lead to data integrity issues, data loss, or potentially open avenues for further system compromise.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "gitk: Git file creation flaw",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The Red Hat Product Security team rated this vulnerability as having a Moderate security impact. Exploitation depends on a non-default option being enabled and the user being tricked into cloning the untrusted repository or using the \"Show origin of this line\" command in the main window.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.src",
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-all-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-core-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-core-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-core-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-core-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-core-debuginfo-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-core-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-core-debuginfo-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-core-debuginfo-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-core-doc-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-credential-libsecret-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-credential-libsecret-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-credential-libsecret-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-credential-libsecret-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-daemon-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-daemon-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-daemon-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-daemon-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-daemon-debuginfo-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-daemon-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-daemon-debuginfo-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-daemon-debuginfo-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-debuginfo-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-debuginfo-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-debuginfo-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-debugsource-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-debugsource-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-debugsource-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-debugsource-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-email-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-gui-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-instaweb-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-subtree-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-svn-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:gitk-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:gitweb-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:perl-Git-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:perl-Git-SVN-0:2.47.3-1.el10_0.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-27613"
},
{
"category": "external",
"summary": "RHBZ#2379124",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2379124"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-27613",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-27613"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-27613",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-27613"
},
{
"category": "external",
"summary": "https://github.com/j6t/gitk/security/advisories/GHSA-f3cw-xrj3-wr2v",
"url": "https://github.com/j6t/gitk/security/advisories/GHSA-f3cw-xrj3-wr2v"
},
{
"category": "external",
"summary": "https://lore.kernel.org/git/xmqq5xg2wrd1.fsf@gitster.g/",
"url": "https://lore.kernel.org/git/xmqq5xg2wrd1.fsf@gitster.g/"
},
{
"category": "external",
"summary": "https://www.openwall.com/lists/oss-security/2025/07/08/4",
"url": "https://www.openwall.com/lists/oss-security/2025/07/08/4"
}
],
"release_date": "2025-07-08T13:01:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-07-22T12:03:30+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.src",
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-all-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-core-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-core-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-core-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-core-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-core-debuginfo-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-core-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-core-debuginfo-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-core-debuginfo-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-core-doc-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-credential-libsecret-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-credential-libsecret-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-credential-libsecret-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-credential-libsecret-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-daemon-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-daemon-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-daemon-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-daemon-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-daemon-debuginfo-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-daemon-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-daemon-debuginfo-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-daemon-debuginfo-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-debuginfo-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-debuginfo-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-debuginfo-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-debugsource-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-debugsource-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-debugsource-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-debugsource-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-email-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-gui-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-instaweb-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-subtree-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-svn-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:gitk-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:gitweb-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:perl-Git-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:perl-Git-SVN-0:2.47.3-1.el10_0.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:11533"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.src",
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-all-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-core-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-core-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-core-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-core-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-core-debuginfo-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-core-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-core-debuginfo-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-core-debuginfo-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-core-doc-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-credential-libsecret-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-credential-libsecret-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-credential-libsecret-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-credential-libsecret-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-daemon-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-daemon-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-daemon-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-daemon-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-daemon-debuginfo-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-daemon-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-daemon-debuginfo-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-daemon-debuginfo-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-debuginfo-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-debuginfo-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-debuginfo-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-debugsource-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-debugsource-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-debugsource-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-debugsource-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-email-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-gui-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-instaweb-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-subtree-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-svn-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:gitk-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:gitweb-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:perl-Git-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:perl-Git-SVN-0:2.47.3-1.el10_0.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "gitk: Git file creation flaw"
},
{
"cve": "CVE-2025-27614",
"discovery_date": "2025-07-09T22:54:11.462000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2379125"
}
],
"notes": [
{
"category": "description",
"text": "Gitk is a Tcl/Tk based Git history browser. Starting with 2.41.0, a Git repository can be crafted in such a way that with some social engineering a user who has cloned the repository can be tricked into running any script (e.g., Bourne shell, Perl, Python, ...) supplied by the attacker by invoking gitk filename, where filename has a particular structure. The script is run with the privileges of the user. This vulnerability is fixed in 2.43.7, 2.44.4, 2.45.4, 2.46.4, 2.47.3, 2.48.2, 2.49.1, and 2.50.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "gitk: git script execution flaw",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The Red Hat Product Security team has rated this vulnerability as having a Moderate impact as it depends on the user to be tricked to run the command using the malicious file as parameter.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.src",
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-all-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-core-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-core-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-core-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-core-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-core-debuginfo-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-core-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-core-debuginfo-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-core-debuginfo-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-core-doc-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-credential-libsecret-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-credential-libsecret-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-credential-libsecret-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-credential-libsecret-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-daemon-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-daemon-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-daemon-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-daemon-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-daemon-debuginfo-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-daemon-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-daemon-debuginfo-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-daemon-debuginfo-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-debuginfo-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-debuginfo-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-debuginfo-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-debugsource-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-debugsource-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-debugsource-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-debugsource-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-email-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-gui-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-instaweb-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-subtree-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-svn-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:gitk-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:gitweb-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:perl-Git-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:perl-Git-SVN-0:2.47.3-1.el10_0.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-27614"
},
{
"category": "external",
"summary": "RHBZ#2379125",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2379125"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-27614",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-27614"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-27614",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-27614"
},
{
"category": "external",
"summary": "https://lore.kernel.org/git/xmqq5xg2wrd1.fsf@gitster.g/",
"url": "https://lore.kernel.org/git/xmqq5xg2wrd1.fsf@gitster.g/"
},
{
"category": "external",
"summary": "https://www.openwall.com/lists/oss-security/2025/07/08/4",
"url": "https://www.openwall.com/lists/oss-security/2025/07/08/4"
}
],
"release_date": "2025-07-08T13:01:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-07-22T12:03:30+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.src",
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-all-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-core-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-core-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-core-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-core-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-core-debuginfo-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-core-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-core-debuginfo-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-core-debuginfo-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-core-doc-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-credential-libsecret-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-credential-libsecret-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-credential-libsecret-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-credential-libsecret-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-daemon-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-daemon-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-daemon-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-daemon-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-daemon-debuginfo-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-daemon-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-daemon-debuginfo-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-daemon-debuginfo-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-debuginfo-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-debuginfo-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-debuginfo-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-debugsource-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-debugsource-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-debugsource-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-debugsource-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-email-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-gui-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-instaweb-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-subtree-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-svn-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:gitk-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:gitweb-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:perl-Git-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:perl-Git-SVN-0:2.47.3-1.el10_0.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:11533"
},
{
"category": "workaround",
"details": "There\u0027s no known mitigation for this issue besides avoid using gitk with untrusted repositories or unstrusted files.",
"product_ids": [
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.src",
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-all-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-core-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-core-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-core-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-core-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-core-debuginfo-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-core-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-core-debuginfo-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-core-debuginfo-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-core-doc-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-credential-libsecret-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-credential-libsecret-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-credential-libsecret-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-credential-libsecret-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-daemon-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-daemon-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-daemon-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-daemon-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-daemon-debuginfo-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-daemon-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-daemon-debuginfo-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-daemon-debuginfo-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-debuginfo-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-debuginfo-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-debuginfo-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-debugsource-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-debugsource-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-debugsource-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-debugsource-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-email-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-gui-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-instaweb-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-subtree-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-svn-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:gitk-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:gitweb-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:perl-Git-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:perl-Git-SVN-0:2.47.3-1.el10_0.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.src",
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-all-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-core-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-core-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-core-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-core-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-core-debuginfo-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-core-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-core-debuginfo-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-core-debuginfo-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-core-doc-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-credential-libsecret-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-credential-libsecret-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-credential-libsecret-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-credential-libsecret-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-daemon-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-daemon-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-daemon-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-daemon-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-daemon-debuginfo-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-daemon-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-daemon-debuginfo-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-daemon-debuginfo-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-debuginfo-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-debuginfo-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-debuginfo-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-debugsource-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-debugsource-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-debugsource-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-debugsource-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-email-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-gui-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-instaweb-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-subtree-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-svn-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:gitk-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:gitweb-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:perl-Git-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:perl-Git-SVN-0:2.47.3-1.el10_0.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "gitk: git script execution flaw"
},
{
"cve": "CVE-2025-46835",
"cwe": {
"id": "CWE-88",
"name": "Improper Neutralization of Argument Delimiters in a Command (\u0027Argument Injection\u0027)"
},
"discovery_date": "2025-07-10T16:00:54.639582+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2379326"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in the git GUI package. When a user clones an untrusted repository and edits a file located in a maliciously named directory, git GUI may end up creating or overwriting arbitrary files for the running user has written permission. This flaw allows an attacker to modify the content of target files without the affected user\u0027s intent, resulting in a data integrity issue.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "git: Git GUI can create and overwrite files for which the user has write permission",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security team has rated this vulnerability as having a Low severity. The is due to the high complexity in exploiting the vulnerability. Additionally, the user needs to be tricked into cloning an untrusted repository and editing a file located in a directory with a maliciously crafted name.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.src",
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-all-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-core-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-core-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-core-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-core-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-core-debuginfo-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-core-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-core-debuginfo-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-core-debuginfo-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-core-doc-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-credential-libsecret-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-credential-libsecret-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-credential-libsecret-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-credential-libsecret-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-daemon-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-daemon-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-daemon-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-daemon-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-daemon-debuginfo-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-daemon-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-daemon-debuginfo-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-daemon-debuginfo-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-debuginfo-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-debuginfo-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-debuginfo-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-debugsource-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-debugsource-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-debugsource-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-debugsource-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-email-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-gui-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-instaweb-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-subtree-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-svn-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:gitk-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:gitweb-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:perl-Git-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:perl-Git-SVN-0:2.47.3-1.el10_0.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-46835"
},
{
"category": "external",
"summary": "RHBZ#2379326",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2379326"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-46835",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-46835"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-46835",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-46835"
},
{
"category": "external",
"summary": "https://github.com/j6t/git-gui/compare/dcda716dbc9c90bcac4611bd1076747671ee0906..a437f5bc93330a70b42a230e52f3bd036ca1b1da",
"url": "https://github.com/j6t/git-gui/compare/dcda716dbc9c90bcac4611bd1076747671ee0906..a437f5bc93330a70b42a230e52f3bd036ca1b1da"
},
{
"category": "external",
"summary": "https://github.com/j6t/git-gui/security/advisories/GHSA-xfx7-68v4-v8fg",
"url": "https://github.com/j6t/git-gui/security/advisories/GHSA-xfx7-68v4-v8fg"
}
],
"release_date": "2025-07-10T15:09:42.735000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-07-22T12:03:30+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.src",
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-all-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-core-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-core-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-core-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-core-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-core-debuginfo-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-core-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-core-debuginfo-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-core-debuginfo-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-core-doc-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-credential-libsecret-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-credential-libsecret-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-credential-libsecret-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-credential-libsecret-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-daemon-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-daemon-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-daemon-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-daemon-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-daemon-debuginfo-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-daemon-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-daemon-debuginfo-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-daemon-debuginfo-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-debuginfo-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-debuginfo-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-debuginfo-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-debugsource-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-debugsource-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-debugsource-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-debugsource-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-email-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-gui-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-instaweb-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-subtree-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-svn-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:gitk-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:gitweb-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:perl-Git-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:perl-Git-SVN-0:2.47.3-1.el10_0.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:11533"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 3.1,
"baseSeverity": "LOW",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.src",
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-all-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-core-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-core-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-core-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-core-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-core-debuginfo-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-core-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-core-debuginfo-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-core-debuginfo-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-core-doc-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-credential-libsecret-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-credential-libsecret-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-credential-libsecret-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-credential-libsecret-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-daemon-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-daemon-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-daemon-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-daemon-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-daemon-debuginfo-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-daemon-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-daemon-debuginfo-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-daemon-debuginfo-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-debuginfo-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-debuginfo-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-debuginfo-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-debugsource-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-debugsource-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-debugsource-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-debugsource-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-email-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-gui-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-instaweb-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-subtree-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-svn-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:gitk-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:gitweb-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:perl-Git-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:perl-Git-SVN-0:2.47.3-1.el10_0.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "git: Git GUI can create and overwrite files for which the user has write permission"
},
{
"cve": "CVE-2025-48384",
"cwe": {
"id": "CWE-59",
"name": "Improper Link Resolution Before File Access (\u0027Link Following\u0027)"
},
"discovery_date": "2025-07-08T19:00:48.297925+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2378806"
}
],
"notes": [
{
"category": "description",
"text": "A line-end handling flaw was found in Git. When writing a config entry, values with a trailing carriage return (CR) are not quoted, resulting in the CR being lost when the config is read later. When initializing a submodule, if the submodule path contains a trailing CR, the altered path is read, resulting in the submodule being checked out to an incorrect location.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "git: Git arbitrary code execution",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability marked as Important and not Moderate flaw because it undermines Git\u2019s path and config integrity by allowing carriage return (\\r) injection to manipulate submodule checkout behavior. Git previously failed to quote config values containing trailing CR, causing the value to be misinterpreted when read back. In the context of submodules, this leads to incorrect path resolution, allowing an attacker to redirect the checkout path via a symlink to a sensitive directory like .git/modules/\u003csubmodule\u003e/hooks. If an executable post-checkout hook exists there, it could be inadvertently executed, resulting in arbitrary code execution during submodule operations. This is particularly dangerous in automated CI/CD pipelines or multi-repo projects where submodules are initialized or updated without manual inspection.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.src",
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-all-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-core-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-core-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-core-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-core-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-core-debuginfo-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-core-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-core-debuginfo-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-core-debuginfo-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-core-doc-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-credential-libsecret-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-credential-libsecret-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-credential-libsecret-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-credential-libsecret-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-daemon-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-daemon-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-daemon-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-daemon-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-daemon-debuginfo-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-daemon-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-daemon-debuginfo-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-daemon-debuginfo-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-debuginfo-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-debuginfo-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-debuginfo-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-debugsource-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-debugsource-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-debugsource-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-debugsource-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-email-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-gui-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-instaweb-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-subtree-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-svn-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:gitk-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:gitweb-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:perl-Git-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:perl-Git-SVN-0:2.47.3-1.el10_0.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-48384"
},
{
"category": "external",
"summary": "RHBZ#2378806",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2378806"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-48384",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-48384"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-48384",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-48384"
},
{
"category": "external",
"summary": "https://dgl.cx/2025/07/git-clone-submodule-cve-2025-48384",
"url": "https://dgl.cx/2025/07/git-clone-submodule-cve-2025-48384"
},
{
"category": "external",
"summary": "https://github.com/git/git/commit/05e9cd64ee23bbadcea6bcffd6660ed02b8eab89",
"url": "https://github.com/git/git/commit/05e9cd64ee23bbadcea6bcffd6660ed02b8eab89"
},
{
"category": "external",
"summary": "https://github.com/git/git/security/advisories/GHSA-vwqx-4fm8-6qc9",
"url": "https://github.com/git/git/security/advisories/GHSA-vwqx-4fm8-6qc9"
},
{
"category": "external",
"summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog",
"url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
}
],
"release_date": "2025-07-08T18:23:48.710000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-07-22T12:03:30+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.src",
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-all-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-core-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-core-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-core-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-core-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-core-debuginfo-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-core-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-core-debuginfo-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-core-debuginfo-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-core-doc-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-credential-libsecret-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-credential-libsecret-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-credential-libsecret-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-credential-libsecret-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-daemon-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-daemon-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-daemon-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-daemon-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-daemon-debuginfo-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-daemon-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-daemon-debuginfo-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-daemon-debuginfo-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-debuginfo-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-debuginfo-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-debuginfo-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-debugsource-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-debugsource-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-debugsource-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-debugsource-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-email-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-gui-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-instaweb-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-subtree-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-svn-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:gitk-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:gitweb-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:perl-Git-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:perl-Git-SVN-0:2.47.3-1.el10_0.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:11533"
},
{
"category": "workaround",
"details": "To mitigate this issue, avoid using --recurse-submodules when cloning repositories from untrusted sources; instead, clone normally and only initialize or update submodules manually after reviewing them.",
"product_ids": [
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.src",
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-all-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-core-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-core-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-core-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-core-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-core-debuginfo-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-core-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-core-debuginfo-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-core-debuginfo-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-core-doc-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-credential-libsecret-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-credential-libsecret-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-credential-libsecret-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-credential-libsecret-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-daemon-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-daemon-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-daemon-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-daemon-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-daemon-debuginfo-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-daemon-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-daemon-debuginfo-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-daemon-debuginfo-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-debuginfo-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-debuginfo-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-debuginfo-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-debugsource-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-debugsource-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-debugsource-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-debugsource-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-email-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-gui-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-instaweb-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-subtree-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-svn-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:gitk-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:gitweb-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:perl-Git-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:perl-Git-SVN-0:2.47.3-1.el10_0.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.0,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.src",
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-all-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-core-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-core-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-core-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-core-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-core-debuginfo-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-core-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-core-debuginfo-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-core-debuginfo-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-core-doc-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-credential-libsecret-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-credential-libsecret-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-credential-libsecret-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-credential-libsecret-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-daemon-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-daemon-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-daemon-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-daemon-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-daemon-debuginfo-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-daemon-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-daemon-debuginfo-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-daemon-debuginfo-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-debuginfo-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-debuginfo-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-debuginfo-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-debugsource-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-debugsource-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-debugsource-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-debugsource-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-email-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-gui-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-instaweb-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-subtree-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-svn-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:gitk-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:gitweb-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:perl-Git-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:perl-Git-SVN-0:2.47.3-1.el10_0.noarch"
]
}
],
"threats": [
{
"category": "exploit_status",
"date": "2025-08-25T00:00:00+00:00",
"details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
},
{
"category": "impact",
"details": "Important"
}
],
"title": "git: Git arbitrary code execution"
},
{
"cve": "CVE-2025-48385",
"cwe": {
"id": "CWE-88",
"name": "Improper Neutralization of Argument Delimiters in a Command (\u0027Argument Injection\u0027)"
},
"discovery_date": "2025-07-08T19:00:55.106787+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2378808"
}
],
"notes": [
{
"category": "description",
"text": "A bundled uri handling flaw was found in Git. When cloning a repository, Git knows to optionally fetch a bundle advertised by the remote server, which allows the server side to offload parts of the clone to a CDN. The Git client does not perform sufficient validation of the advertised bundles, which allows the remote side to perform protocol injection.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "git: Git arbitrary file writes",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability marked as Important rather than a Moderate flaw because it enables protocol injection at the transport layer of Git\u0027s bundle-uri mechanism, allowing a remote server to manipulate how and where data is written on the client system during a clone operation. The lack of input sanitization on user-controlled values like the URI and target path means that malformed inputs containing spaces or newlines can break protocol framing, leading to arbitrary file writes. In scenarios such as CI pipelines, developer environments, or recursive clones with submodules, an attacker can exploit this to overwrite critical files or inject malicious content, potentially achieving remote code execution (RCE).",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.src",
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-all-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-core-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-core-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-core-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-core-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-core-debuginfo-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-core-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-core-debuginfo-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-core-debuginfo-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-core-doc-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-credential-libsecret-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-credential-libsecret-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-credential-libsecret-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-credential-libsecret-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-daemon-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-daemon-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-daemon-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-daemon-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-daemon-debuginfo-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-daemon-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-daemon-debuginfo-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-daemon-debuginfo-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-debuginfo-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-debuginfo-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-debuginfo-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-debugsource-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-debugsource-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-debugsource-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-debugsource-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-email-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-gui-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-instaweb-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-subtree-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-svn-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:gitk-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:gitweb-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:perl-Git-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:perl-Git-SVN-0:2.47.3-1.el10_0.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-48385"
},
{
"category": "external",
"summary": "RHBZ#2378808",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2378808"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-48385",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-48385"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-48385",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-48385"
},
{
"category": "external",
"summary": "https://github.com/git/git/security/advisories/GHSA-m98c-vgpc-9655",
"url": "https://github.com/git/git/security/advisories/GHSA-m98c-vgpc-9655"
}
],
"release_date": "2025-07-08T18:23:44.405000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-07-22T12:03:30+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.src",
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-all-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-core-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-core-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-core-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-core-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-core-debuginfo-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-core-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-core-debuginfo-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-core-debuginfo-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-core-doc-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-credential-libsecret-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-credential-libsecret-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-credential-libsecret-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-credential-libsecret-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-daemon-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-daemon-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-daemon-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-daemon-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-daemon-debuginfo-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-daemon-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-daemon-debuginfo-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-daemon-debuginfo-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-debuginfo-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-debuginfo-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-debuginfo-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-debugsource-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-debugsource-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-debugsource-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-debugsource-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-email-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-gui-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-instaweb-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-subtree-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-svn-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:gitk-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:gitweb-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:perl-Git-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:perl-Git-SVN-0:2.47.3-1.el10_0.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:11533"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.src",
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-all-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-core-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-core-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-core-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-core-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-core-debuginfo-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-core-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-core-debuginfo-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-core-debuginfo-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-core-doc-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-credential-libsecret-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-credential-libsecret-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-credential-libsecret-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-credential-libsecret-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-daemon-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-daemon-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-daemon-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-daemon-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-daemon-debuginfo-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-daemon-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-daemon-debuginfo-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-daemon-debuginfo-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-debuginfo-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-debuginfo-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-debuginfo-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-debugsource-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-debugsource-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-debugsource-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-debugsource-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-email-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-gui-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-instaweb-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-subtree-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-svn-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:gitk-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:gitweb-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:perl-Git-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:perl-Git-SVN-0:2.47.3-1.el10_0.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 8.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:L",
"version": "3.1"
},
"products": [
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.src",
"AppStream-10.0.Z:git-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-all-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-core-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-core-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-core-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-core-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-core-debuginfo-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-core-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-core-debuginfo-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-core-debuginfo-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-core-doc-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-credential-libsecret-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-credential-libsecret-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-credential-libsecret-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-credential-libsecret-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-credential-libsecret-debuginfo-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-daemon-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-daemon-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-daemon-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-daemon-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-daemon-debuginfo-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-daemon-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-daemon-debuginfo-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-daemon-debuginfo-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-debuginfo-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-debuginfo-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-debuginfo-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-debuginfo-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-debugsource-0:2.47.3-1.el10_0.aarch64",
"AppStream-10.0.Z:git-debugsource-0:2.47.3-1.el10_0.ppc64le",
"AppStream-10.0.Z:git-debugsource-0:2.47.3-1.el10_0.s390x",
"AppStream-10.0.Z:git-debugsource-0:2.47.3-1.el10_0.x86_64",
"AppStream-10.0.Z:git-email-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-gui-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-instaweb-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-subtree-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:git-svn-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:gitk-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:gitweb-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:perl-Git-0:2.47.3-1.el10_0.noarch",
"AppStream-10.0.Z:perl-Git-SVN-0:2.47.3-1.el10_0.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "git: Git arbitrary file writes"
}
]
}
rhsa-2025:13933
Vulnerability from csaf_redhat
Published
2025-08-20 07:12
Modified
2025-11-06 23:42
Summary
Red Hat Security Advisory: OpenShift Container Platform 4.19.9 bug fix and security update
Notes
Topic
Red Hat OpenShift Container Platform release 4.19.9 is now available with
updates to packages and images that fix several bugs and add enhancements.
This release includes a security update for Red Hat OpenShift Container
Platform 4.19.
Red Hat Product Security has rated this update as having a security impact
of Important. A Common Vulnerability Scoring System (CVSS) base score,
which gives a detailed severity rating, is available for each vulnerability
from the CVE link(s) in the References section.
Details
Red Hat OpenShift Container Platform is Red Hat's cloud computing
Kubernetes application platform solution designed for on-premise or private
cloud deployments.
This advisory contains the container images for Red Hat OpenShift Container
Platform 4.19.9. See the following advisory for the RPM packages for this
release:
https://access.redhat.com/errata/RHBA-2025:13827
Space precludes documenting all of the container images in this advisory.
See the following Release Notes documentation, which will be updated
shortly for this release, for details about these changes:
https://docs.redhat.com/en/documentation/openshift_container_platform/4.19/html/release_notes/
Security Fix(es):
* git: Git arbitrary code execution (CVE-2025-48384)
* git: Git arbitrary file writes (CVE-2025-48385)
For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE
page(s) listed in the References section.
All OpenShift Container Platform 4.19 users are advised to upgrade to these
updated packages and images when they are available in the appropriate
release channel. To check for available updates, use the OpenShift CLI (oc)
or web console. Instructions for upgrading a cluster are available at
https://docs.redhat.com/en/documentation/openshift_container_platform/4.19/html-single/updating_clusters/index#updating-cluster-cli.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat OpenShift Container Platform release 4.19.9 is now available with\nupdates to packages and images that fix several bugs and add enhancements.\n\n This release includes a security update for Red Hat OpenShift Container\nPlatform 4.19.\n\nRed Hat Product Security has rated this update as having a security impact\nof Important. A Common Vulnerability Scoring System (CVSS) base score,\nwhich gives a detailed severity rating, is available for each vulnerability\nfrom the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat OpenShift Container Platform is Red Hat\u0027s cloud computing\nKubernetes application platform solution designed for on-premise or private\ncloud deployments.\n\nThis advisory contains the container images for Red Hat OpenShift Container\nPlatform 4.19.9. See the following advisory for the RPM packages for this\nrelease:\n\nhttps://access.redhat.com/errata/RHBA-2025:13827\n\nSpace precludes documenting all of the container images in this advisory.\nSee the following Release Notes documentation, which will be updated\nshortly for this release, for details about these changes:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.19/html/release_notes/\n\nSecurity Fix(es):\n\n* git: Git arbitrary code execution (CVE-2025-48384)\n* git: Git arbitrary file writes (CVE-2025-48385)\n\nFor more details about the security issue(s), including the impact, a CVSS\nscore, acknowledgments, and other related information, refer to the CVE\npage(s) listed in the References section.\n\nAll OpenShift Container Platform 4.19 users are advised to upgrade to these\nupdated packages and images when they are available in the appropriate\nrelease channel. To check for available updates, use the OpenShift CLI (oc)\nor web console. Instructions for upgrading a cluster are available at\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.19/html-single/updating_clusters/index#updating-cluster-cli.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:13933",
"url": "https://access.redhat.com/errata/RHSA-2025:13933"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2378806",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2378806"
},
{
"category": "external",
"summary": "2378808",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2378808"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_13933.json"
}
],
"title": "Red Hat Security Advisory: OpenShift Container Platform 4.19.9 bug fix and security update",
"tracking": {
"current_release_date": "2025-11-06T23:42:03+00:00",
"generator": {
"date": "2025-11-06T23:42:03+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.11"
}
},
"id": "RHSA-2025:13933",
"initial_release_date": "2025-08-20T07:12:19+00:00",
"revision_history": [
{
"date": "2025-08-20T07:12:19+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-08-20T07:12:19+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-06T23:42:03+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat OpenShift Container Platform 4.19",
"product": {
"name": "Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:4.19::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift Enterprise"
},
{
"branches": [
{
"category": "product_version",
"name": "rhcos-aarch64-4.19.9.6.202508112354-0",
"product": {
"name": "rhcos-aarch64-4.19.9.6.202508112354-0",
"product_id": "rhcos-aarch64-4.19.9.6.202508112354-0",
"product_identification_helper": {
"purl": "pkg:generic/redhat/rhcos@4.19.9.6.202508112354?arch=aarch64"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "rhcos-ppc64le-4.19.9.6.202508112354-0",
"product": {
"name": "rhcos-ppc64le-4.19.9.6.202508112354-0",
"product_id": "rhcos-ppc64le-4.19.9.6.202508112354-0",
"product_identification_helper": {
"purl": "pkg:generic/redhat/rhcos@4.19.9.6.202508112354?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "rhcos-s390x-4.19.9.6.202508112354-0",
"product": {
"name": "rhcos-s390x-4.19.9.6.202508112354-0",
"product_id": "rhcos-s390x-4.19.9.6.202508112354-0",
"product_identification_helper": {
"purl": "pkg:generic/redhat/rhcos@4.19.9.6.202508112354?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "rhcos-x86_64-4.19.9.6.202508112354-0",
"product": {
"name": "rhcos-x86_64-4.19.9.6.202508112354-0",
"product_id": "rhcos-x86_64-4.19.9.6.202508112354-0",
"product_identification_helper": {
"purl": "pkg:generic/redhat/rhcos@4.19.9.6.202508112354?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "rhcos-aarch64-4.19.9.6.202508112354-0 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:rhcos-aarch64-4.19.9.6.202508112354-0"
},
"product_reference": "rhcos-aarch64-4.19.9.6.202508112354-0",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhcos-ppc64le-4.19.9.6.202508112354-0 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:rhcos-ppc64le-4.19.9.6.202508112354-0"
},
"product_reference": "rhcos-ppc64le-4.19.9.6.202508112354-0",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhcos-s390x-4.19.9.6.202508112354-0 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:rhcos-s390x-4.19.9.6.202508112354-0"
},
"product_reference": "rhcos-s390x-4.19.9.6.202508112354-0",
"relates_to_product_reference": "9Base-RHOSE-4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhcos-x86_64-4.19.9.6.202508112354-0 as a component of Red Hat OpenShift Container Platform 4.19",
"product_id": "9Base-RHOSE-4.19:rhcos-x86_64-4.19.9.6.202508112354-0"
},
"product_reference": "rhcos-x86_64-4.19.9.6.202508112354-0",
"relates_to_product_reference": "9Base-RHOSE-4.19"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-48384",
"cwe": {
"id": "CWE-59",
"name": "Improper Link Resolution Before File Access (\u0027Link Following\u0027)"
},
"discovery_date": "2025-07-08T19:00:48.297925+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2378806"
}
],
"notes": [
{
"category": "description",
"text": "A line-end handling flaw was found in Git. When writing a config entry, values with a trailing carriage return (CR) are not quoted, resulting in the CR being lost when the config is read later. When initializing a submodule, if the submodule path contains a trailing CR, the altered path is read, resulting in the submodule being checked out to an incorrect location.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "git: Git arbitrary code execution",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability marked as Important and not Moderate flaw because it undermines Git\u2019s path and config integrity by allowing carriage return (\\r) injection to manipulate submodule checkout behavior. Git previously failed to quote config values containing trailing CR, causing the value to be misinterpreted when read back. In the context of submodules, this leads to incorrect path resolution, allowing an attacker to redirect the checkout path via a symlink to a sensitive directory like .git/modules/\u003csubmodule\u003e/hooks. If an executable post-checkout hook exists there, it could be inadvertently executed, resulting in arbitrary code execution during submodule operations. This is particularly dangerous in automated CI/CD pipelines or multi-repo projects where submodules are initialized or updated without manual inspection.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHOSE-4.19:rhcos-aarch64-4.19.9.6.202508112354-0",
"9Base-RHOSE-4.19:rhcos-ppc64le-4.19.9.6.202508112354-0",
"9Base-RHOSE-4.19:rhcos-s390x-4.19.9.6.202508112354-0",
"9Base-RHOSE-4.19:rhcos-x86_64-4.19.9.6.202508112354-0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-48384"
},
{
"category": "external",
"summary": "RHBZ#2378806",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2378806"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-48384",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-48384"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-48384",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-48384"
},
{
"category": "external",
"summary": "https://dgl.cx/2025/07/git-clone-submodule-cve-2025-48384",
"url": "https://dgl.cx/2025/07/git-clone-submodule-cve-2025-48384"
},
{
"category": "external",
"summary": "https://github.com/git/git/commit/05e9cd64ee23bbadcea6bcffd6660ed02b8eab89",
"url": "https://github.com/git/git/commit/05e9cd64ee23bbadcea6bcffd6660ed02b8eab89"
},
{
"category": "external",
"summary": "https://github.com/git/git/security/advisories/GHSA-vwqx-4fm8-6qc9",
"url": "https://github.com/git/git/security/advisories/GHSA-vwqx-4fm8-6qc9"
},
{
"category": "external",
"summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog",
"url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
}
],
"release_date": "2025-07-08T18:23:48.710000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-08-20T07:12:19+00:00",
"details": "For OpenShift Container Platform 4.19 see the following documentation,\nwhich will be updated shortly for this release, for important instructions\non how to upgrade your cluster and fully apply this asynchronous errata\nupdate:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.19/html/release_notes/\n\nYou may download the oc tool and use it to inspect release image metadata\nfor x86_64, s390x, ppc64le, and aarch64 architectures. The image digests\nmay be found at\nhttps://quay.io/repository/openshift-release-dev/ocp-release?tab=tags.\n\nThe sha values for the release are as follows:\n\n (For x86_64 architecture)\n The image digest is sha256:b6f3a6e7cab0bb6e2590f6e6612a3edec75e3b28d32a4e55325bdeeb7d836662\n\n (For s390x architecture)\n The image digest is sha256:334e26b0b7452b060884217e3c5e43e81c8c491cf3bafbe1da49e10dd08fdc6e\n\n (For ppc64le architecture)\n The image digest is sha256:b211f12212c30703f1e50c2275fc65e7e0b8e1d2f9470e41531b289bd99ef1f4\n\n (For aarch64 architecture)\n The image digest is sha256:87a33ae5b04b02f73de246d388a3468d844010a75ac40c21bd3d72dc1745a046\n\nAll OpenShift Container Platform 4.19 users are advised to upgrade to these\nupdated packages and images when they are available in the appropriate\nrelease channel. To check for available updates, use the OpenShift CLI (oc)\nor web console. Instructions for upgrading a cluster are available at\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.19/html-single/updating_clusters/index#updating-cluster-cli.",
"product_ids": [
"9Base-RHOSE-4.19:rhcos-aarch64-4.19.9.6.202508112354-0",
"9Base-RHOSE-4.19:rhcos-ppc64le-4.19.9.6.202508112354-0",
"9Base-RHOSE-4.19:rhcos-s390x-4.19.9.6.202508112354-0",
"9Base-RHOSE-4.19:rhcos-x86_64-4.19.9.6.202508112354-0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:13933"
},
{
"category": "workaround",
"details": "To mitigate this issue, avoid using --recurse-submodules when cloning repositories from untrusted sources; instead, clone normally and only initialize or update submodules manually after reviewing them.",
"product_ids": [
"9Base-RHOSE-4.19:rhcos-aarch64-4.19.9.6.202508112354-0",
"9Base-RHOSE-4.19:rhcos-ppc64le-4.19.9.6.202508112354-0",
"9Base-RHOSE-4.19:rhcos-s390x-4.19.9.6.202508112354-0",
"9Base-RHOSE-4.19:rhcos-x86_64-4.19.9.6.202508112354-0"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.0,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"9Base-RHOSE-4.19:rhcos-aarch64-4.19.9.6.202508112354-0",
"9Base-RHOSE-4.19:rhcos-ppc64le-4.19.9.6.202508112354-0",
"9Base-RHOSE-4.19:rhcos-s390x-4.19.9.6.202508112354-0",
"9Base-RHOSE-4.19:rhcos-x86_64-4.19.9.6.202508112354-0"
]
}
],
"threats": [
{
"category": "exploit_status",
"date": "2025-08-25T00:00:00+00:00",
"details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
},
{
"category": "impact",
"details": "Important"
}
],
"title": "git: Git arbitrary code execution"
},
{
"cve": "CVE-2025-48385",
"cwe": {
"id": "CWE-88",
"name": "Improper Neutralization of Argument Delimiters in a Command (\u0027Argument Injection\u0027)"
},
"discovery_date": "2025-07-08T19:00:55.106787+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2378808"
}
],
"notes": [
{
"category": "description",
"text": "A bundled uri handling flaw was found in Git. When cloning a repository, Git knows to optionally fetch a bundle advertised by the remote server, which allows the server side to offload parts of the clone to a CDN. The Git client does not perform sufficient validation of the advertised bundles, which allows the remote side to perform protocol injection.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "git: Git arbitrary file writes",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability marked as Important rather than a Moderate flaw because it enables protocol injection at the transport layer of Git\u0027s bundle-uri mechanism, allowing a remote server to manipulate how and where data is written on the client system during a clone operation. The lack of input sanitization on user-controlled values like the URI and target path means that malformed inputs containing spaces or newlines can break protocol framing, leading to arbitrary file writes. In scenarios such as CI pipelines, developer environments, or recursive clones with submodules, an attacker can exploit this to overwrite critical files or inject malicious content, potentially achieving remote code execution (RCE).",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHOSE-4.19:rhcos-aarch64-4.19.9.6.202508112354-0",
"9Base-RHOSE-4.19:rhcos-ppc64le-4.19.9.6.202508112354-0",
"9Base-RHOSE-4.19:rhcos-s390x-4.19.9.6.202508112354-0",
"9Base-RHOSE-4.19:rhcos-x86_64-4.19.9.6.202508112354-0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-48385"
},
{
"category": "external",
"summary": "RHBZ#2378808",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2378808"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-48385",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-48385"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-48385",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-48385"
},
{
"category": "external",
"summary": "https://github.com/git/git/security/advisories/GHSA-m98c-vgpc-9655",
"url": "https://github.com/git/git/security/advisories/GHSA-m98c-vgpc-9655"
}
],
"release_date": "2025-07-08T18:23:44.405000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-08-20T07:12:19+00:00",
"details": "For OpenShift Container Platform 4.19 see the following documentation,\nwhich will be updated shortly for this release, for important instructions\non how to upgrade your cluster and fully apply this asynchronous errata\nupdate:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.19/html/release_notes/\n\nYou may download the oc tool and use it to inspect release image metadata\nfor x86_64, s390x, ppc64le, and aarch64 architectures. The image digests\nmay be found at\nhttps://quay.io/repository/openshift-release-dev/ocp-release?tab=tags.\n\nThe sha values for the release are as follows:\n\n (For x86_64 architecture)\n The image digest is sha256:b6f3a6e7cab0bb6e2590f6e6612a3edec75e3b28d32a4e55325bdeeb7d836662\n\n (For s390x architecture)\n The image digest is sha256:334e26b0b7452b060884217e3c5e43e81c8c491cf3bafbe1da49e10dd08fdc6e\n\n (For ppc64le architecture)\n The image digest is sha256:b211f12212c30703f1e50c2275fc65e7e0b8e1d2f9470e41531b289bd99ef1f4\n\n (For aarch64 architecture)\n The image digest is sha256:87a33ae5b04b02f73de246d388a3468d844010a75ac40c21bd3d72dc1745a046\n\nAll OpenShift Container Platform 4.19 users are advised to upgrade to these\nupdated packages and images when they are available in the appropriate\nrelease channel. To check for available updates, use the OpenShift CLI (oc)\nor web console. Instructions for upgrading a cluster are available at\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.19/html-single/updating_clusters/index#updating-cluster-cli.",
"product_ids": [
"9Base-RHOSE-4.19:rhcos-aarch64-4.19.9.6.202508112354-0",
"9Base-RHOSE-4.19:rhcos-ppc64le-4.19.9.6.202508112354-0",
"9Base-RHOSE-4.19:rhcos-s390x-4.19.9.6.202508112354-0",
"9Base-RHOSE-4.19:rhcos-x86_64-4.19.9.6.202508112354-0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:13933"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHOSE-4.19:rhcos-aarch64-4.19.9.6.202508112354-0",
"9Base-RHOSE-4.19:rhcos-ppc64le-4.19.9.6.202508112354-0",
"9Base-RHOSE-4.19:rhcos-s390x-4.19.9.6.202508112354-0",
"9Base-RHOSE-4.19:rhcos-x86_64-4.19.9.6.202508112354-0"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 8.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:L",
"version": "3.1"
},
"products": [
"9Base-RHOSE-4.19:rhcos-aarch64-4.19.9.6.202508112354-0",
"9Base-RHOSE-4.19:rhcos-ppc64le-4.19.9.6.202508112354-0",
"9Base-RHOSE-4.19:rhcos-s390x-4.19.9.6.202508112354-0",
"9Base-RHOSE-4.19:rhcos-x86_64-4.19.9.6.202508112354-0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "git: Git arbitrary file writes"
}
]
}
rhsa-2025:11796
Vulnerability from csaf_redhat
Published
2025-07-28 01:20
Modified
2025-11-06 23:41
Summary
Red Hat Security Advisory: git security update
Notes
Topic
An update for git is now available for Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Git is a distributed revision control system with a decentralized architecture. As opposed to centralized version control systems with a client-server model, Git ensures that each working copy of a Git repository is an exact copy with complete revision history. This not only allows the user to work on and contribute to projects without the need to have permission to push the changes to their official repositories, but also makes it possible for the user to work with no network connection.
Security Fix(es):
* git: Git arbitrary code execution (CVE-2025-48384)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for git is now available for Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Git is a distributed revision control system with a decentralized architecture. As opposed to centralized version control systems with a client-server model, Git ensures that each working copy of a Git repository is an exact copy with complete revision history. This not only allows the user to work on and contribute to projects without the need to have permission to push the changes to their official repositories, but also makes it possible for the user to work with no network connection.\n\nSecurity Fix(es):\n\n* git: Git arbitrary code execution (CVE-2025-48384)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:11796",
"url": "https://access.redhat.com/errata/RHSA-2025:11796"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2378806",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2378806"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_11796.json"
}
],
"title": "Red Hat Security Advisory: git security update",
"tracking": {
"current_release_date": "2025-11-06T23:41:43+00:00",
"generator": {
"date": "2025-11-06T23:41:43+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.11"
}
},
"id": "RHSA-2025:11796",
"initial_release_date": "2025-07-28T01:20:45+00:00",
"revision_history": [
{
"date": "2025-07-28T01:20:45+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-07-28T01:20:45+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-06T23:41:43+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product": {
"name": "Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_e4s:9.0::appstream"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "git-0:2.31.1-6.el9_0.1.src",
"product": {
"name": "git-0:2.31.1-6.el9_0.1.src",
"product_id": "git-0:2.31.1-6.el9_0.1.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git@2.31.1-6.el9_0.1?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "git-0:2.31.1-6.el9_0.1.aarch64",
"product": {
"name": "git-0:2.31.1-6.el9_0.1.aarch64",
"product_id": "git-0:2.31.1-6.el9_0.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git@2.31.1-6.el9_0.1?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-core-0:2.31.1-6.el9_0.1.aarch64",
"product": {
"name": "git-core-0:2.31.1-6.el9_0.1.aarch64",
"product_id": "git-core-0:2.31.1-6.el9_0.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core@2.31.1-6.el9_0.1?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-0:2.31.1-6.el9_0.1.aarch64",
"product": {
"name": "git-credential-libsecret-0:2.31.1-6.el9_0.1.aarch64",
"product_id": "git-credential-libsecret-0:2.31.1-6.el9_0.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret@2.31.1-6.el9_0.1?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-daemon-0:2.31.1-6.el9_0.1.aarch64",
"product": {
"name": "git-daemon-0:2.31.1-6.el9_0.1.aarch64",
"product_id": "git-daemon-0:2.31.1-6.el9_0.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon@2.31.1-6.el9_0.1?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-subtree-0:2.31.1-6.el9_0.1.aarch64",
"product": {
"name": "git-subtree-0:2.31.1-6.el9_0.1.aarch64",
"product_id": "git-subtree-0:2.31.1-6.el9_0.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-subtree@2.31.1-6.el9_0.1?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-debugsource-0:2.31.1-6.el9_0.1.aarch64",
"product": {
"name": "git-debugsource-0:2.31.1-6.el9_0.1.aarch64",
"product_id": "git-debugsource-0:2.31.1-6.el9_0.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debugsource@2.31.1-6.el9_0.1?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-core-debuginfo-0:2.31.1-6.el9_0.1.aarch64",
"product": {
"name": "git-core-debuginfo-0:2.31.1-6.el9_0.1.aarch64",
"product_id": "git-core-debuginfo-0:2.31.1-6.el9_0.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core-debuginfo@2.31.1-6.el9_0.1?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-debuginfo-0:2.31.1-6.el9_0.1.aarch64",
"product": {
"name": "git-credential-libsecret-debuginfo-0:2.31.1-6.el9_0.1.aarch64",
"product_id": "git-credential-libsecret-debuginfo-0:2.31.1-6.el9_0.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret-debuginfo@2.31.1-6.el9_0.1?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-daemon-debuginfo-0:2.31.1-6.el9_0.1.aarch64",
"product": {
"name": "git-daemon-debuginfo-0:2.31.1-6.el9_0.1.aarch64",
"product_id": "git-daemon-debuginfo-0:2.31.1-6.el9_0.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon-debuginfo@2.31.1-6.el9_0.1?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-debuginfo-0:2.31.1-6.el9_0.1.aarch64",
"product": {
"name": "git-debuginfo-0:2.31.1-6.el9_0.1.aarch64",
"product_id": "git-debuginfo-0:2.31.1-6.el9_0.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debuginfo@2.31.1-6.el9_0.1?arch=aarch64"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "git-0:2.31.1-6.el9_0.1.ppc64le",
"product": {
"name": "git-0:2.31.1-6.el9_0.1.ppc64le",
"product_id": "git-0:2.31.1-6.el9_0.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git@2.31.1-6.el9_0.1?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-core-0:2.31.1-6.el9_0.1.ppc64le",
"product": {
"name": "git-core-0:2.31.1-6.el9_0.1.ppc64le",
"product_id": "git-core-0:2.31.1-6.el9_0.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core@2.31.1-6.el9_0.1?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-0:2.31.1-6.el9_0.1.ppc64le",
"product": {
"name": "git-credential-libsecret-0:2.31.1-6.el9_0.1.ppc64le",
"product_id": "git-credential-libsecret-0:2.31.1-6.el9_0.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret@2.31.1-6.el9_0.1?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-daemon-0:2.31.1-6.el9_0.1.ppc64le",
"product": {
"name": "git-daemon-0:2.31.1-6.el9_0.1.ppc64le",
"product_id": "git-daemon-0:2.31.1-6.el9_0.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon@2.31.1-6.el9_0.1?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-subtree-0:2.31.1-6.el9_0.1.ppc64le",
"product": {
"name": "git-subtree-0:2.31.1-6.el9_0.1.ppc64le",
"product_id": "git-subtree-0:2.31.1-6.el9_0.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-subtree@2.31.1-6.el9_0.1?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-debugsource-0:2.31.1-6.el9_0.1.ppc64le",
"product": {
"name": "git-debugsource-0:2.31.1-6.el9_0.1.ppc64le",
"product_id": "git-debugsource-0:2.31.1-6.el9_0.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debugsource@2.31.1-6.el9_0.1?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-core-debuginfo-0:2.31.1-6.el9_0.1.ppc64le",
"product": {
"name": "git-core-debuginfo-0:2.31.1-6.el9_0.1.ppc64le",
"product_id": "git-core-debuginfo-0:2.31.1-6.el9_0.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core-debuginfo@2.31.1-6.el9_0.1?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-debuginfo-0:2.31.1-6.el9_0.1.ppc64le",
"product": {
"name": "git-credential-libsecret-debuginfo-0:2.31.1-6.el9_0.1.ppc64le",
"product_id": "git-credential-libsecret-debuginfo-0:2.31.1-6.el9_0.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret-debuginfo@2.31.1-6.el9_0.1?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-daemon-debuginfo-0:2.31.1-6.el9_0.1.ppc64le",
"product": {
"name": "git-daemon-debuginfo-0:2.31.1-6.el9_0.1.ppc64le",
"product_id": "git-daemon-debuginfo-0:2.31.1-6.el9_0.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon-debuginfo@2.31.1-6.el9_0.1?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-debuginfo-0:2.31.1-6.el9_0.1.ppc64le",
"product": {
"name": "git-debuginfo-0:2.31.1-6.el9_0.1.ppc64le",
"product_id": "git-debuginfo-0:2.31.1-6.el9_0.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debuginfo@2.31.1-6.el9_0.1?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "git-0:2.31.1-6.el9_0.1.x86_64",
"product": {
"name": "git-0:2.31.1-6.el9_0.1.x86_64",
"product_id": "git-0:2.31.1-6.el9_0.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git@2.31.1-6.el9_0.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-core-0:2.31.1-6.el9_0.1.x86_64",
"product": {
"name": "git-core-0:2.31.1-6.el9_0.1.x86_64",
"product_id": "git-core-0:2.31.1-6.el9_0.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core@2.31.1-6.el9_0.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-0:2.31.1-6.el9_0.1.x86_64",
"product": {
"name": "git-credential-libsecret-0:2.31.1-6.el9_0.1.x86_64",
"product_id": "git-credential-libsecret-0:2.31.1-6.el9_0.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret@2.31.1-6.el9_0.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-daemon-0:2.31.1-6.el9_0.1.x86_64",
"product": {
"name": "git-daemon-0:2.31.1-6.el9_0.1.x86_64",
"product_id": "git-daemon-0:2.31.1-6.el9_0.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon@2.31.1-6.el9_0.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-subtree-0:2.31.1-6.el9_0.1.x86_64",
"product": {
"name": "git-subtree-0:2.31.1-6.el9_0.1.x86_64",
"product_id": "git-subtree-0:2.31.1-6.el9_0.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-subtree@2.31.1-6.el9_0.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-debugsource-0:2.31.1-6.el9_0.1.x86_64",
"product": {
"name": "git-debugsource-0:2.31.1-6.el9_0.1.x86_64",
"product_id": "git-debugsource-0:2.31.1-6.el9_0.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debugsource@2.31.1-6.el9_0.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-core-debuginfo-0:2.31.1-6.el9_0.1.x86_64",
"product": {
"name": "git-core-debuginfo-0:2.31.1-6.el9_0.1.x86_64",
"product_id": "git-core-debuginfo-0:2.31.1-6.el9_0.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core-debuginfo@2.31.1-6.el9_0.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-debuginfo-0:2.31.1-6.el9_0.1.x86_64",
"product": {
"name": "git-credential-libsecret-debuginfo-0:2.31.1-6.el9_0.1.x86_64",
"product_id": "git-credential-libsecret-debuginfo-0:2.31.1-6.el9_0.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret-debuginfo@2.31.1-6.el9_0.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-daemon-debuginfo-0:2.31.1-6.el9_0.1.x86_64",
"product": {
"name": "git-daemon-debuginfo-0:2.31.1-6.el9_0.1.x86_64",
"product_id": "git-daemon-debuginfo-0:2.31.1-6.el9_0.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon-debuginfo@2.31.1-6.el9_0.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-debuginfo-0:2.31.1-6.el9_0.1.x86_64",
"product": {
"name": "git-debuginfo-0:2.31.1-6.el9_0.1.x86_64",
"product_id": "git-debuginfo-0:2.31.1-6.el9_0.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debuginfo@2.31.1-6.el9_0.1?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "git-0:2.31.1-6.el9_0.1.s390x",
"product": {
"name": "git-0:2.31.1-6.el9_0.1.s390x",
"product_id": "git-0:2.31.1-6.el9_0.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git@2.31.1-6.el9_0.1?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-core-0:2.31.1-6.el9_0.1.s390x",
"product": {
"name": "git-core-0:2.31.1-6.el9_0.1.s390x",
"product_id": "git-core-0:2.31.1-6.el9_0.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core@2.31.1-6.el9_0.1?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-0:2.31.1-6.el9_0.1.s390x",
"product": {
"name": "git-credential-libsecret-0:2.31.1-6.el9_0.1.s390x",
"product_id": "git-credential-libsecret-0:2.31.1-6.el9_0.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret@2.31.1-6.el9_0.1?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-daemon-0:2.31.1-6.el9_0.1.s390x",
"product": {
"name": "git-daemon-0:2.31.1-6.el9_0.1.s390x",
"product_id": "git-daemon-0:2.31.1-6.el9_0.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon@2.31.1-6.el9_0.1?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-subtree-0:2.31.1-6.el9_0.1.s390x",
"product": {
"name": "git-subtree-0:2.31.1-6.el9_0.1.s390x",
"product_id": "git-subtree-0:2.31.1-6.el9_0.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-subtree@2.31.1-6.el9_0.1?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-debugsource-0:2.31.1-6.el9_0.1.s390x",
"product": {
"name": "git-debugsource-0:2.31.1-6.el9_0.1.s390x",
"product_id": "git-debugsource-0:2.31.1-6.el9_0.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debugsource@2.31.1-6.el9_0.1?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-core-debuginfo-0:2.31.1-6.el9_0.1.s390x",
"product": {
"name": "git-core-debuginfo-0:2.31.1-6.el9_0.1.s390x",
"product_id": "git-core-debuginfo-0:2.31.1-6.el9_0.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core-debuginfo@2.31.1-6.el9_0.1?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-debuginfo-0:2.31.1-6.el9_0.1.s390x",
"product": {
"name": "git-credential-libsecret-debuginfo-0:2.31.1-6.el9_0.1.s390x",
"product_id": "git-credential-libsecret-debuginfo-0:2.31.1-6.el9_0.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret-debuginfo@2.31.1-6.el9_0.1?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-daemon-debuginfo-0:2.31.1-6.el9_0.1.s390x",
"product": {
"name": "git-daemon-debuginfo-0:2.31.1-6.el9_0.1.s390x",
"product_id": "git-daemon-debuginfo-0:2.31.1-6.el9_0.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon-debuginfo@2.31.1-6.el9_0.1?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-debuginfo-0:2.31.1-6.el9_0.1.s390x",
"product": {
"name": "git-debuginfo-0:2.31.1-6.el9_0.1.s390x",
"product_id": "git-debuginfo-0:2.31.1-6.el9_0.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debuginfo@2.31.1-6.el9_0.1?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "git-all-0:2.31.1-6.el9_0.1.noarch",
"product": {
"name": "git-all-0:2.31.1-6.el9_0.1.noarch",
"product_id": "git-all-0:2.31.1-6.el9_0.1.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-all@2.31.1-6.el9_0.1?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "git-core-doc-0:2.31.1-6.el9_0.1.noarch",
"product": {
"name": "git-core-doc-0:2.31.1-6.el9_0.1.noarch",
"product_id": "git-core-doc-0:2.31.1-6.el9_0.1.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core-doc@2.31.1-6.el9_0.1?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "git-email-0:2.31.1-6.el9_0.1.noarch",
"product": {
"name": "git-email-0:2.31.1-6.el9_0.1.noarch",
"product_id": "git-email-0:2.31.1-6.el9_0.1.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-email@2.31.1-6.el9_0.1?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "git-gui-0:2.31.1-6.el9_0.1.noarch",
"product": {
"name": "git-gui-0:2.31.1-6.el9_0.1.noarch",
"product_id": "git-gui-0:2.31.1-6.el9_0.1.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-gui@2.31.1-6.el9_0.1?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "git-instaweb-0:2.31.1-6.el9_0.1.noarch",
"product": {
"name": "git-instaweb-0:2.31.1-6.el9_0.1.noarch",
"product_id": "git-instaweb-0:2.31.1-6.el9_0.1.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-instaweb@2.31.1-6.el9_0.1?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "git-svn-0:2.31.1-6.el9_0.1.noarch",
"product": {
"name": "git-svn-0:2.31.1-6.el9_0.1.noarch",
"product_id": "git-svn-0:2.31.1-6.el9_0.1.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-svn@2.31.1-6.el9_0.1?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "gitk-0:2.31.1-6.el9_0.1.noarch",
"product": {
"name": "gitk-0:2.31.1-6.el9_0.1.noarch",
"product_id": "gitk-0:2.31.1-6.el9_0.1.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/gitk@2.31.1-6.el9_0.1?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "gitweb-0:2.31.1-6.el9_0.1.noarch",
"product": {
"name": "gitweb-0:2.31.1-6.el9_0.1.noarch",
"product_id": "gitweb-0:2.31.1-6.el9_0.1.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/gitweb@2.31.1-6.el9_0.1?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "perl-Git-0:2.31.1-6.el9_0.1.noarch",
"product": {
"name": "perl-Git-0:2.31.1-6.el9_0.1.noarch",
"product_id": "perl-Git-0:2.31.1-6.el9_0.1.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/perl-Git@2.31.1-6.el9_0.1?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "perl-Git-SVN-0:2.31.1-6.el9_0.1.noarch",
"product": {
"name": "perl-Git-SVN-0:2.31.1-6.el9_0.1.noarch",
"product_id": "perl-Git-SVN-0:2.31.1-6.el9_0.1.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/perl-Git-SVN@2.31.1-6.el9_0.1?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "git-0:2.31.1-6.el9_0.1.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:git-0:2.31.1-6.el9_0.1.aarch64"
},
"product_reference": "git-0:2.31.1-6.el9_0.1.aarch64",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-0:2.31.1-6.el9_0.1.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:git-0:2.31.1-6.el9_0.1.ppc64le"
},
"product_reference": "git-0:2.31.1-6.el9_0.1.ppc64le",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-0:2.31.1-6.el9_0.1.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:git-0:2.31.1-6.el9_0.1.s390x"
},
"product_reference": "git-0:2.31.1-6.el9_0.1.s390x",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-0:2.31.1-6.el9_0.1.src as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:git-0:2.31.1-6.el9_0.1.src"
},
"product_reference": "git-0:2.31.1-6.el9_0.1.src",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-0:2.31.1-6.el9_0.1.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:git-0:2.31.1-6.el9_0.1.x86_64"
},
"product_reference": "git-0:2.31.1-6.el9_0.1.x86_64",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-all-0:2.31.1-6.el9_0.1.noarch as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:git-all-0:2.31.1-6.el9_0.1.noarch"
},
"product_reference": "git-all-0:2.31.1-6.el9_0.1.noarch",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-0:2.31.1-6.el9_0.1.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:git-core-0:2.31.1-6.el9_0.1.aarch64"
},
"product_reference": "git-core-0:2.31.1-6.el9_0.1.aarch64",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-0:2.31.1-6.el9_0.1.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:git-core-0:2.31.1-6.el9_0.1.ppc64le"
},
"product_reference": "git-core-0:2.31.1-6.el9_0.1.ppc64le",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-0:2.31.1-6.el9_0.1.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:git-core-0:2.31.1-6.el9_0.1.s390x"
},
"product_reference": "git-core-0:2.31.1-6.el9_0.1.s390x",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-0:2.31.1-6.el9_0.1.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:git-core-0:2.31.1-6.el9_0.1.x86_64"
},
"product_reference": "git-core-0:2.31.1-6.el9_0.1.x86_64",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-debuginfo-0:2.31.1-6.el9_0.1.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:git-core-debuginfo-0:2.31.1-6.el9_0.1.aarch64"
},
"product_reference": "git-core-debuginfo-0:2.31.1-6.el9_0.1.aarch64",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-debuginfo-0:2.31.1-6.el9_0.1.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:git-core-debuginfo-0:2.31.1-6.el9_0.1.ppc64le"
},
"product_reference": "git-core-debuginfo-0:2.31.1-6.el9_0.1.ppc64le",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-debuginfo-0:2.31.1-6.el9_0.1.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:git-core-debuginfo-0:2.31.1-6.el9_0.1.s390x"
},
"product_reference": "git-core-debuginfo-0:2.31.1-6.el9_0.1.s390x",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-debuginfo-0:2.31.1-6.el9_0.1.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:git-core-debuginfo-0:2.31.1-6.el9_0.1.x86_64"
},
"product_reference": "git-core-debuginfo-0:2.31.1-6.el9_0.1.x86_64",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-doc-0:2.31.1-6.el9_0.1.noarch as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:git-core-doc-0:2.31.1-6.el9_0.1.noarch"
},
"product_reference": "git-core-doc-0:2.31.1-6.el9_0.1.noarch",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-0:2.31.1-6.el9_0.1.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:git-credential-libsecret-0:2.31.1-6.el9_0.1.aarch64"
},
"product_reference": "git-credential-libsecret-0:2.31.1-6.el9_0.1.aarch64",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-0:2.31.1-6.el9_0.1.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:git-credential-libsecret-0:2.31.1-6.el9_0.1.ppc64le"
},
"product_reference": "git-credential-libsecret-0:2.31.1-6.el9_0.1.ppc64le",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-0:2.31.1-6.el9_0.1.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:git-credential-libsecret-0:2.31.1-6.el9_0.1.s390x"
},
"product_reference": "git-credential-libsecret-0:2.31.1-6.el9_0.1.s390x",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-0:2.31.1-6.el9_0.1.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:git-credential-libsecret-0:2.31.1-6.el9_0.1.x86_64"
},
"product_reference": "git-credential-libsecret-0:2.31.1-6.el9_0.1.x86_64",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-debuginfo-0:2.31.1-6.el9_0.1.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:git-credential-libsecret-debuginfo-0:2.31.1-6.el9_0.1.aarch64"
},
"product_reference": "git-credential-libsecret-debuginfo-0:2.31.1-6.el9_0.1.aarch64",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-debuginfo-0:2.31.1-6.el9_0.1.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:git-credential-libsecret-debuginfo-0:2.31.1-6.el9_0.1.ppc64le"
},
"product_reference": "git-credential-libsecret-debuginfo-0:2.31.1-6.el9_0.1.ppc64le",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-debuginfo-0:2.31.1-6.el9_0.1.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:git-credential-libsecret-debuginfo-0:2.31.1-6.el9_0.1.s390x"
},
"product_reference": "git-credential-libsecret-debuginfo-0:2.31.1-6.el9_0.1.s390x",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-debuginfo-0:2.31.1-6.el9_0.1.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:git-credential-libsecret-debuginfo-0:2.31.1-6.el9_0.1.x86_64"
},
"product_reference": "git-credential-libsecret-debuginfo-0:2.31.1-6.el9_0.1.x86_64",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-0:2.31.1-6.el9_0.1.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:git-daemon-0:2.31.1-6.el9_0.1.aarch64"
},
"product_reference": "git-daemon-0:2.31.1-6.el9_0.1.aarch64",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-0:2.31.1-6.el9_0.1.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:git-daemon-0:2.31.1-6.el9_0.1.ppc64le"
},
"product_reference": "git-daemon-0:2.31.1-6.el9_0.1.ppc64le",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-0:2.31.1-6.el9_0.1.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:git-daemon-0:2.31.1-6.el9_0.1.s390x"
},
"product_reference": "git-daemon-0:2.31.1-6.el9_0.1.s390x",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-0:2.31.1-6.el9_0.1.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:git-daemon-0:2.31.1-6.el9_0.1.x86_64"
},
"product_reference": "git-daemon-0:2.31.1-6.el9_0.1.x86_64",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-debuginfo-0:2.31.1-6.el9_0.1.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:git-daemon-debuginfo-0:2.31.1-6.el9_0.1.aarch64"
},
"product_reference": "git-daemon-debuginfo-0:2.31.1-6.el9_0.1.aarch64",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-debuginfo-0:2.31.1-6.el9_0.1.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:git-daemon-debuginfo-0:2.31.1-6.el9_0.1.ppc64le"
},
"product_reference": "git-daemon-debuginfo-0:2.31.1-6.el9_0.1.ppc64le",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-debuginfo-0:2.31.1-6.el9_0.1.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:git-daemon-debuginfo-0:2.31.1-6.el9_0.1.s390x"
},
"product_reference": "git-daemon-debuginfo-0:2.31.1-6.el9_0.1.s390x",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-debuginfo-0:2.31.1-6.el9_0.1.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:git-daemon-debuginfo-0:2.31.1-6.el9_0.1.x86_64"
},
"product_reference": "git-daemon-debuginfo-0:2.31.1-6.el9_0.1.x86_64",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debuginfo-0:2.31.1-6.el9_0.1.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:git-debuginfo-0:2.31.1-6.el9_0.1.aarch64"
},
"product_reference": "git-debuginfo-0:2.31.1-6.el9_0.1.aarch64",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debuginfo-0:2.31.1-6.el9_0.1.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:git-debuginfo-0:2.31.1-6.el9_0.1.ppc64le"
},
"product_reference": "git-debuginfo-0:2.31.1-6.el9_0.1.ppc64le",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debuginfo-0:2.31.1-6.el9_0.1.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:git-debuginfo-0:2.31.1-6.el9_0.1.s390x"
},
"product_reference": "git-debuginfo-0:2.31.1-6.el9_0.1.s390x",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debuginfo-0:2.31.1-6.el9_0.1.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:git-debuginfo-0:2.31.1-6.el9_0.1.x86_64"
},
"product_reference": "git-debuginfo-0:2.31.1-6.el9_0.1.x86_64",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debugsource-0:2.31.1-6.el9_0.1.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:git-debugsource-0:2.31.1-6.el9_0.1.aarch64"
},
"product_reference": "git-debugsource-0:2.31.1-6.el9_0.1.aarch64",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debugsource-0:2.31.1-6.el9_0.1.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:git-debugsource-0:2.31.1-6.el9_0.1.ppc64le"
},
"product_reference": "git-debugsource-0:2.31.1-6.el9_0.1.ppc64le",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debugsource-0:2.31.1-6.el9_0.1.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:git-debugsource-0:2.31.1-6.el9_0.1.s390x"
},
"product_reference": "git-debugsource-0:2.31.1-6.el9_0.1.s390x",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debugsource-0:2.31.1-6.el9_0.1.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:git-debugsource-0:2.31.1-6.el9_0.1.x86_64"
},
"product_reference": "git-debugsource-0:2.31.1-6.el9_0.1.x86_64",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-0:2.31.1-6.el9_0.1.noarch as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:git-email-0:2.31.1-6.el9_0.1.noarch"
},
"product_reference": "git-email-0:2.31.1-6.el9_0.1.noarch",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-0:2.31.1-6.el9_0.1.noarch as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:git-gui-0:2.31.1-6.el9_0.1.noarch"
},
"product_reference": "git-gui-0:2.31.1-6.el9_0.1.noarch",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-instaweb-0:2.31.1-6.el9_0.1.noarch as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:git-instaweb-0:2.31.1-6.el9_0.1.noarch"
},
"product_reference": "git-instaweb-0:2.31.1-6.el9_0.1.noarch",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-subtree-0:2.31.1-6.el9_0.1.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:git-subtree-0:2.31.1-6.el9_0.1.aarch64"
},
"product_reference": "git-subtree-0:2.31.1-6.el9_0.1.aarch64",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-subtree-0:2.31.1-6.el9_0.1.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:git-subtree-0:2.31.1-6.el9_0.1.ppc64le"
},
"product_reference": "git-subtree-0:2.31.1-6.el9_0.1.ppc64le",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-subtree-0:2.31.1-6.el9_0.1.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:git-subtree-0:2.31.1-6.el9_0.1.s390x"
},
"product_reference": "git-subtree-0:2.31.1-6.el9_0.1.s390x",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-subtree-0:2.31.1-6.el9_0.1.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:git-subtree-0:2.31.1-6.el9_0.1.x86_64"
},
"product_reference": "git-subtree-0:2.31.1-6.el9_0.1.x86_64",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-0:2.31.1-6.el9_0.1.noarch as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:git-svn-0:2.31.1-6.el9_0.1.noarch"
},
"product_reference": "git-svn-0:2.31.1-6.el9_0.1.noarch",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-0:2.31.1-6.el9_0.1.noarch as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:gitk-0:2.31.1-6.el9_0.1.noarch"
},
"product_reference": "gitk-0:2.31.1-6.el9_0.1.noarch",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitweb-0:2.31.1-6.el9_0.1.noarch as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:gitweb-0:2.31.1-6.el9_0.1.noarch"
},
"product_reference": "gitweb-0:2.31.1-6.el9_0.1.noarch",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-0:2.31.1-6.el9_0.1.noarch as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:perl-Git-0:2.31.1-6.el9_0.1.noarch"
},
"product_reference": "perl-Git-0:2.31.1-6.el9_0.1.noarch",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-SVN-0:2.31.1-6.el9_0.1.noarch as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:perl-Git-SVN-0:2.31.1-6.el9_0.1.noarch"
},
"product_reference": "perl-Git-SVN-0:2.31.1-6.el9_0.1.noarch",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-48384",
"cwe": {
"id": "CWE-59",
"name": "Improper Link Resolution Before File Access (\u0027Link Following\u0027)"
},
"discovery_date": "2025-07-08T19:00:48.297925+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2378806"
}
],
"notes": [
{
"category": "description",
"text": "A line-end handling flaw was found in Git. When writing a config entry, values with a trailing carriage return (CR) are not quoted, resulting in the CR being lost when the config is read later. When initializing a submodule, if the submodule path contains a trailing CR, the altered path is read, resulting in the submodule being checked out to an incorrect location.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "git: Git arbitrary code execution",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability marked as Important and not Moderate flaw because it undermines Git\u2019s path and config integrity by allowing carriage return (\\r) injection to manipulate submodule checkout behavior. Git previously failed to quote config values containing trailing CR, causing the value to be misinterpreted when read back. In the context of submodules, this leads to incorrect path resolution, allowing an attacker to redirect the checkout path via a symlink to a sensitive directory like .git/modules/\u003csubmodule\u003e/hooks. If an executable post-checkout hook exists there, it could be inadvertently executed, resulting in arbitrary code execution during submodule operations. This is particularly dangerous in automated CI/CD pipelines or multi-repo projects where submodules are initialized or updated without manual inspection.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.0.0.Z.E4S:git-0:2.31.1-6.el9_0.1.aarch64",
"AppStream-9.0.0.Z.E4S:git-0:2.31.1-6.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.E4S:git-0:2.31.1-6.el9_0.1.s390x",
"AppStream-9.0.0.Z.E4S:git-0:2.31.1-6.el9_0.1.src",
"AppStream-9.0.0.Z.E4S:git-0:2.31.1-6.el9_0.1.x86_64",
"AppStream-9.0.0.Z.E4S:git-all-0:2.31.1-6.el9_0.1.noarch",
"AppStream-9.0.0.Z.E4S:git-core-0:2.31.1-6.el9_0.1.aarch64",
"AppStream-9.0.0.Z.E4S:git-core-0:2.31.1-6.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.E4S:git-core-0:2.31.1-6.el9_0.1.s390x",
"AppStream-9.0.0.Z.E4S:git-core-0:2.31.1-6.el9_0.1.x86_64",
"AppStream-9.0.0.Z.E4S:git-core-debuginfo-0:2.31.1-6.el9_0.1.aarch64",
"AppStream-9.0.0.Z.E4S:git-core-debuginfo-0:2.31.1-6.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.E4S:git-core-debuginfo-0:2.31.1-6.el9_0.1.s390x",
"AppStream-9.0.0.Z.E4S:git-core-debuginfo-0:2.31.1-6.el9_0.1.x86_64",
"AppStream-9.0.0.Z.E4S:git-core-doc-0:2.31.1-6.el9_0.1.noarch",
"AppStream-9.0.0.Z.E4S:git-credential-libsecret-0:2.31.1-6.el9_0.1.aarch64",
"AppStream-9.0.0.Z.E4S:git-credential-libsecret-0:2.31.1-6.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.E4S:git-credential-libsecret-0:2.31.1-6.el9_0.1.s390x",
"AppStream-9.0.0.Z.E4S:git-credential-libsecret-0:2.31.1-6.el9_0.1.x86_64",
"AppStream-9.0.0.Z.E4S:git-credential-libsecret-debuginfo-0:2.31.1-6.el9_0.1.aarch64",
"AppStream-9.0.0.Z.E4S:git-credential-libsecret-debuginfo-0:2.31.1-6.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.E4S:git-credential-libsecret-debuginfo-0:2.31.1-6.el9_0.1.s390x",
"AppStream-9.0.0.Z.E4S:git-credential-libsecret-debuginfo-0:2.31.1-6.el9_0.1.x86_64",
"AppStream-9.0.0.Z.E4S:git-daemon-0:2.31.1-6.el9_0.1.aarch64",
"AppStream-9.0.0.Z.E4S:git-daemon-0:2.31.1-6.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.E4S:git-daemon-0:2.31.1-6.el9_0.1.s390x",
"AppStream-9.0.0.Z.E4S:git-daemon-0:2.31.1-6.el9_0.1.x86_64",
"AppStream-9.0.0.Z.E4S:git-daemon-debuginfo-0:2.31.1-6.el9_0.1.aarch64",
"AppStream-9.0.0.Z.E4S:git-daemon-debuginfo-0:2.31.1-6.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.E4S:git-daemon-debuginfo-0:2.31.1-6.el9_0.1.s390x",
"AppStream-9.0.0.Z.E4S:git-daemon-debuginfo-0:2.31.1-6.el9_0.1.x86_64",
"AppStream-9.0.0.Z.E4S:git-debuginfo-0:2.31.1-6.el9_0.1.aarch64",
"AppStream-9.0.0.Z.E4S:git-debuginfo-0:2.31.1-6.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.E4S:git-debuginfo-0:2.31.1-6.el9_0.1.s390x",
"AppStream-9.0.0.Z.E4S:git-debuginfo-0:2.31.1-6.el9_0.1.x86_64",
"AppStream-9.0.0.Z.E4S:git-debugsource-0:2.31.1-6.el9_0.1.aarch64",
"AppStream-9.0.0.Z.E4S:git-debugsource-0:2.31.1-6.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.E4S:git-debugsource-0:2.31.1-6.el9_0.1.s390x",
"AppStream-9.0.0.Z.E4S:git-debugsource-0:2.31.1-6.el9_0.1.x86_64",
"AppStream-9.0.0.Z.E4S:git-email-0:2.31.1-6.el9_0.1.noarch",
"AppStream-9.0.0.Z.E4S:git-gui-0:2.31.1-6.el9_0.1.noarch",
"AppStream-9.0.0.Z.E4S:git-instaweb-0:2.31.1-6.el9_0.1.noarch",
"AppStream-9.0.0.Z.E4S:git-subtree-0:2.31.1-6.el9_0.1.aarch64",
"AppStream-9.0.0.Z.E4S:git-subtree-0:2.31.1-6.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.E4S:git-subtree-0:2.31.1-6.el9_0.1.s390x",
"AppStream-9.0.0.Z.E4S:git-subtree-0:2.31.1-6.el9_0.1.x86_64",
"AppStream-9.0.0.Z.E4S:git-svn-0:2.31.1-6.el9_0.1.noarch",
"AppStream-9.0.0.Z.E4S:gitk-0:2.31.1-6.el9_0.1.noarch",
"AppStream-9.0.0.Z.E4S:gitweb-0:2.31.1-6.el9_0.1.noarch",
"AppStream-9.0.0.Z.E4S:perl-Git-0:2.31.1-6.el9_0.1.noarch",
"AppStream-9.0.0.Z.E4S:perl-Git-SVN-0:2.31.1-6.el9_0.1.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-48384"
},
{
"category": "external",
"summary": "RHBZ#2378806",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2378806"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-48384",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-48384"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-48384",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-48384"
},
{
"category": "external",
"summary": "https://dgl.cx/2025/07/git-clone-submodule-cve-2025-48384",
"url": "https://dgl.cx/2025/07/git-clone-submodule-cve-2025-48384"
},
{
"category": "external",
"summary": "https://github.com/git/git/commit/05e9cd64ee23bbadcea6bcffd6660ed02b8eab89",
"url": "https://github.com/git/git/commit/05e9cd64ee23bbadcea6bcffd6660ed02b8eab89"
},
{
"category": "external",
"summary": "https://github.com/git/git/security/advisories/GHSA-vwqx-4fm8-6qc9",
"url": "https://github.com/git/git/security/advisories/GHSA-vwqx-4fm8-6qc9"
},
{
"category": "external",
"summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog",
"url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
}
],
"release_date": "2025-07-08T18:23:48.710000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-07-28T01:20:45+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.0.0.Z.E4S:git-0:2.31.1-6.el9_0.1.aarch64",
"AppStream-9.0.0.Z.E4S:git-0:2.31.1-6.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.E4S:git-0:2.31.1-6.el9_0.1.s390x",
"AppStream-9.0.0.Z.E4S:git-0:2.31.1-6.el9_0.1.src",
"AppStream-9.0.0.Z.E4S:git-0:2.31.1-6.el9_0.1.x86_64",
"AppStream-9.0.0.Z.E4S:git-all-0:2.31.1-6.el9_0.1.noarch",
"AppStream-9.0.0.Z.E4S:git-core-0:2.31.1-6.el9_0.1.aarch64",
"AppStream-9.0.0.Z.E4S:git-core-0:2.31.1-6.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.E4S:git-core-0:2.31.1-6.el9_0.1.s390x",
"AppStream-9.0.0.Z.E4S:git-core-0:2.31.1-6.el9_0.1.x86_64",
"AppStream-9.0.0.Z.E4S:git-core-debuginfo-0:2.31.1-6.el9_0.1.aarch64",
"AppStream-9.0.0.Z.E4S:git-core-debuginfo-0:2.31.1-6.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.E4S:git-core-debuginfo-0:2.31.1-6.el9_0.1.s390x",
"AppStream-9.0.0.Z.E4S:git-core-debuginfo-0:2.31.1-6.el9_0.1.x86_64",
"AppStream-9.0.0.Z.E4S:git-core-doc-0:2.31.1-6.el9_0.1.noarch",
"AppStream-9.0.0.Z.E4S:git-credential-libsecret-0:2.31.1-6.el9_0.1.aarch64",
"AppStream-9.0.0.Z.E4S:git-credential-libsecret-0:2.31.1-6.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.E4S:git-credential-libsecret-0:2.31.1-6.el9_0.1.s390x",
"AppStream-9.0.0.Z.E4S:git-credential-libsecret-0:2.31.1-6.el9_0.1.x86_64",
"AppStream-9.0.0.Z.E4S:git-credential-libsecret-debuginfo-0:2.31.1-6.el9_0.1.aarch64",
"AppStream-9.0.0.Z.E4S:git-credential-libsecret-debuginfo-0:2.31.1-6.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.E4S:git-credential-libsecret-debuginfo-0:2.31.1-6.el9_0.1.s390x",
"AppStream-9.0.0.Z.E4S:git-credential-libsecret-debuginfo-0:2.31.1-6.el9_0.1.x86_64",
"AppStream-9.0.0.Z.E4S:git-daemon-0:2.31.1-6.el9_0.1.aarch64",
"AppStream-9.0.0.Z.E4S:git-daemon-0:2.31.1-6.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.E4S:git-daemon-0:2.31.1-6.el9_0.1.s390x",
"AppStream-9.0.0.Z.E4S:git-daemon-0:2.31.1-6.el9_0.1.x86_64",
"AppStream-9.0.0.Z.E4S:git-daemon-debuginfo-0:2.31.1-6.el9_0.1.aarch64",
"AppStream-9.0.0.Z.E4S:git-daemon-debuginfo-0:2.31.1-6.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.E4S:git-daemon-debuginfo-0:2.31.1-6.el9_0.1.s390x",
"AppStream-9.0.0.Z.E4S:git-daemon-debuginfo-0:2.31.1-6.el9_0.1.x86_64",
"AppStream-9.0.0.Z.E4S:git-debuginfo-0:2.31.1-6.el9_0.1.aarch64",
"AppStream-9.0.0.Z.E4S:git-debuginfo-0:2.31.1-6.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.E4S:git-debuginfo-0:2.31.1-6.el9_0.1.s390x",
"AppStream-9.0.0.Z.E4S:git-debuginfo-0:2.31.1-6.el9_0.1.x86_64",
"AppStream-9.0.0.Z.E4S:git-debugsource-0:2.31.1-6.el9_0.1.aarch64",
"AppStream-9.0.0.Z.E4S:git-debugsource-0:2.31.1-6.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.E4S:git-debugsource-0:2.31.1-6.el9_0.1.s390x",
"AppStream-9.0.0.Z.E4S:git-debugsource-0:2.31.1-6.el9_0.1.x86_64",
"AppStream-9.0.0.Z.E4S:git-email-0:2.31.1-6.el9_0.1.noarch",
"AppStream-9.0.0.Z.E4S:git-gui-0:2.31.1-6.el9_0.1.noarch",
"AppStream-9.0.0.Z.E4S:git-instaweb-0:2.31.1-6.el9_0.1.noarch",
"AppStream-9.0.0.Z.E4S:git-subtree-0:2.31.1-6.el9_0.1.aarch64",
"AppStream-9.0.0.Z.E4S:git-subtree-0:2.31.1-6.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.E4S:git-subtree-0:2.31.1-6.el9_0.1.s390x",
"AppStream-9.0.0.Z.E4S:git-subtree-0:2.31.1-6.el9_0.1.x86_64",
"AppStream-9.0.0.Z.E4S:git-svn-0:2.31.1-6.el9_0.1.noarch",
"AppStream-9.0.0.Z.E4S:gitk-0:2.31.1-6.el9_0.1.noarch",
"AppStream-9.0.0.Z.E4S:gitweb-0:2.31.1-6.el9_0.1.noarch",
"AppStream-9.0.0.Z.E4S:perl-Git-0:2.31.1-6.el9_0.1.noarch",
"AppStream-9.0.0.Z.E4S:perl-Git-SVN-0:2.31.1-6.el9_0.1.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:11796"
},
{
"category": "workaround",
"details": "To mitigate this issue, avoid using --recurse-submodules when cloning repositories from untrusted sources; instead, clone normally and only initialize or update submodules manually after reviewing them.",
"product_ids": [
"AppStream-9.0.0.Z.E4S:git-0:2.31.1-6.el9_0.1.aarch64",
"AppStream-9.0.0.Z.E4S:git-0:2.31.1-6.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.E4S:git-0:2.31.1-6.el9_0.1.s390x",
"AppStream-9.0.0.Z.E4S:git-0:2.31.1-6.el9_0.1.src",
"AppStream-9.0.0.Z.E4S:git-0:2.31.1-6.el9_0.1.x86_64",
"AppStream-9.0.0.Z.E4S:git-all-0:2.31.1-6.el9_0.1.noarch",
"AppStream-9.0.0.Z.E4S:git-core-0:2.31.1-6.el9_0.1.aarch64",
"AppStream-9.0.0.Z.E4S:git-core-0:2.31.1-6.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.E4S:git-core-0:2.31.1-6.el9_0.1.s390x",
"AppStream-9.0.0.Z.E4S:git-core-0:2.31.1-6.el9_0.1.x86_64",
"AppStream-9.0.0.Z.E4S:git-core-debuginfo-0:2.31.1-6.el9_0.1.aarch64",
"AppStream-9.0.0.Z.E4S:git-core-debuginfo-0:2.31.1-6.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.E4S:git-core-debuginfo-0:2.31.1-6.el9_0.1.s390x",
"AppStream-9.0.0.Z.E4S:git-core-debuginfo-0:2.31.1-6.el9_0.1.x86_64",
"AppStream-9.0.0.Z.E4S:git-core-doc-0:2.31.1-6.el9_0.1.noarch",
"AppStream-9.0.0.Z.E4S:git-credential-libsecret-0:2.31.1-6.el9_0.1.aarch64",
"AppStream-9.0.0.Z.E4S:git-credential-libsecret-0:2.31.1-6.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.E4S:git-credential-libsecret-0:2.31.1-6.el9_0.1.s390x",
"AppStream-9.0.0.Z.E4S:git-credential-libsecret-0:2.31.1-6.el9_0.1.x86_64",
"AppStream-9.0.0.Z.E4S:git-credential-libsecret-debuginfo-0:2.31.1-6.el9_0.1.aarch64",
"AppStream-9.0.0.Z.E4S:git-credential-libsecret-debuginfo-0:2.31.1-6.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.E4S:git-credential-libsecret-debuginfo-0:2.31.1-6.el9_0.1.s390x",
"AppStream-9.0.0.Z.E4S:git-credential-libsecret-debuginfo-0:2.31.1-6.el9_0.1.x86_64",
"AppStream-9.0.0.Z.E4S:git-daemon-0:2.31.1-6.el9_0.1.aarch64",
"AppStream-9.0.0.Z.E4S:git-daemon-0:2.31.1-6.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.E4S:git-daemon-0:2.31.1-6.el9_0.1.s390x",
"AppStream-9.0.0.Z.E4S:git-daemon-0:2.31.1-6.el9_0.1.x86_64",
"AppStream-9.0.0.Z.E4S:git-daemon-debuginfo-0:2.31.1-6.el9_0.1.aarch64",
"AppStream-9.0.0.Z.E4S:git-daemon-debuginfo-0:2.31.1-6.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.E4S:git-daemon-debuginfo-0:2.31.1-6.el9_0.1.s390x",
"AppStream-9.0.0.Z.E4S:git-daemon-debuginfo-0:2.31.1-6.el9_0.1.x86_64",
"AppStream-9.0.0.Z.E4S:git-debuginfo-0:2.31.1-6.el9_0.1.aarch64",
"AppStream-9.0.0.Z.E4S:git-debuginfo-0:2.31.1-6.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.E4S:git-debuginfo-0:2.31.1-6.el9_0.1.s390x",
"AppStream-9.0.0.Z.E4S:git-debuginfo-0:2.31.1-6.el9_0.1.x86_64",
"AppStream-9.0.0.Z.E4S:git-debugsource-0:2.31.1-6.el9_0.1.aarch64",
"AppStream-9.0.0.Z.E4S:git-debugsource-0:2.31.1-6.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.E4S:git-debugsource-0:2.31.1-6.el9_0.1.s390x",
"AppStream-9.0.0.Z.E4S:git-debugsource-0:2.31.1-6.el9_0.1.x86_64",
"AppStream-9.0.0.Z.E4S:git-email-0:2.31.1-6.el9_0.1.noarch",
"AppStream-9.0.0.Z.E4S:git-gui-0:2.31.1-6.el9_0.1.noarch",
"AppStream-9.0.0.Z.E4S:git-instaweb-0:2.31.1-6.el9_0.1.noarch",
"AppStream-9.0.0.Z.E4S:git-subtree-0:2.31.1-6.el9_0.1.aarch64",
"AppStream-9.0.0.Z.E4S:git-subtree-0:2.31.1-6.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.E4S:git-subtree-0:2.31.1-6.el9_0.1.s390x",
"AppStream-9.0.0.Z.E4S:git-subtree-0:2.31.1-6.el9_0.1.x86_64",
"AppStream-9.0.0.Z.E4S:git-svn-0:2.31.1-6.el9_0.1.noarch",
"AppStream-9.0.0.Z.E4S:gitk-0:2.31.1-6.el9_0.1.noarch",
"AppStream-9.0.0.Z.E4S:gitweb-0:2.31.1-6.el9_0.1.noarch",
"AppStream-9.0.0.Z.E4S:perl-Git-0:2.31.1-6.el9_0.1.noarch",
"AppStream-9.0.0.Z.E4S:perl-Git-SVN-0:2.31.1-6.el9_0.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.0,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.0.0.Z.E4S:git-0:2.31.1-6.el9_0.1.aarch64",
"AppStream-9.0.0.Z.E4S:git-0:2.31.1-6.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.E4S:git-0:2.31.1-6.el9_0.1.s390x",
"AppStream-9.0.0.Z.E4S:git-0:2.31.1-6.el9_0.1.src",
"AppStream-9.0.0.Z.E4S:git-0:2.31.1-6.el9_0.1.x86_64",
"AppStream-9.0.0.Z.E4S:git-all-0:2.31.1-6.el9_0.1.noarch",
"AppStream-9.0.0.Z.E4S:git-core-0:2.31.1-6.el9_0.1.aarch64",
"AppStream-9.0.0.Z.E4S:git-core-0:2.31.1-6.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.E4S:git-core-0:2.31.1-6.el9_0.1.s390x",
"AppStream-9.0.0.Z.E4S:git-core-0:2.31.1-6.el9_0.1.x86_64",
"AppStream-9.0.0.Z.E4S:git-core-debuginfo-0:2.31.1-6.el9_0.1.aarch64",
"AppStream-9.0.0.Z.E4S:git-core-debuginfo-0:2.31.1-6.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.E4S:git-core-debuginfo-0:2.31.1-6.el9_0.1.s390x",
"AppStream-9.0.0.Z.E4S:git-core-debuginfo-0:2.31.1-6.el9_0.1.x86_64",
"AppStream-9.0.0.Z.E4S:git-core-doc-0:2.31.1-6.el9_0.1.noarch",
"AppStream-9.0.0.Z.E4S:git-credential-libsecret-0:2.31.1-6.el9_0.1.aarch64",
"AppStream-9.0.0.Z.E4S:git-credential-libsecret-0:2.31.1-6.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.E4S:git-credential-libsecret-0:2.31.1-6.el9_0.1.s390x",
"AppStream-9.0.0.Z.E4S:git-credential-libsecret-0:2.31.1-6.el9_0.1.x86_64",
"AppStream-9.0.0.Z.E4S:git-credential-libsecret-debuginfo-0:2.31.1-6.el9_0.1.aarch64",
"AppStream-9.0.0.Z.E4S:git-credential-libsecret-debuginfo-0:2.31.1-6.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.E4S:git-credential-libsecret-debuginfo-0:2.31.1-6.el9_0.1.s390x",
"AppStream-9.0.0.Z.E4S:git-credential-libsecret-debuginfo-0:2.31.1-6.el9_0.1.x86_64",
"AppStream-9.0.0.Z.E4S:git-daemon-0:2.31.1-6.el9_0.1.aarch64",
"AppStream-9.0.0.Z.E4S:git-daemon-0:2.31.1-6.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.E4S:git-daemon-0:2.31.1-6.el9_0.1.s390x",
"AppStream-9.0.0.Z.E4S:git-daemon-0:2.31.1-6.el9_0.1.x86_64",
"AppStream-9.0.0.Z.E4S:git-daemon-debuginfo-0:2.31.1-6.el9_0.1.aarch64",
"AppStream-9.0.0.Z.E4S:git-daemon-debuginfo-0:2.31.1-6.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.E4S:git-daemon-debuginfo-0:2.31.1-6.el9_0.1.s390x",
"AppStream-9.0.0.Z.E4S:git-daemon-debuginfo-0:2.31.1-6.el9_0.1.x86_64",
"AppStream-9.0.0.Z.E4S:git-debuginfo-0:2.31.1-6.el9_0.1.aarch64",
"AppStream-9.0.0.Z.E4S:git-debuginfo-0:2.31.1-6.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.E4S:git-debuginfo-0:2.31.1-6.el9_0.1.s390x",
"AppStream-9.0.0.Z.E4S:git-debuginfo-0:2.31.1-6.el9_0.1.x86_64",
"AppStream-9.0.0.Z.E4S:git-debugsource-0:2.31.1-6.el9_0.1.aarch64",
"AppStream-9.0.0.Z.E4S:git-debugsource-0:2.31.1-6.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.E4S:git-debugsource-0:2.31.1-6.el9_0.1.s390x",
"AppStream-9.0.0.Z.E4S:git-debugsource-0:2.31.1-6.el9_0.1.x86_64",
"AppStream-9.0.0.Z.E4S:git-email-0:2.31.1-6.el9_0.1.noarch",
"AppStream-9.0.0.Z.E4S:git-gui-0:2.31.1-6.el9_0.1.noarch",
"AppStream-9.0.0.Z.E4S:git-instaweb-0:2.31.1-6.el9_0.1.noarch",
"AppStream-9.0.0.Z.E4S:git-subtree-0:2.31.1-6.el9_0.1.aarch64",
"AppStream-9.0.0.Z.E4S:git-subtree-0:2.31.1-6.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.E4S:git-subtree-0:2.31.1-6.el9_0.1.s390x",
"AppStream-9.0.0.Z.E4S:git-subtree-0:2.31.1-6.el9_0.1.x86_64",
"AppStream-9.0.0.Z.E4S:git-svn-0:2.31.1-6.el9_0.1.noarch",
"AppStream-9.0.0.Z.E4S:gitk-0:2.31.1-6.el9_0.1.noarch",
"AppStream-9.0.0.Z.E4S:gitweb-0:2.31.1-6.el9_0.1.noarch",
"AppStream-9.0.0.Z.E4S:perl-Git-0:2.31.1-6.el9_0.1.noarch",
"AppStream-9.0.0.Z.E4S:perl-Git-SVN-0:2.31.1-6.el9_0.1.noarch"
]
}
],
"threats": [
{
"category": "exploit_status",
"date": "2025-08-25T00:00:00+00:00",
"details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
},
{
"category": "impact",
"details": "Important"
}
],
"title": "git: Git arbitrary code execution"
}
]
}
rhsa-2025:11801
Vulnerability from csaf_redhat
Published
2025-07-28 01:45
Modified
2025-11-06 23:41
Summary
Red Hat Security Advisory: git security update
Notes
Topic
An update for git is now available for Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support, Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions, and Red Hat Enterprise Linux 8.6 Telecommunications Update Service.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Git is a distributed revision control system with a decentralized architecture. As opposed to centralized version control systems with a client-server model, Git ensures that each working copy of a Git repository is an exact copy with complete revision history. This not only allows the user to work on and contribute to projects without the need to have permission to push the changes to their official repositories, but also makes it possible for the user to work with no network connection.
Security Fix(es):
* git: Git arbitrary code execution (CVE-2025-48384)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for git is now available for Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support, Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions, and Red Hat Enterprise Linux 8.6 Telecommunications Update Service.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Git is a distributed revision control system with a decentralized architecture. As opposed to centralized version control systems with a client-server model, Git ensures that each working copy of a Git repository is an exact copy with complete revision history. This not only allows the user to work on and contribute to projects without the need to have permission to push the changes to their official repositories, but also makes it possible for the user to work with no network connection.\n\nSecurity Fix(es):\n\n* git: Git arbitrary code execution (CVE-2025-48384)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:11801",
"url": "https://access.redhat.com/errata/RHSA-2025:11801"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2378806",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2378806"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_11801.json"
}
],
"title": "Red Hat Security Advisory: git security update",
"tracking": {
"current_release_date": "2025-11-06T23:41:43+00:00",
"generator": {
"date": "2025-11-06T23:41:43+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.11"
}
},
"id": "RHSA-2025:11801",
"initial_release_date": "2025-07-28T01:45:10+00:00",
"revision_history": [
{
"date": "2025-07-28T01:45:10+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-07-28T01:45:10+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-06T23:41:43+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream AUS (v.8.6)",
"product": {
"name": "Red Hat Enterprise Linux AppStream AUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.AUS",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_aus:8.6::appstream"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product": {
"name": "Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_e4s:8.6::appstream"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream TUS (v.8.6)",
"product": {
"name": "Red Hat Enterprise Linux AppStream TUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.TUS",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_tus:8.6::appstream"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "git-0:2.31.8-3.el8_6.1.src",
"product": {
"name": "git-0:2.31.8-3.el8_6.1.src",
"product_id": "git-0:2.31.8-3.el8_6.1.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git@2.31.8-3.el8_6.1?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "git-0:2.31.8-3.el8_6.1.x86_64",
"product": {
"name": "git-0:2.31.8-3.el8_6.1.x86_64",
"product_id": "git-0:2.31.8-3.el8_6.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git@2.31.8-3.el8_6.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-core-0:2.31.8-3.el8_6.1.x86_64",
"product": {
"name": "git-core-0:2.31.8-3.el8_6.1.x86_64",
"product_id": "git-core-0:2.31.8-3.el8_6.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core@2.31.8-3.el8_6.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-0:2.31.8-3.el8_6.1.x86_64",
"product": {
"name": "git-credential-libsecret-0:2.31.8-3.el8_6.1.x86_64",
"product_id": "git-credential-libsecret-0:2.31.8-3.el8_6.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret@2.31.8-3.el8_6.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-daemon-0:2.31.8-3.el8_6.1.x86_64",
"product": {
"name": "git-daemon-0:2.31.8-3.el8_6.1.x86_64",
"product_id": "git-daemon-0:2.31.8-3.el8_6.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon@2.31.8-3.el8_6.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-subtree-0:2.31.8-3.el8_6.1.x86_64",
"product": {
"name": "git-subtree-0:2.31.8-3.el8_6.1.x86_64",
"product_id": "git-subtree-0:2.31.8-3.el8_6.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-subtree@2.31.8-3.el8_6.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-debugsource-0:2.31.8-3.el8_6.1.x86_64",
"product": {
"name": "git-debugsource-0:2.31.8-3.el8_6.1.x86_64",
"product_id": "git-debugsource-0:2.31.8-3.el8_6.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debugsource@2.31.8-3.el8_6.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-core-debuginfo-0:2.31.8-3.el8_6.1.x86_64",
"product": {
"name": "git-core-debuginfo-0:2.31.8-3.el8_6.1.x86_64",
"product_id": "git-core-debuginfo-0:2.31.8-3.el8_6.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core-debuginfo@2.31.8-3.el8_6.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-debuginfo-0:2.31.8-3.el8_6.1.x86_64",
"product": {
"name": "git-credential-libsecret-debuginfo-0:2.31.8-3.el8_6.1.x86_64",
"product_id": "git-credential-libsecret-debuginfo-0:2.31.8-3.el8_6.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret-debuginfo@2.31.8-3.el8_6.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-daemon-debuginfo-0:2.31.8-3.el8_6.1.x86_64",
"product": {
"name": "git-daemon-debuginfo-0:2.31.8-3.el8_6.1.x86_64",
"product_id": "git-daemon-debuginfo-0:2.31.8-3.el8_6.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon-debuginfo@2.31.8-3.el8_6.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-debuginfo-0:2.31.8-3.el8_6.1.x86_64",
"product": {
"name": "git-debuginfo-0:2.31.8-3.el8_6.1.x86_64",
"product_id": "git-debuginfo-0:2.31.8-3.el8_6.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debuginfo@2.31.8-3.el8_6.1?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "git-all-0:2.31.8-3.el8_6.1.noarch",
"product": {
"name": "git-all-0:2.31.8-3.el8_6.1.noarch",
"product_id": "git-all-0:2.31.8-3.el8_6.1.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-all@2.31.8-3.el8_6.1?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "git-core-doc-0:2.31.8-3.el8_6.1.noarch",
"product": {
"name": "git-core-doc-0:2.31.8-3.el8_6.1.noarch",
"product_id": "git-core-doc-0:2.31.8-3.el8_6.1.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core-doc@2.31.8-3.el8_6.1?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "git-email-0:2.31.8-3.el8_6.1.noarch",
"product": {
"name": "git-email-0:2.31.8-3.el8_6.1.noarch",
"product_id": "git-email-0:2.31.8-3.el8_6.1.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-email@2.31.8-3.el8_6.1?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "git-gui-0:2.31.8-3.el8_6.1.noarch",
"product": {
"name": "git-gui-0:2.31.8-3.el8_6.1.noarch",
"product_id": "git-gui-0:2.31.8-3.el8_6.1.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-gui@2.31.8-3.el8_6.1?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "git-instaweb-0:2.31.8-3.el8_6.1.noarch",
"product": {
"name": "git-instaweb-0:2.31.8-3.el8_6.1.noarch",
"product_id": "git-instaweb-0:2.31.8-3.el8_6.1.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-instaweb@2.31.8-3.el8_6.1?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "git-svn-0:2.31.8-3.el8_6.1.noarch",
"product": {
"name": "git-svn-0:2.31.8-3.el8_6.1.noarch",
"product_id": "git-svn-0:2.31.8-3.el8_6.1.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-svn@2.31.8-3.el8_6.1?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "gitk-0:2.31.8-3.el8_6.1.noarch",
"product": {
"name": "gitk-0:2.31.8-3.el8_6.1.noarch",
"product_id": "gitk-0:2.31.8-3.el8_6.1.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/gitk@2.31.8-3.el8_6.1?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "gitweb-0:2.31.8-3.el8_6.1.noarch",
"product": {
"name": "gitweb-0:2.31.8-3.el8_6.1.noarch",
"product_id": "gitweb-0:2.31.8-3.el8_6.1.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/gitweb@2.31.8-3.el8_6.1?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "perl-Git-0:2.31.8-3.el8_6.1.noarch",
"product": {
"name": "perl-Git-0:2.31.8-3.el8_6.1.noarch",
"product_id": "perl-Git-0:2.31.8-3.el8_6.1.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/perl-Git@2.31.8-3.el8_6.1?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "perl-Git-SVN-0:2.31.8-3.el8_6.1.noarch",
"product": {
"name": "perl-Git-SVN-0:2.31.8-3.el8_6.1.noarch",
"product_id": "perl-Git-SVN-0:2.31.8-3.el8_6.1.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/perl-Git-SVN@2.31.8-3.el8_6.1?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "git-0:2.31.8-3.el8_6.1.aarch64",
"product": {
"name": "git-0:2.31.8-3.el8_6.1.aarch64",
"product_id": "git-0:2.31.8-3.el8_6.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git@2.31.8-3.el8_6.1?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-core-0:2.31.8-3.el8_6.1.aarch64",
"product": {
"name": "git-core-0:2.31.8-3.el8_6.1.aarch64",
"product_id": "git-core-0:2.31.8-3.el8_6.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core@2.31.8-3.el8_6.1?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-0:2.31.8-3.el8_6.1.aarch64",
"product": {
"name": "git-credential-libsecret-0:2.31.8-3.el8_6.1.aarch64",
"product_id": "git-credential-libsecret-0:2.31.8-3.el8_6.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret@2.31.8-3.el8_6.1?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-daemon-0:2.31.8-3.el8_6.1.aarch64",
"product": {
"name": "git-daemon-0:2.31.8-3.el8_6.1.aarch64",
"product_id": "git-daemon-0:2.31.8-3.el8_6.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon@2.31.8-3.el8_6.1?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-subtree-0:2.31.8-3.el8_6.1.aarch64",
"product": {
"name": "git-subtree-0:2.31.8-3.el8_6.1.aarch64",
"product_id": "git-subtree-0:2.31.8-3.el8_6.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-subtree@2.31.8-3.el8_6.1?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-debugsource-0:2.31.8-3.el8_6.1.aarch64",
"product": {
"name": "git-debugsource-0:2.31.8-3.el8_6.1.aarch64",
"product_id": "git-debugsource-0:2.31.8-3.el8_6.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debugsource@2.31.8-3.el8_6.1?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-core-debuginfo-0:2.31.8-3.el8_6.1.aarch64",
"product": {
"name": "git-core-debuginfo-0:2.31.8-3.el8_6.1.aarch64",
"product_id": "git-core-debuginfo-0:2.31.8-3.el8_6.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core-debuginfo@2.31.8-3.el8_6.1?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-debuginfo-0:2.31.8-3.el8_6.1.aarch64",
"product": {
"name": "git-credential-libsecret-debuginfo-0:2.31.8-3.el8_6.1.aarch64",
"product_id": "git-credential-libsecret-debuginfo-0:2.31.8-3.el8_6.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret-debuginfo@2.31.8-3.el8_6.1?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-daemon-debuginfo-0:2.31.8-3.el8_6.1.aarch64",
"product": {
"name": "git-daemon-debuginfo-0:2.31.8-3.el8_6.1.aarch64",
"product_id": "git-daemon-debuginfo-0:2.31.8-3.el8_6.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon-debuginfo@2.31.8-3.el8_6.1?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-debuginfo-0:2.31.8-3.el8_6.1.aarch64",
"product": {
"name": "git-debuginfo-0:2.31.8-3.el8_6.1.aarch64",
"product_id": "git-debuginfo-0:2.31.8-3.el8_6.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debuginfo@2.31.8-3.el8_6.1?arch=aarch64"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "git-0:2.31.8-3.el8_6.1.ppc64le",
"product": {
"name": "git-0:2.31.8-3.el8_6.1.ppc64le",
"product_id": "git-0:2.31.8-3.el8_6.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git@2.31.8-3.el8_6.1?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-core-0:2.31.8-3.el8_6.1.ppc64le",
"product": {
"name": "git-core-0:2.31.8-3.el8_6.1.ppc64le",
"product_id": "git-core-0:2.31.8-3.el8_6.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core@2.31.8-3.el8_6.1?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-0:2.31.8-3.el8_6.1.ppc64le",
"product": {
"name": "git-credential-libsecret-0:2.31.8-3.el8_6.1.ppc64le",
"product_id": "git-credential-libsecret-0:2.31.8-3.el8_6.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret@2.31.8-3.el8_6.1?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-daemon-0:2.31.8-3.el8_6.1.ppc64le",
"product": {
"name": "git-daemon-0:2.31.8-3.el8_6.1.ppc64le",
"product_id": "git-daemon-0:2.31.8-3.el8_6.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon@2.31.8-3.el8_6.1?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-subtree-0:2.31.8-3.el8_6.1.ppc64le",
"product": {
"name": "git-subtree-0:2.31.8-3.el8_6.1.ppc64le",
"product_id": "git-subtree-0:2.31.8-3.el8_6.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-subtree@2.31.8-3.el8_6.1?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-debugsource-0:2.31.8-3.el8_6.1.ppc64le",
"product": {
"name": "git-debugsource-0:2.31.8-3.el8_6.1.ppc64le",
"product_id": "git-debugsource-0:2.31.8-3.el8_6.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debugsource@2.31.8-3.el8_6.1?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-core-debuginfo-0:2.31.8-3.el8_6.1.ppc64le",
"product": {
"name": "git-core-debuginfo-0:2.31.8-3.el8_6.1.ppc64le",
"product_id": "git-core-debuginfo-0:2.31.8-3.el8_6.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core-debuginfo@2.31.8-3.el8_6.1?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-debuginfo-0:2.31.8-3.el8_6.1.ppc64le",
"product": {
"name": "git-credential-libsecret-debuginfo-0:2.31.8-3.el8_6.1.ppc64le",
"product_id": "git-credential-libsecret-debuginfo-0:2.31.8-3.el8_6.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret-debuginfo@2.31.8-3.el8_6.1?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-daemon-debuginfo-0:2.31.8-3.el8_6.1.ppc64le",
"product": {
"name": "git-daemon-debuginfo-0:2.31.8-3.el8_6.1.ppc64le",
"product_id": "git-daemon-debuginfo-0:2.31.8-3.el8_6.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon-debuginfo@2.31.8-3.el8_6.1?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-debuginfo-0:2.31.8-3.el8_6.1.ppc64le",
"product": {
"name": "git-debuginfo-0:2.31.8-3.el8_6.1.ppc64le",
"product_id": "git-debuginfo-0:2.31.8-3.el8_6.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debuginfo@2.31.8-3.el8_6.1?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "git-0:2.31.8-3.el8_6.1.s390x",
"product": {
"name": "git-0:2.31.8-3.el8_6.1.s390x",
"product_id": "git-0:2.31.8-3.el8_6.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git@2.31.8-3.el8_6.1?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-core-0:2.31.8-3.el8_6.1.s390x",
"product": {
"name": "git-core-0:2.31.8-3.el8_6.1.s390x",
"product_id": "git-core-0:2.31.8-3.el8_6.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core@2.31.8-3.el8_6.1?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-0:2.31.8-3.el8_6.1.s390x",
"product": {
"name": "git-credential-libsecret-0:2.31.8-3.el8_6.1.s390x",
"product_id": "git-credential-libsecret-0:2.31.8-3.el8_6.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret@2.31.8-3.el8_6.1?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-daemon-0:2.31.8-3.el8_6.1.s390x",
"product": {
"name": "git-daemon-0:2.31.8-3.el8_6.1.s390x",
"product_id": "git-daemon-0:2.31.8-3.el8_6.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon@2.31.8-3.el8_6.1?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-subtree-0:2.31.8-3.el8_6.1.s390x",
"product": {
"name": "git-subtree-0:2.31.8-3.el8_6.1.s390x",
"product_id": "git-subtree-0:2.31.8-3.el8_6.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-subtree@2.31.8-3.el8_6.1?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-debugsource-0:2.31.8-3.el8_6.1.s390x",
"product": {
"name": "git-debugsource-0:2.31.8-3.el8_6.1.s390x",
"product_id": "git-debugsource-0:2.31.8-3.el8_6.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debugsource@2.31.8-3.el8_6.1?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-core-debuginfo-0:2.31.8-3.el8_6.1.s390x",
"product": {
"name": "git-core-debuginfo-0:2.31.8-3.el8_6.1.s390x",
"product_id": "git-core-debuginfo-0:2.31.8-3.el8_6.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core-debuginfo@2.31.8-3.el8_6.1?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-debuginfo-0:2.31.8-3.el8_6.1.s390x",
"product": {
"name": "git-credential-libsecret-debuginfo-0:2.31.8-3.el8_6.1.s390x",
"product_id": "git-credential-libsecret-debuginfo-0:2.31.8-3.el8_6.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret-debuginfo@2.31.8-3.el8_6.1?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-daemon-debuginfo-0:2.31.8-3.el8_6.1.s390x",
"product": {
"name": "git-daemon-debuginfo-0:2.31.8-3.el8_6.1.s390x",
"product_id": "git-daemon-debuginfo-0:2.31.8-3.el8_6.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon-debuginfo@2.31.8-3.el8_6.1?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-debuginfo-0:2.31.8-3.el8_6.1.s390x",
"product": {
"name": "git-debuginfo-0:2.31.8-3.el8_6.1.s390x",
"product_id": "git-debuginfo-0:2.31.8-3.el8_6.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debuginfo@2.31.8-3.el8_6.1?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "git-0:2.31.8-3.el8_6.1.src as a component of Red Hat Enterprise Linux AppStream AUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.AUS:git-0:2.31.8-3.el8_6.1.src"
},
"product_reference": "git-0:2.31.8-3.el8_6.1.src",
"relates_to_product_reference": "AppStream-8.6.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-0:2.31.8-3.el8_6.1.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.AUS:git-0:2.31.8-3.el8_6.1.x86_64"
},
"product_reference": "git-0:2.31.8-3.el8_6.1.x86_64",
"relates_to_product_reference": "AppStream-8.6.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-all-0:2.31.8-3.el8_6.1.noarch as a component of Red Hat Enterprise Linux AppStream AUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.AUS:git-all-0:2.31.8-3.el8_6.1.noarch"
},
"product_reference": "git-all-0:2.31.8-3.el8_6.1.noarch",
"relates_to_product_reference": "AppStream-8.6.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-0:2.31.8-3.el8_6.1.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.AUS:git-core-0:2.31.8-3.el8_6.1.x86_64"
},
"product_reference": "git-core-0:2.31.8-3.el8_6.1.x86_64",
"relates_to_product_reference": "AppStream-8.6.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-debuginfo-0:2.31.8-3.el8_6.1.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.AUS:git-core-debuginfo-0:2.31.8-3.el8_6.1.x86_64"
},
"product_reference": "git-core-debuginfo-0:2.31.8-3.el8_6.1.x86_64",
"relates_to_product_reference": "AppStream-8.6.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-doc-0:2.31.8-3.el8_6.1.noarch as a component of Red Hat Enterprise Linux AppStream AUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.AUS:git-core-doc-0:2.31.8-3.el8_6.1.noarch"
},
"product_reference": "git-core-doc-0:2.31.8-3.el8_6.1.noarch",
"relates_to_product_reference": "AppStream-8.6.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-0:2.31.8-3.el8_6.1.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.AUS:git-credential-libsecret-0:2.31.8-3.el8_6.1.x86_64"
},
"product_reference": "git-credential-libsecret-0:2.31.8-3.el8_6.1.x86_64",
"relates_to_product_reference": "AppStream-8.6.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-debuginfo-0:2.31.8-3.el8_6.1.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.AUS:git-credential-libsecret-debuginfo-0:2.31.8-3.el8_6.1.x86_64"
},
"product_reference": "git-credential-libsecret-debuginfo-0:2.31.8-3.el8_6.1.x86_64",
"relates_to_product_reference": "AppStream-8.6.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-0:2.31.8-3.el8_6.1.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.AUS:git-daemon-0:2.31.8-3.el8_6.1.x86_64"
},
"product_reference": "git-daemon-0:2.31.8-3.el8_6.1.x86_64",
"relates_to_product_reference": "AppStream-8.6.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-debuginfo-0:2.31.8-3.el8_6.1.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.AUS:git-daemon-debuginfo-0:2.31.8-3.el8_6.1.x86_64"
},
"product_reference": "git-daemon-debuginfo-0:2.31.8-3.el8_6.1.x86_64",
"relates_to_product_reference": "AppStream-8.6.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debuginfo-0:2.31.8-3.el8_6.1.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.AUS:git-debuginfo-0:2.31.8-3.el8_6.1.x86_64"
},
"product_reference": "git-debuginfo-0:2.31.8-3.el8_6.1.x86_64",
"relates_to_product_reference": "AppStream-8.6.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debugsource-0:2.31.8-3.el8_6.1.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.AUS:git-debugsource-0:2.31.8-3.el8_6.1.x86_64"
},
"product_reference": "git-debugsource-0:2.31.8-3.el8_6.1.x86_64",
"relates_to_product_reference": "AppStream-8.6.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-0:2.31.8-3.el8_6.1.noarch as a component of Red Hat Enterprise Linux AppStream AUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.AUS:git-email-0:2.31.8-3.el8_6.1.noarch"
},
"product_reference": "git-email-0:2.31.8-3.el8_6.1.noarch",
"relates_to_product_reference": "AppStream-8.6.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-0:2.31.8-3.el8_6.1.noarch as a component of Red Hat Enterprise Linux AppStream AUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.AUS:git-gui-0:2.31.8-3.el8_6.1.noarch"
},
"product_reference": "git-gui-0:2.31.8-3.el8_6.1.noarch",
"relates_to_product_reference": "AppStream-8.6.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-instaweb-0:2.31.8-3.el8_6.1.noarch as a component of Red Hat Enterprise Linux AppStream AUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.AUS:git-instaweb-0:2.31.8-3.el8_6.1.noarch"
},
"product_reference": "git-instaweb-0:2.31.8-3.el8_6.1.noarch",
"relates_to_product_reference": "AppStream-8.6.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-subtree-0:2.31.8-3.el8_6.1.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.AUS:git-subtree-0:2.31.8-3.el8_6.1.x86_64"
},
"product_reference": "git-subtree-0:2.31.8-3.el8_6.1.x86_64",
"relates_to_product_reference": "AppStream-8.6.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-0:2.31.8-3.el8_6.1.noarch as a component of Red Hat Enterprise Linux AppStream AUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.AUS:git-svn-0:2.31.8-3.el8_6.1.noarch"
},
"product_reference": "git-svn-0:2.31.8-3.el8_6.1.noarch",
"relates_to_product_reference": "AppStream-8.6.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-0:2.31.8-3.el8_6.1.noarch as a component of Red Hat Enterprise Linux AppStream AUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.AUS:gitk-0:2.31.8-3.el8_6.1.noarch"
},
"product_reference": "gitk-0:2.31.8-3.el8_6.1.noarch",
"relates_to_product_reference": "AppStream-8.6.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitweb-0:2.31.8-3.el8_6.1.noarch as a component of Red Hat Enterprise Linux AppStream AUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.AUS:gitweb-0:2.31.8-3.el8_6.1.noarch"
},
"product_reference": "gitweb-0:2.31.8-3.el8_6.1.noarch",
"relates_to_product_reference": "AppStream-8.6.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-0:2.31.8-3.el8_6.1.noarch as a component of Red Hat Enterprise Linux AppStream AUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.AUS:perl-Git-0:2.31.8-3.el8_6.1.noarch"
},
"product_reference": "perl-Git-0:2.31.8-3.el8_6.1.noarch",
"relates_to_product_reference": "AppStream-8.6.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-SVN-0:2.31.8-3.el8_6.1.noarch as a component of Red Hat Enterprise Linux AppStream AUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.AUS:perl-Git-SVN-0:2.31.8-3.el8_6.1.noarch"
},
"product_reference": "perl-Git-SVN-0:2.31.8-3.el8_6.1.noarch",
"relates_to_product_reference": "AppStream-8.6.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-0:2.31.8-3.el8_6.1.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:git-0:2.31.8-3.el8_6.1.aarch64"
},
"product_reference": "git-0:2.31.8-3.el8_6.1.aarch64",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-0:2.31.8-3.el8_6.1.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:git-0:2.31.8-3.el8_6.1.ppc64le"
},
"product_reference": "git-0:2.31.8-3.el8_6.1.ppc64le",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-0:2.31.8-3.el8_6.1.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:git-0:2.31.8-3.el8_6.1.s390x"
},
"product_reference": "git-0:2.31.8-3.el8_6.1.s390x",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-0:2.31.8-3.el8_6.1.src as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:git-0:2.31.8-3.el8_6.1.src"
},
"product_reference": "git-0:2.31.8-3.el8_6.1.src",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-0:2.31.8-3.el8_6.1.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:git-0:2.31.8-3.el8_6.1.x86_64"
},
"product_reference": "git-0:2.31.8-3.el8_6.1.x86_64",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-all-0:2.31.8-3.el8_6.1.noarch as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:git-all-0:2.31.8-3.el8_6.1.noarch"
},
"product_reference": "git-all-0:2.31.8-3.el8_6.1.noarch",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-0:2.31.8-3.el8_6.1.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:git-core-0:2.31.8-3.el8_6.1.aarch64"
},
"product_reference": "git-core-0:2.31.8-3.el8_6.1.aarch64",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-0:2.31.8-3.el8_6.1.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:git-core-0:2.31.8-3.el8_6.1.ppc64le"
},
"product_reference": "git-core-0:2.31.8-3.el8_6.1.ppc64le",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-0:2.31.8-3.el8_6.1.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:git-core-0:2.31.8-3.el8_6.1.s390x"
},
"product_reference": "git-core-0:2.31.8-3.el8_6.1.s390x",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-0:2.31.8-3.el8_6.1.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:git-core-0:2.31.8-3.el8_6.1.x86_64"
},
"product_reference": "git-core-0:2.31.8-3.el8_6.1.x86_64",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-debuginfo-0:2.31.8-3.el8_6.1.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:git-core-debuginfo-0:2.31.8-3.el8_6.1.aarch64"
},
"product_reference": "git-core-debuginfo-0:2.31.8-3.el8_6.1.aarch64",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-debuginfo-0:2.31.8-3.el8_6.1.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:git-core-debuginfo-0:2.31.8-3.el8_6.1.ppc64le"
},
"product_reference": "git-core-debuginfo-0:2.31.8-3.el8_6.1.ppc64le",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-debuginfo-0:2.31.8-3.el8_6.1.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:git-core-debuginfo-0:2.31.8-3.el8_6.1.s390x"
},
"product_reference": "git-core-debuginfo-0:2.31.8-3.el8_6.1.s390x",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-debuginfo-0:2.31.8-3.el8_6.1.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:git-core-debuginfo-0:2.31.8-3.el8_6.1.x86_64"
},
"product_reference": "git-core-debuginfo-0:2.31.8-3.el8_6.1.x86_64",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-doc-0:2.31.8-3.el8_6.1.noarch as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:git-core-doc-0:2.31.8-3.el8_6.1.noarch"
},
"product_reference": "git-core-doc-0:2.31.8-3.el8_6.1.noarch",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-0:2.31.8-3.el8_6.1.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:git-credential-libsecret-0:2.31.8-3.el8_6.1.aarch64"
},
"product_reference": "git-credential-libsecret-0:2.31.8-3.el8_6.1.aarch64",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-0:2.31.8-3.el8_6.1.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:git-credential-libsecret-0:2.31.8-3.el8_6.1.ppc64le"
},
"product_reference": "git-credential-libsecret-0:2.31.8-3.el8_6.1.ppc64le",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-0:2.31.8-3.el8_6.1.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:git-credential-libsecret-0:2.31.8-3.el8_6.1.s390x"
},
"product_reference": "git-credential-libsecret-0:2.31.8-3.el8_6.1.s390x",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-0:2.31.8-3.el8_6.1.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:git-credential-libsecret-0:2.31.8-3.el8_6.1.x86_64"
},
"product_reference": "git-credential-libsecret-0:2.31.8-3.el8_6.1.x86_64",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-debuginfo-0:2.31.8-3.el8_6.1.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:git-credential-libsecret-debuginfo-0:2.31.8-3.el8_6.1.aarch64"
},
"product_reference": "git-credential-libsecret-debuginfo-0:2.31.8-3.el8_6.1.aarch64",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-debuginfo-0:2.31.8-3.el8_6.1.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:git-credential-libsecret-debuginfo-0:2.31.8-3.el8_6.1.ppc64le"
},
"product_reference": "git-credential-libsecret-debuginfo-0:2.31.8-3.el8_6.1.ppc64le",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-debuginfo-0:2.31.8-3.el8_6.1.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:git-credential-libsecret-debuginfo-0:2.31.8-3.el8_6.1.s390x"
},
"product_reference": "git-credential-libsecret-debuginfo-0:2.31.8-3.el8_6.1.s390x",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-debuginfo-0:2.31.8-3.el8_6.1.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:git-credential-libsecret-debuginfo-0:2.31.8-3.el8_6.1.x86_64"
},
"product_reference": "git-credential-libsecret-debuginfo-0:2.31.8-3.el8_6.1.x86_64",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-0:2.31.8-3.el8_6.1.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:git-daemon-0:2.31.8-3.el8_6.1.aarch64"
},
"product_reference": "git-daemon-0:2.31.8-3.el8_6.1.aarch64",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-0:2.31.8-3.el8_6.1.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:git-daemon-0:2.31.8-3.el8_6.1.ppc64le"
},
"product_reference": "git-daemon-0:2.31.8-3.el8_6.1.ppc64le",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-0:2.31.8-3.el8_6.1.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:git-daemon-0:2.31.8-3.el8_6.1.s390x"
},
"product_reference": "git-daemon-0:2.31.8-3.el8_6.1.s390x",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-0:2.31.8-3.el8_6.1.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:git-daemon-0:2.31.8-3.el8_6.1.x86_64"
},
"product_reference": "git-daemon-0:2.31.8-3.el8_6.1.x86_64",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-debuginfo-0:2.31.8-3.el8_6.1.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:git-daemon-debuginfo-0:2.31.8-3.el8_6.1.aarch64"
},
"product_reference": "git-daemon-debuginfo-0:2.31.8-3.el8_6.1.aarch64",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-debuginfo-0:2.31.8-3.el8_6.1.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:git-daemon-debuginfo-0:2.31.8-3.el8_6.1.ppc64le"
},
"product_reference": "git-daemon-debuginfo-0:2.31.8-3.el8_6.1.ppc64le",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-debuginfo-0:2.31.8-3.el8_6.1.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:git-daemon-debuginfo-0:2.31.8-3.el8_6.1.s390x"
},
"product_reference": "git-daemon-debuginfo-0:2.31.8-3.el8_6.1.s390x",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-debuginfo-0:2.31.8-3.el8_6.1.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:git-daemon-debuginfo-0:2.31.8-3.el8_6.1.x86_64"
},
"product_reference": "git-daemon-debuginfo-0:2.31.8-3.el8_6.1.x86_64",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debuginfo-0:2.31.8-3.el8_6.1.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:git-debuginfo-0:2.31.8-3.el8_6.1.aarch64"
},
"product_reference": "git-debuginfo-0:2.31.8-3.el8_6.1.aarch64",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debuginfo-0:2.31.8-3.el8_6.1.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:git-debuginfo-0:2.31.8-3.el8_6.1.ppc64le"
},
"product_reference": "git-debuginfo-0:2.31.8-3.el8_6.1.ppc64le",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debuginfo-0:2.31.8-3.el8_6.1.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:git-debuginfo-0:2.31.8-3.el8_6.1.s390x"
},
"product_reference": "git-debuginfo-0:2.31.8-3.el8_6.1.s390x",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debuginfo-0:2.31.8-3.el8_6.1.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:git-debuginfo-0:2.31.8-3.el8_6.1.x86_64"
},
"product_reference": "git-debuginfo-0:2.31.8-3.el8_6.1.x86_64",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debugsource-0:2.31.8-3.el8_6.1.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:git-debugsource-0:2.31.8-3.el8_6.1.aarch64"
},
"product_reference": "git-debugsource-0:2.31.8-3.el8_6.1.aarch64",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debugsource-0:2.31.8-3.el8_6.1.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:git-debugsource-0:2.31.8-3.el8_6.1.ppc64le"
},
"product_reference": "git-debugsource-0:2.31.8-3.el8_6.1.ppc64le",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debugsource-0:2.31.8-3.el8_6.1.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:git-debugsource-0:2.31.8-3.el8_6.1.s390x"
},
"product_reference": "git-debugsource-0:2.31.8-3.el8_6.1.s390x",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debugsource-0:2.31.8-3.el8_6.1.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:git-debugsource-0:2.31.8-3.el8_6.1.x86_64"
},
"product_reference": "git-debugsource-0:2.31.8-3.el8_6.1.x86_64",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-0:2.31.8-3.el8_6.1.noarch as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:git-email-0:2.31.8-3.el8_6.1.noarch"
},
"product_reference": "git-email-0:2.31.8-3.el8_6.1.noarch",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-0:2.31.8-3.el8_6.1.noarch as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:git-gui-0:2.31.8-3.el8_6.1.noarch"
},
"product_reference": "git-gui-0:2.31.8-3.el8_6.1.noarch",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-instaweb-0:2.31.8-3.el8_6.1.noarch as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:git-instaweb-0:2.31.8-3.el8_6.1.noarch"
},
"product_reference": "git-instaweb-0:2.31.8-3.el8_6.1.noarch",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-subtree-0:2.31.8-3.el8_6.1.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:git-subtree-0:2.31.8-3.el8_6.1.aarch64"
},
"product_reference": "git-subtree-0:2.31.8-3.el8_6.1.aarch64",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-subtree-0:2.31.8-3.el8_6.1.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:git-subtree-0:2.31.8-3.el8_6.1.ppc64le"
},
"product_reference": "git-subtree-0:2.31.8-3.el8_6.1.ppc64le",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-subtree-0:2.31.8-3.el8_6.1.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:git-subtree-0:2.31.8-3.el8_6.1.s390x"
},
"product_reference": "git-subtree-0:2.31.8-3.el8_6.1.s390x",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-subtree-0:2.31.8-3.el8_6.1.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:git-subtree-0:2.31.8-3.el8_6.1.x86_64"
},
"product_reference": "git-subtree-0:2.31.8-3.el8_6.1.x86_64",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-0:2.31.8-3.el8_6.1.noarch as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:git-svn-0:2.31.8-3.el8_6.1.noarch"
},
"product_reference": "git-svn-0:2.31.8-3.el8_6.1.noarch",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-0:2.31.8-3.el8_6.1.noarch as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:gitk-0:2.31.8-3.el8_6.1.noarch"
},
"product_reference": "gitk-0:2.31.8-3.el8_6.1.noarch",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitweb-0:2.31.8-3.el8_6.1.noarch as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:gitweb-0:2.31.8-3.el8_6.1.noarch"
},
"product_reference": "gitweb-0:2.31.8-3.el8_6.1.noarch",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-0:2.31.8-3.el8_6.1.noarch as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:perl-Git-0:2.31.8-3.el8_6.1.noarch"
},
"product_reference": "perl-Git-0:2.31.8-3.el8_6.1.noarch",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-SVN-0:2.31.8-3.el8_6.1.noarch as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:perl-Git-SVN-0:2.31.8-3.el8_6.1.noarch"
},
"product_reference": "perl-Git-SVN-0:2.31.8-3.el8_6.1.noarch",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-0:2.31.8-3.el8_6.1.src as a component of Red Hat Enterprise Linux AppStream TUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.TUS:git-0:2.31.8-3.el8_6.1.src"
},
"product_reference": "git-0:2.31.8-3.el8_6.1.src",
"relates_to_product_reference": "AppStream-8.6.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-0:2.31.8-3.el8_6.1.x86_64 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.TUS:git-0:2.31.8-3.el8_6.1.x86_64"
},
"product_reference": "git-0:2.31.8-3.el8_6.1.x86_64",
"relates_to_product_reference": "AppStream-8.6.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-all-0:2.31.8-3.el8_6.1.noarch as a component of Red Hat Enterprise Linux AppStream TUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.TUS:git-all-0:2.31.8-3.el8_6.1.noarch"
},
"product_reference": "git-all-0:2.31.8-3.el8_6.1.noarch",
"relates_to_product_reference": "AppStream-8.6.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-0:2.31.8-3.el8_6.1.x86_64 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.TUS:git-core-0:2.31.8-3.el8_6.1.x86_64"
},
"product_reference": "git-core-0:2.31.8-3.el8_6.1.x86_64",
"relates_to_product_reference": "AppStream-8.6.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-debuginfo-0:2.31.8-3.el8_6.1.x86_64 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.TUS:git-core-debuginfo-0:2.31.8-3.el8_6.1.x86_64"
},
"product_reference": "git-core-debuginfo-0:2.31.8-3.el8_6.1.x86_64",
"relates_to_product_reference": "AppStream-8.6.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-doc-0:2.31.8-3.el8_6.1.noarch as a component of Red Hat Enterprise Linux AppStream TUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.TUS:git-core-doc-0:2.31.8-3.el8_6.1.noarch"
},
"product_reference": "git-core-doc-0:2.31.8-3.el8_6.1.noarch",
"relates_to_product_reference": "AppStream-8.6.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-0:2.31.8-3.el8_6.1.x86_64 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.TUS:git-credential-libsecret-0:2.31.8-3.el8_6.1.x86_64"
},
"product_reference": "git-credential-libsecret-0:2.31.8-3.el8_6.1.x86_64",
"relates_to_product_reference": "AppStream-8.6.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-debuginfo-0:2.31.8-3.el8_6.1.x86_64 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.TUS:git-credential-libsecret-debuginfo-0:2.31.8-3.el8_6.1.x86_64"
},
"product_reference": "git-credential-libsecret-debuginfo-0:2.31.8-3.el8_6.1.x86_64",
"relates_to_product_reference": "AppStream-8.6.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-0:2.31.8-3.el8_6.1.x86_64 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.TUS:git-daemon-0:2.31.8-3.el8_6.1.x86_64"
},
"product_reference": "git-daemon-0:2.31.8-3.el8_6.1.x86_64",
"relates_to_product_reference": "AppStream-8.6.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-debuginfo-0:2.31.8-3.el8_6.1.x86_64 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.TUS:git-daemon-debuginfo-0:2.31.8-3.el8_6.1.x86_64"
},
"product_reference": "git-daemon-debuginfo-0:2.31.8-3.el8_6.1.x86_64",
"relates_to_product_reference": "AppStream-8.6.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debuginfo-0:2.31.8-3.el8_6.1.x86_64 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.TUS:git-debuginfo-0:2.31.8-3.el8_6.1.x86_64"
},
"product_reference": "git-debuginfo-0:2.31.8-3.el8_6.1.x86_64",
"relates_to_product_reference": "AppStream-8.6.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debugsource-0:2.31.8-3.el8_6.1.x86_64 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.TUS:git-debugsource-0:2.31.8-3.el8_6.1.x86_64"
},
"product_reference": "git-debugsource-0:2.31.8-3.el8_6.1.x86_64",
"relates_to_product_reference": "AppStream-8.6.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-0:2.31.8-3.el8_6.1.noarch as a component of Red Hat Enterprise Linux AppStream TUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.TUS:git-email-0:2.31.8-3.el8_6.1.noarch"
},
"product_reference": "git-email-0:2.31.8-3.el8_6.1.noarch",
"relates_to_product_reference": "AppStream-8.6.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-0:2.31.8-3.el8_6.1.noarch as a component of Red Hat Enterprise Linux AppStream TUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.TUS:git-gui-0:2.31.8-3.el8_6.1.noarch"
},
"product_reference": "git-gui-0:2.31.8-3.el8_6.1.noarch",
"relates_to_product_reference": "AppStream-8.6.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-instaweb-0:2.31.8-3.el8_6.1.noarch as a component of Red Hat Enterprise Linux AppStream TUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.TUS:git-instaweb-0:2.31.8-3.el8_6.1.noarch"
},
"product_reference": "git-instaweb-0:2.31.8-3.el8_6.1.noarch",
"relates_to_product_reference": "AppStream-8.6.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-subtree-0:2.31.8-3.el8_6.1.x86_64 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.TUS:git-subtree-0:2.31.8-3.el8_6.1.x86_64"
},
"product_reference": "git-subtree-0:2.31.8-3.el8_6.1.x86_64",
"relates_to_product_reference": "AppStream-8.6.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-0:2.31.8-3.el8_6.1.noarch as a component of Red Hat Enterprise Linux AppStream TUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.TUS:git-svn-0:2.31.8-3.el8_6.1.noarch"
},
"product_reference": "git-svn-0:2.31.8-3.el8_6.1.noarch",
"relates_to_product_reference": "AppStream-8.6.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-0:2.31.8-3.el8_6.1.noarch as a component of Red Hat Enterprise Linux AppStream TUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.TUS:gitk-0:2.31.8-3.el8_6.1.noarch"
},
"product_reference": "gitk-0:2.31.8-3.el8_6.1.noarch",
"relates_to_product_reference": "AppStream-8.6.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitweb-0:2.31.8-3.el8_6.1.noarch as a component of Red Hat Enterprise Linux AppStream TUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.TUS:gitweb-0:2.31.8-3.el8_6.1.noarch"
},
"product_reference": "gitweb-0:2.31.8-3.el8_6.1.noarch",
"relates_to_product_reference": "AppStream-8.6.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-0:2.31.8-3.el8_6.1.noarch as a component of Red Hat Enterprise Linux AppStream TUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.TUS:perl-Git-0:2.31.8-3.el8_6.1.noarch"
},
"product_reference": "perl-Git-0:2.31.8-3.el8_6.1.noarch",
"relates_to_product_reference": "AppStream-8.6.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-SVN-0:2.31.8-3.el8_6.1.noarch as a component of Red Hat Enterprise Linux AppStream TUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.TUS:perl-Git-SVN-0:2.31.8-3.el8_6.1.noarch"
},
"product_reference": "perl-Git-SVN-0:2.31.8-3.el8_6.1.noarch",
"relates_to_product_reference": "AppStream-8.6.0.Z.TUS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-48384",
"cwe": {
"id": "CWE-59",
"name": "Improper Link Resolution Before File Access (\u0027Link Following\u0027)"
},
"discovery_date": "2025-07-08T19:00:48.297925+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2378806"
}
],
"notes": [
{
"category": "description",
"text": "A line-end handling flaw was found in Git. When writing a config entry, values with a trailing carriage return (CR) are not quoted, resulting in the CR being lost when the config is read later. When initializing a submodule, if the submodule path contains a trailing CR, the altered path is read, resulting in the submodule being checked out to an incorrect location.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "git: Git arbitrary code execution",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability marked as Important and not Moderate flaw because it undermines Git\u2019s path and config integrity by allowing carriage return (\\r) injection to manipulate submodule checkout behavior. Git previously failed to quote config values containing trailing CR, causing the value to be misinterpreted when read back. In the context of submodules, this leads to incorrect path resolution, allowing an attacker to redirect the checkout path via a symlink to a sensitive directory like .git/modules/\u003csubmodule\u003e/hooks. If an executable post-checkout hook exists there, it could be inadvertently executed, resulting in arbitrary code execution during submodule operations. This is particularly dangerous in automated CI/CD pipelines or multi-repo projects where submodules are initialized or updated without manual inspection.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.6.0.Z.AUS:git-0:2.31.8-3.el8_6.1.src",
"AppStream-8.6.0.Z.AUS:git-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.AUS:git-all-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.AUS:git-core-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.AUS:git-core-debuginfo-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.AUS:git-core-doc-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.AUS:git-credential-libsecret-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.AUS:git-credential-libsecret-debuginfo-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.AUS:git-daemon-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.AUS:git-daemon-debuginfo-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.AUS:git-debuginfo-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.AUS:git-debugsource-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.AUS:git-email-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.AUS:git-gui-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.AUS:git-instaweb-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.AUS:git-subtree-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.AUS:git-svn-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.AUS:gitk-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.AUS:gitweb-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.AUS:perl-Git-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.AUS:perl-Git-SVN-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.E4S:git-0:2.31.8-3.el8_6.1.aarch64",
"AppStream-8.6.0.Z.E4S:git-0:2.31.8-3.el8_6.1.ppc64le",
"AppStream-8.6.0.Z.E4S:git-0:2.31.8-3.el8_6.1.s390x",
"AppStream-8.6.0.Z.E4S:git-0:2.31.8-3.el8_6.1.src",
"AppStream-8.6.0.Z.E4S:git-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.E4S:git-all-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.E4S:git-core-0:2.31.8-3.el8_6.1.aarch64",
"AppStream-8.6.0.Z.E4S:git-core-0:2.31.8-3.el8_6.1.ppc64le",
"AppStream-8.6.0.Z.E4S:git-core-0:2.31.8-3.el8_6.1.s390x",
"AppStream-8.6.0.Z.E4S:git-core-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.E4S:git-core-debuginfo-0:2.31.8-3.el8_6.1.aarch64",
"AppStream-8.6.0.Z.E4S:git-core-debuginfo-0:2.31.8-3.el8_6.1.ppc64le",
"AppStream-8.6.0.Z.E4S:git-core-debuginfo-0:2.31.8-3.el8_6.1.s390x",
"AppStream-8.6.0.Z.E4S:git-core-debuginfo-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.E4S:git-core-doc-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.E4S:git-credential-libsecret-0:2.31.8-3.el8_6.1.aarch64",
"AppStream-8.6.0.Z.E4S:git-credential-libsecret-0:2.31.8-3.el8_6.1.ppc64le",
"AppStream-8.6.0.Z.E4S:git-credential-libsecret-0:2.31.8-3.el8_6.1.s390x",
"AppStream-8.6.0.Z.E4S:git-credential-libsecret-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.E4S:git-credential-libsecret-debuginfo-0:2.31.8-3.el8_6.1.aarch64",
"AppStream-8.6.0.Z.E4S:git-credential-libsecret-debuginfo-0:2.31.8-3.el8_6.1.ppc64le",
"AppStream-8.6.0.Z.E4S:git-credential-libsecret-debuginfo-0:2.31.8-3.el8_6.1.s390x",
"AppStream-8.6.0.Z.E4S:git-credential-libsecret-debuginfo-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.E4S:git-daemon-0:2.31.8-3.el8_6.1.aarch64",
"AppStream-8.6.0.Z.E4S:git-daemon-0:2.31.8-3.el8_6.1.ppc64le",
"AppStream-8.6.0.Z.E4S:git-daemon-0:2.31.8-3.el8_6.1.s390x",
"AppStream-8.6.0.Z.E4S:git-daemon-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.E4S:git-daemon-debuginfo-0:2.31.8-3.el8_6.1.aarch64",
"AppStream-8.6.0.Z.E4S:git-daemon-debuginfo-0:2.31.8-3.el8_6.1.ppc64le",
"AppStream-8.6.0.Z.E4S:git-daemon-debuginfo-0:2.31.8-3.el8_6.1.s390x",
"AppStream-8.6.0.Z.E4S:git-daemon-debuginfo-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.E4S:git-debuginfo-0:2.31.8-3.el8_6.1.aarch64",
"AppStream-8.6.0.Z.E4S:git-debuginfo-0:2.31.8-3.el8_6.1.ppc64le",
"AppStream-8.6.0.Z.E4S:git-debuginfo-0:2.31.8-3.el8_6.1.s390x",
"AppStream-8.6.0.Z.E4S:git-debuginfo-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.E4S:git-debugsource-0:2.31.8-3.el8_6.1.aarch64",
"AppStream-8.6.0.Z.E4S:git-debugsource-0:2.31.8-3.el8_6.1.ppc64le",
"AppStream-8.6.0.Z.E4S:git-debugsource-0:2.31.8-3.el8_6.1.s390x",
"AppStream-8.6.0.Z.E4S:git-debugsource-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.E4S:git-email-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.E4S:git-gui-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.E4S:git-instaweb-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.E4S:git-subtree-0:2.31.8-3.el8_6.1.aarch64",
"AppStream-8.6.0.Z.E4S:git-subtree-0:2.31.8-3.el8_6.1.ppc64le",
"AppStream-8.6.0.Z.E4S:git-subtree-0:2.31.8-3.el8_6.1.s390x",
"AppStream-8.6.0.Z.E4S:git-subtree-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.E4S:git-svn-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.E4S:gitk-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.E4S:gitweb-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.E4S:perl-Git-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.E4S:perl-Git-SVN-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.TUS:git-0:2.31.8-3.el8_6.1.src",
"AppStream-8.6.0.Z.TUS:git-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.TUS:git-all-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.TUS:git-core-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.TUS:git-core-debuginfo-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.TUS:git-core-doc-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.TUS:git-credential-libsecret-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.TUS:git-credential-libsecret-debuginfo-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.TUS:git-daemon-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.TUS:git-daemon-debuginfo-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.TUS:git-debuginfo-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.TUS:git-debugsource-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.TUS:git-email-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.TUS:git-gui-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.TUS:git-instaweb-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.TUS:git-subtree-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.TUS:git-svn-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.TUS:gitk-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.TUS:gitweb-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.TUS:perl-Git-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.TUS:perl-Git-SVN-0:2.31.8-3.el8_6.1.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-48384"
},
{
"category": "external",
"summary": "RHBZ#2378806",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2378806"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-48384",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-48384"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-48384",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-48384"
},
{
"category": "external",
"summary": "https://dgl.cx/2025/07/git-clone-submodule-cve-2025-48384",
"url": "https://dgl.cx/2025/07/git-clone-submodule-cve-2025-48384"
},
{
"category": "external",
"summary": "https://github.com/git/git/commit/05e9cd64ee23bbadcea6bcffd6660ed02b8eab89",
"url": "https://github.com/git/git/commit/05e9cd64ee23bbadcea6bcffd6660ed02b8eab89"
},
{
"category": "external",
"summary": "https://github.com/git/git/security/advisories/GHSA-vwqx-4fm8-6qc9",
"url": "https://github.com/git/git/security/advisories/GHSA-vwqx-4fm8-6qc9"
},
{
"category": "external",
"summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog",
"url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
}
],
"release_date": "2025-07-08T18:23:48.710000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-07-28T01:45:10+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.6.0.Z.AUS:git-0:2.31.8-3.el8_6.1.src",
"AppStream-8.6.0.Z.AUS:git-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.AUS:git-all-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.AUS:git-core-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.AUS:git-core-debuginfo-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.AUS:git-core-doc-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.AUS:git-credential-libsecret-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.AUS:git-credential-libsecret-debuginfo-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.AUS:git-daemon-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.AUS:git-daemon-debuginfo-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.AUS:git-debuginfo-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.AUS:git-debugsource-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.AUS:git-email-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.AUS:git-gui-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.AUS:git-instaweb-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.AUS:git-subtree-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.AUS:git-svn-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.AUS:gitk-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.AUS:gitweb-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.AUS:perl-Git-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.AUS:perl-Git-SVN-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.E4S:git-0:2.31.8-3.el8_6.1.aarch64",
"AppStream-8.6.0.Z.E4S:git-0:2.31.8-3.el8_6.1.ppc64le",
"AppStream-8.6.0.Z.E4S:git-0:2.31.8-3.el8_6.1.s390x",
"AppStream-8.6.0.Z.E4S:git-0:2.31.8-3.el8_6.1.src",
"AppStream-8.6.0.Z.E4S:git-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.E4S:git-all-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.E4S:git-core-0:2.31.8-3.el8_6.1.aarch64",
"AppStream-8.6.0.Z.E4S:git-core-0:2.31.8-3.el8_6.1.ppc64le",
"AppStream-8.6.0.Z.E4S:git-core-0:2.31.8-3.el8_6.1.s390x",
"AppStream-8.6.0.Z.E4S:git-core-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.E4S:git-core-debuginfo-0:2.31.8-3.el8_6.1.aarch64",
"AppStream-8.6.0.Z.E4S:git-core-debuginfo-0:2.31.8-3.el8_6.1.ppc64le",
"AppStream-8.6.0.Z.E4S:git-core-debuginfo-0:2.31.8-3.el8_6.1.s390x",
"AppStream-8.6.0.Z.E4S:git-core-debuginfo-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.E4S:git-core-doc-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.E4S:git-credential-libsecret-0:2.31.8-3.el8_6.1.aarch64",
"AppStream-8.6.0.Z.E4S:git-credential-libsecret-0:2.31.8-3.el8_6.1.ppc64le",
"AppStream-8.6.0.Z.E4S:git-credential-libsecret-0:2.31.8-3.el8_6.1.s390x",
"AppStream-8.6.0.Z.E4S:git-credential-libsecret-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.E4S:git-credential-libsecret-debuginfo-0:2.31.8-3.el8_6.1.aarch64",
"AppStream-8.6.0.Z.E4S:git-credential-libsecret-debuginfo-0:2.31.8-3.el8_6.1.ppc64le",
"AppStream-8.6.0.Z.E4S:git-credential-libsecret-debuginfo-0:2.31.8-3.el8_6.1.s390x",
"AppStream-8.6.0.Z.E4S:git-credential-libsecret-debuginfo-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.E4S:git-daemon-0:2.31.8-3.el8_6.1.aarch64",
"AppStream-8.6.0.Z.E4S:git-daemon-0:2.31.8-3.el8_6.1.ppc64le",
"AppStream-8.6.0.Z.E4S:git-daemon-0:2.31.8-3.el8_6.1.s390x",
"AppStream-8.6.0.Z.E4S:git-daemon-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.E4S:git-daemon-debuginfo-0:2.31.8-3.el8_6.1.aarch64",
"AppStream-8.6.0.Z.E4S:git-daemon-debuginfo-0:2.31.8-3.el8_6.1.ppc64le",
"AppStream-8.6.0.Z.E4S:git-daemon-debuginfo-0:2.31.8-3.el8_6.1.s390x",
"AppStream-8.6.0.Z.E4S:git-daemon-debuginfo-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.E4S:git-debuginfo-0:2.31.8-3.el8_6.1.aarch64",
"AppStream-8.6.0.Z.E4S:git-debuginfo-0:2.31.8-3.el8_6.1.ppc64le",
"AppStream-8.6.0.Z.E4S:git-debuginfo-0:2.31.8-3.el8_6.1.s390x",
"AppStream-8.6.0.Z.E4S:git-debuginfo-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.E4S:git-debugsource-0:2.31.8-3.el8_6.1.aarch64",
"AppStream-8.6.0.Z.E4S:git-debugsource-0:2.31.8-3.el8_6.1.ppc64le",
"AppStream-8.6.0.Z.E4S:git-debugsource-0:2.31.8-3.el8_6.1.s390x",
"AppStream-8.6.0.Z.E4S:git-debugsource-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.E4S:git-email-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.E4S:git-gui-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.E4S:git-instaweb-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.E4S:git-subtree-0:2.31.8-3.el8_6.1.aarch64",
"AppStream-8.6.0.Z.E4S:git-subtree-0:2.31.8-3.el8_6.1.ppc64le",
"AppStream-8.6.0.Z.E4S:git-subtree-0:2.31.8-3.el8_6.1.s390x",
"AppStream-8.6.0.Z.E4S:git-subtree-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.E4S:git-svn-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.E4S:gitk-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.E4S:gitweb-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.E4S:perl-Git-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.E4S:perl-Git-SVN-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.TUS:git-0:2.31.8-3.el8_6.1.src",
"AppStream-8.6.0.Z.TUS:git-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.TUS:git-all-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.TUS:git-core-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.TUS:git-core-debuginfo-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.TUS:git-core-doc-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.TUS:git-credential-libsecret-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.TUS:git-credential-libsecret-debuginfo-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.TUS:git-daemon-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.TUS:git-daemon-debuginfo-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.TUS:git-debuginfo-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.TUS:git-debugsource-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.TUS:git-email-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.TUS:git-gui-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.TUS:git-instaweb-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.TUS:git-subtree-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.TUS:git-svn-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.TUS:gitk-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.TUS:gitweb-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.TUS:perl-Git-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.TUS:perl-Git-SVN-0:2.31.8-3.el8_6.1.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:11801"
},
{
"category": "workaround",
"details": "To mitigate this issue, avoid using --recurse-submodules when cloning repositories from untrusted sources; instead, clone normally and only initialize or update submodules manually after reviewing them.",
"product_ids": [
"AppStream-8.6.0.Z.AUS:git-0:2.31.8-3.el8_6.1.src",
"AppStream-8.6.0.Z.AUS:git-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.AUS:git-all-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.AUS:git-core-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.AUS:git-core-debuginfo-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.AUS:git-core-doc-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.AUS:git-credential-libsecret-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.AUS:git-credential-libsecret-debuginfo-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.AUS:git-daemon-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.AUS:git-daemon-debuginfo-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.AUS:git-debuginfo-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.AUS:git-debugsource-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.AUS:git-email-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.AUS:git-gui-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.AUS:git-instaweb-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.AUS:git-subtree-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.AUS:git-svn-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.AUS:gitk-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.AUS:gitweb-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.AUS:perl-Git-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.AUS:perl-Git-SVN-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.E4S:git-0:2.31.8-3.el8_6.1.aarch64",
"AppStream-8.6.0.Z.E4S:git-0:2.31.8-3.el8_6.1.ppc64le",
"AppStream-8.6.0.Z.E4S:git-0:2.31.8-3.el8_6.1.s390x",
"AppStream-8.6.0.Z.E4S:git-0:2.31.8-3.el8_6.1.src",
"AppStream-8.6.0.Z.E4S:git-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.E4S:git-all-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.E4S:git-core-0:2.31.8-3.el8_6.1.aarch64",
"AppStream-8.6.0.Z.E4S:git-core-0:2.31.8-3.el8_6.1.ppc64le",
"AppStream-8.6.0.Z.E4S:git-core-0:2.31.8-3.el8_6.1.s390x",
"AppStream-8.6.0.Z.E4S:git-core-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.E4S:git-core-debuginfo-0:2.31.8-3.el8_6.1.aarch64",
"AppStream-8.6.0.Z.E4S:git-core-debuginfo-0:2.31.8-3.el8_6.1.ppc64le",
"AppStream-8.6.0.Z.E4S:git-core-debuginfo-0:2.31.8-3.el8_6.1.s390x",
"AppStream-8.6.0.Z.E4S:git-core-debuginfo-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.E4S:git-core-doc-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.E4S:git-credential-libsecret-0:2.31.8-3.el8_6.1.aarch64",
"AppStream-8.6.0.Z.E4S:git-credential-libsecret-0:2.31.8-3.el8_6.1.ppc64le",
"AppStream-8.6.0.Z.E4S:git-credential-libsecret-0:2.31.8-3.el8_6.1.s390x",
"AppStream-8.6.0.Z.E4S:git-credential-libsecret-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.E4S:git-credential-libsecret-debuginfo-0:2.31.8-3.el8_6.1.aarch64",
"AppStream-8.6.0.Z.E4S:git-credential-libsecret-debuginfo-0:2.31.8-3.el8_6.1.ppc64le",
"AppStream-8.6.0.Z.E4S:git-credential-libsecret-debuginfo-0:2.31.8-3.el8_6.1.s390x",
"AppStream-8.6.0.Z.E4S:git-credential-libsecret-debuginfo-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.E4S:git-daemon-0:2.31.8-3.el8_6.1.aarch64",
"AppStream-8.6.0.Z.E4S:git-daemon-0:2.31.8-3.el8_6.1.ppc64le",
"AppStream-8.6.0.Z.E4S:git-daemon-0:2.31.8-3.el8_6.1.s390x",
"AppStream-8.6.0.Z.E4S:git-daemon-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.E4S:git-daemon-debuginfo-0:2.31.8-3.el8_6.1.aarch64",
"AppStream-8.6.0.Z.E4S:git-daemon-debuginfo-0:2.31.8-3.el8_6.1.ppc64le",
"AppStream-8.6.0.Z.E4S:git-daemon-debuginfo-0:2.31.8-3.el8_6.1.s390x",
"AppStream-8.6.0.Z.E4S:git-daemon-debuginfo-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.E4S:git-debuginfo-0:2.31.8-3.el8_6.1.aarch64",
"AppStream-8.6.0.Z.E4S:git-debuginfo-0:2.31.8-3.el8_6.1.ppc64le",
"AppStream-8.6.0.Z.E4S:git-debuginfo-0:2.31.8-3.el8_6.1.s390x",
"AppStream-8.6.0.Z.E4S:git-debuginfo-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.E4S:git-debugsource-0:2.31.8-3.el8_6.1.aarch64",
"AppStream-8.6.0.Z.E4S:git-debugsource-0:2.31.8-3.el8_6.1.ppc64le",
"AppStream-8.6.0.Z.E4S:git-debugsource-0:2.31.8-3.el8_6.1.s390x",
"AppStream-8.6.0.Z.E4S:git-debugsource-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.E4S:git-email-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.E4S:git-gui-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.E4S:git-instaweb-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.E4S:git-subtree-0:2.31.8-3.el8_6.1.aarch64",
"AppStream-8.6.0.Z.E4S:git-subtree-0:2.31.8-3.el8_6.1.ppc64le",
"AppStream-8.6.0.Z.E4S:git-subtree-0:2.31.8-3.el8_6.1.s390x",
"AppStream-8.6.0.Z.E4S:git-subtree-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.E4S:git-svn-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.E4S:gitk-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.E4S:gitweb-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.E4S:perl-Git-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.E4S:perl-Git-SVN-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.TUS:git-0:2.31.8-3.el8_6.1.src",
"AppStream-8.6.0.Z.TUS:git-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.TUS:git-all-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.TUS:git-core-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.TUS:git-core-debuginfo-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.TUS:git-core-doc-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.TUS:git-credential-libsecret-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.TUS:git-credential-libsecret-debuginfo-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.TUS:git-daemon-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.TUS:git-daemon-debuginfo-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.TUS:git-debuginfo-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.TUS:git-debugsource-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.TUS:git-email-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.TUS:git-gui-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.TUS:git-instaweb-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.TUS:git-subtree-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.TUS:git-svn-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.TUS:gitk-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.TUS:gitweb-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.TUS:perl-Git-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.TUS:perl-Git-SVN-0:2.31.8-3.el8_6.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.0,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.6.0.Z.AUS:git-0:2.31.8-3.el8_6.1.src",
"AppStream-8.6.0.Z.AUS:git-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.AUS:git-all-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.AUS:git-core-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.AUS:git-core-debuginfo-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.AUS:git-core-doc-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.AUS:git-credential-libsecret-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.AUS:git-credential-libsecret-debuginfo-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.AUS:git-daemon-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.AUS:git-daemon-debuginfo-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.AUS:git-debuginfo-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.AUS:git-debugsource-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.AUS:git-email-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.AUS:git-gui-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.AUS:git-instaweb-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.AUS:git-subtree-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.AUS:git-svn-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.AUS:gitk-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.AUS:gitweb-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.AUS:perl-Git-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.AUS:perl-Git-SVN-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.E4S:git-0:2.31.8-3.el8_6.1.aarch64",
"AppStream-8.6.0.Z.E4S:git-0:2.31.8-3.el8_6.1.ppc64le",
"AppStream-8.6.0.Z.E4S:git-0:2.31.8-3.el8_6.1.s390x",
"AppStream-8.6.0.Z.E4S:git-0:2.31.8-3.el8_6.1.src",
"AppStream-8.6.0.Z.E4S:git-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.E4S:git-all-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.E4S:git-core-0:2.31.8-3.el8_6.1.aarch64",
"AppStream-8.6.0.Z.E4S:git-core-0:2.31.8-3.el8_6.1.ppc64le",
"AppStream-8.6.0.Z.E4S:git-core-0:2.31.8-3.el8_6.1.s390x",
"AppStream-8.6.0.Z.E4S:git-core-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.E4S:git-core-debuginfo-0:2.31.8-3.el8_6.1.aarch64",
"AppStream-8.6.0.Z.E4S:git-core-debuginfo-0:2.31.8-3.el8_6.1.ppc64le",
"AppStream-8.6.0.Z.E4S:git-core-debuginfo-0:2.31.8-3.el8_6.1.s390x",
"AppStream-8.6.0.Z.E4S:git-core-debuginfo-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.E4S:git-core-doc-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.E4S:git-credential-libsecret-0:2.31.8-3.el8_6.1.aarch64",
"AppStream-8.6.0.Z.E4S:git-credential-libsecret-0:2.31.8-3.el8_6.1.ppc64le",
"AppStream-8.6.0.Z.E4S:git-credential-libsecret-0:2.31.8-3.el8_6.1.s390x",
"AppStream-8.6.0.Z.E4S:git-credential-libsecret-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.E4S:git-credential-libsecret-debuginfo-0:2.31.8-3.el8_6.1.aarch64",
"AppStream-8.6.0.Z.E4S:git-credential-libsecret-debuginfo-0:2.31.8-3.el8_6.1.ppc64le",
"AppStream-8.6.0.Z.E4S:git-credential-libsecret-debuginfo-0:2.31.8-3.el8_6.1.s390x",
"AppStream-8.6.0.Z.E4S:git-credential-libsecret-debuginfo-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.E4S:git-daemon-0:2.31.8-3.el8_6.1.aarch64",
"AppStream-8.6.0.Z.E4S:git-daemon-0:2.31.8-3.el8_6.1.ppc64le",
"AppStream-8.6.0.Z.E4S:git-daemon-0:2.31.8-3.el8_6.1.s390x",
"AppStream-8.6.0.Z.E4S:git-daemon-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.E4S:git-daemon-debuginfo-0:2.31.8-3.el8_6.1.aarch64",
"AppStream-8.6.0.Z.E4S:git-daemon-debuginfo-0:2.31.8-3.el8_6.1.ppc64le",
"AppStream-8.6.0.Z.E4S:git-daemon-debuginfo-0:2.31.8-3.el8_6.1.s390x",
"AppStream-8.6.0.Z.E4S:git-daemon-debuginfo-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.E4S:git-debuginfo-0:2.31.8-3.el8_6.1.aarch64",
"AppStream-8.6.0.Z.E4S:git-debuginfo-0:2.31.8-3.el8_6.1.ppc64le",
"AppStream-8.6.0.Z.E4S:git-debuginfo-0:2.31.8-3.el8_6.1.s390x",
"AppStream-8.6.0.Z.E4S:git-debuginfo-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.E4S:git-debugsource-0:2.31.8-3.el8_6.1.aarch64",
"AppStream-8.6.0.Z.E4S:git-debugsource-0:2.31.8-3.el8_6.1.ppc64le",
"AppStream-8.6.0.Z.E4S:git-debugsource-0:2.31.8-3.el8_6.1.s390x",
"AppStream-8.6.0.Z.E4S:git-debugsource-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.E4S:git-email-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.E4S:git-gui-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.E4S:git-instaweb-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.E4S:git-subtree-0:2.31.8-3.el8_6.1.aarch64",
"AppStream-8.6.0.Z.E4S:git-subtree-0:2.31.8-3.el8_6.1.ppc64le",
"AppStream-8.6.0.Z.E4S:git-subtree-0:2.31.8-3.el8_6.1.s390x",
"AppStream-8.6.0.Z.E4S:git-subtree-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.E4S:git-svn-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.E4S:gitk-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.E4S:gitweb-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.E4S:perl-Git-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.E4S:perl-Git-SVN-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.TUS:git-0:2.31.8-3.el8_6.1.src",
"AppStream-8.6.0.Z.TUS:git-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.TUS:git-all-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.TUS:git-core-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.TUS:git-core-debuginfo-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.TUS:git-core-doc-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.TUS:git-credential-libsecret-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.TUS:git-credential-libsecret-debuginfo-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.TUS:git-daemon-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.TUS:git-daemon-debuginfo-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.TUS:git-debuginfo-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.TUS:git-debugsource-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.TUS:git-email-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.TUS:git-gui-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.TUS:git-instaweb-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.TUS:git-subtree-0:2.31.8-3.el8_6.1.x86_64",
"AppStream-8.6.0.Z.TUS:git-svn-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.TUS:gitk-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.TUS:gitweb-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.TUS:perl-Git-0:2.31.8-3.el8_6.1.noarch",
"AppStream-8.6.0.Z.TUS:perl-Git-SVN-0:2.31.8-3.el8_6.1.noarch"
]
}
],
"threats": [
{
"category": "exploit_status",
"date": "2025-08-25T00:00:00+00:00",
"details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
},
{
"category": "impact",
"details": "Important"
}
],
"title": "git: Git arbitrary code execution"
}
]
}
rhsa-2025:15827
Vulnerability from csaf_redhat
Published
2025-09-15 15:13
Modified
2025-11-14 16:38
Summary
Red Hat Security Advisory: updated web-terminal/tooling container image
Notes
Topic
Updated web-terminal/tooling container image is now available for Red Hat Web Terminal 1.12 on RHEL 9.
Details
The Red Hat Web Terminal 1.11 on RHEL 9 web-terminal-tooling container image has been updated to fix the following important CVEs: CVE-2025-5914, CVE-2025-49794, CVE-2025-49796, CVE-2025-6020, CVE-2025-48384, CVE-2025-48385, CVE-2025-7425, CVE-2025-6965, CVE-2025-8941.
Users of web-terminal/tooling container images are advised to upgrade to this updated image, which contain patches to correct security issues. Users of these images are also encouraged to rebuild all container images that depend on these images.
You can find images updated by this advisory in Red Hat Container Catalog (see References).
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated web-terminal/tooling container image is now available for Red Hat Web Terminal 1.12 on RHEL 9.",
"title": "Topic"
},
{
"category": "general",
"text": "The Red Hat Web Terminal 1.11 on RHEL 9 web-terminal-tooling container image has been updated to fix the following important CVEs: CVE-2025-5914, CVE-2025-49794, CVE-2025-49796, CVE-2025-6020, CVE-2025-48384, CVE-2025-48385, CVE-2025-7425, CVE-2025-6965, CVE-2025-8941.\n\nUsers of web-terminal/tooling container images are advised to upgrade to this updated image, which contain patches to correct security issues. Users of these images are also encouraged to rebuild all container images that depend on these images.\n\nYou can find images updated by this advisory in Red Hat Container Catalog (see References).",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:15827",
"url": "https://access.redhat.com/errata/RHSA-2025:15827"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2370861",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2370861"
},
{
"category": "external",
"summary": "2372373",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2372373"
},
{
"category": "external",
"summary": "2372385",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2372385"
},
{
"category": "external",
"summary": "2372512",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2372512"
},
{
"category": "external",
"summary": "2378806",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2378806"
},
{
"category": "external",
"summary": "2378808",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2378808"
},
{
"category": "external",
"summary": "2379274",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2379274"
},
{
"category": "external",
"summary": "2380149",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2380149"
},
{
"category": "external",
"summary": "2388220",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2388220"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_15827.json"
}
],
"title": "Red Hat Security Advisory: updated web-terminal/tooling container image",
"tracking": {
"current_release_date": "2025-11-14T16:38:34+00:00",
"generator": {
"date": "2025-11-14T16:38:34+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.12"
}
},
"id": "RHSA-2025:15827",
"initial_release_date": "2025-09-15T15:13:16+00:00",
"revision_history": [
{
"date": "2025-09-15T15:13:16+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-09-15T15:13:16+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-14T16:38:34+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Web Terminal 1.12 on RHEL 9",
"product": {
"name": "Red Hat Web Terminal 1.12 on RHEL 9",
"product_id": "9Base-WebTerminal-1.12",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:webterminal:1.12::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat Web Terminal"
},
{
"branches": [
{
"category": "product_version",
"name": "web-terminal/web-terminal-tooling-rhel9@sha256:f43507114dbba2dcb8083c107c0db8a2ffa4834d1250155496f3c23fbaf68413_amd64",
"product": {
"name": "web-terminal/web-terminal-tooling-rhel9@sha256:f43507114dbba2dcb8083c107c0db8a2ffa4834d1250155496f3c23fbaf68413_amd64",
"product_id": "web-terminal/web-terminal-tooling-rhel9@sha256:f43507114dbba2dcb8083c107c0db8a2ffa4834d1250155496f3c23fbaf68413_amd64",
"product_identification_helper": {
"purl": "pkg:oci/web-terminal-tooling-rhel9@sha256:f43507114dbba2dcb8083c107c0db8a2ffa4834d1250155496f3c23fbaf68413?arch=amd64\u0026repository_url=registry.redhat.io/web-terminal/web-terminal-tooling-rhel9\u0026tag=1.12-4"
}
}
}
],
"category": "architecture",
"name": "amd64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "web-terminal/web-terminal-tooling-rhel9@sha256:f43507114dbba2dcb8083c107c0db8a2ffa4834d1250155496f3c23fbaf68413_amd64 as a component of Red Hat Web Terminal 1.12 on RHEL 9",
"product_id": "9Base-WebTerminal-1.12:web-terminal/web-terminal-tooling-rhel9@sha256:f43507114dbba2dcb8083c107c0db8a2ffa4834d1250155496f3c23fbaf68413_amd64"
},
"product_reference": "web-terminal/web-terminal-tooling-rhel9@sha256:f43507114dbba2dcb8083c107c0db8a2ffa4834d1250155496f3c23fbaf68413_amd64",
"relates_to_product_reference": "9Base-WebTerminal-1.12"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-5914",
"cwe": {
"id": "CWE-415",
"name": "Double Free"
},
"discovery_date": "2025-06-06T17:58:25.491000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2370861"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability has been identified in the libarchive library, specifically within the archive_read_format_rar_seek_data() function. This flaw involves an integer overflow that can ultimately lead to a double-free condition. Exploiting a double-free vulnerability can result in memory corruption, enabling an attacker to execute arbitrary code or cause a denial-of-service condition.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "libarchive: Double free at archive_read_format_rar_seek_data() in archive_read_support_format_rar.c",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The Red Hat Product Security team has rated this vulnerability as Important because it allows a local attacker with limited privileges to trigger a double-free in libarchive\u0027s RAR parser by providing a specially crafted RAR archive. Successful exploitation could result in code execution or application crashes.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-WebTerminal-1.12:web-terminal/web-terminal-tooling-rhel9@sha256:f43507114dbba2dcb8083c107c0db8a2ffa4834d1250155496f3c23fbaf68413_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-5914"
},
{
"category": "external",
"summary": "RHBZ#2370861",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2370861"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-5914",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5914"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-5914",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-5914"
},
{
"category": "external",
"summary": "https://github.com/libarchive/libarchive/pull/2598",
"url": "https://github.com/libarchive/libarchive/pull/2598"
},
{
"category": "external",
"summary": "https://github.com/libarchive/libarchive/releases/tag/v3.8.0",
"url": "https://github.com/libarchive/libarchive/releases/tag/v3.8.0"
}
],
"release_date": "2025-05-20T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-09-15T15:13:16+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-WebTerminal-1.12:web-terminal/web-terminal-tooling-rhel9@sha256:f43507114dbba2dcb8083c107c0db8a2ffa4834d1250155496f3c23fbaf68413_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:15827"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"9Base-WebTerminal-1.12:web-terminal/web-terminal-tooling-rhel9@sha256:f43507114dbba2dcb8083c107c0db8a2ffa4834d1250155496f3c23fbaf68413_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "libarchive: Double free at archive_read_format_rar_seek_data() in archive_read_support_format_rar.c"
},
{
"acknowledgments": [
{
"names": [
"Olivier BAL-PETRE"
],
"organization": "ANSSI - French Cybersecurity Agency"
}
],
"cve": "CVE-2025-6020",
"cwe": {
"id": "CWE-22",
"name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
},
"discovery_date": "2025-06-12T16:33:01.214000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2372512"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in linux-pam. The module pam_namespace may use access user-controlled paths without proper protection, allowing local users to elevate their privileges to root via multiple symlink attacks and race conditions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "linux-pam: Linux-pam directory Traversal",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability in pam_namespace marked as Important rather than Moderate due to its direct impact on privilege boundaries and the ease of exploitation in common configurations. By leveraging symlink attacks or race conditions in polyinstantiated directories under their control, unprivileged local users can escalate to root, compromising the entire system. Since pam_namespace is often used in multi-user environments (e.g., shared systems, terminal servers, containers), a misconfigured or partially protected setup becomes a single point of failure. The attack does not require special capabilities or kernel-level exploits\u2014just timing and control over certain paths\u2014making it both reliable and low-barrier. Moreover, privilege escalation flaws like this can be chained with other vulnerabilities to persist or evade detection, further amplifying the risk.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-WebTerminal-1.12:web-terminal/web-terminal-tooling-rhel9@sha256:f43507114dbba2dcb8083c107c0db8a2ffa4834d1250155496f3c23fbaf68413_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-6020"
},
{
"category": "external",
"summary": "RHBZ#2372512",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2372512"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-6020",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6020"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-6020",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-6020"
}
],
"release_date": "2025-06-17T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-09-15T15:13:16+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-WebTerminal-1.12:web-terminal/web-terminal-tooling-rhel9@sha256:f43507114dbba2dcb8083c107c0db8a2ffa4834d1250155496f3c23fbaf68413_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:15827"
},
{
"category": "workaround",
"details": "Disable the `pam_namespace` module if it is not essential for your environment, or carefully review and configure it to avoid operating on any directories or paths that can be influenced or controlled by unprivileged users, such as user home directories or world-writable locations like `/tmp`.",
"product_ids": [
"9Base-WebTerminal-1.12:web-terminal/web-terminal-tooling-rhel9@sha256:f43507114dbba2dcb8083c107c0db8a2ffa4834d1250155496f3c23fbaf68413_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"9Base-WebTerminal-1.12:web-terminal/web-terminal-tooling-rhel9@sha256:f43507114dbba2dcb8083c107c0db8a2ffa4834d1250155496f3c23fbaf68413_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "linux-pam: Linux-pam directory Traversal"
},
{
"cve": "CVE-2025-6965",
"cwe": {
"id": "CWE-197",
"name": "Numeric Truncation Error"
},
"discovery_date": "2025-07-15T14:02:19.241458+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2380149"
}
],
"notes": [
{
"category": "description",
"text": "A memory corruption flaw was found in SQLite. Under specific conditions a query can be generated where the number of aggregate terms could exceed the number of columns available. This issue could lead to memory corruption and subsequent unintended behavior.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "sqlite: Integer Truncation in SQLite",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability in SQLite is categorized as Important rather than Critical because, although it involves memory corruption, the conditions required to trigger it are relatively constrained. The flaw arises when a query causes the number of aggregate terms to exceed internal limits, leading to potential buffer overflows or memory mismanagement. However, exploitation requires the ability to craft complex SQL queries and interact with the SQLite engine in a specific manner\u2014typically through direct SQL input. There is no known evidence of arbitrary code execution, privilege escalation, or remote exploitability as a direct result of this flaw. Additionally, most SQLite deployments are embedded in applications where input is tightly controlled or sanitized.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-WebTerminal-1.12:web-terminal/web-terminal-tooling-rhel9@sha256:f43507114dbba2dcb8083c107c0db8a2ffa4834d1250155496f3c23fbaf68413_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-6965"
},
{
"category": "external",
"summary": "RHBZ#2380149",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2380149"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-6965",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6965"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-6965",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-6965"
},
{
"category": "external",
"summary": "https://www.sqlite.org/src/info/5508b56fd24016c13981ec280ecdd833007c9d8dd595edb295b984c2b487b5c8",
"url": "https://www.sqlite.org/src/info/5508b56fd24016c13981ec280ecdd833007c9d8dd595edb295b984c2b487b5c8"
}
],
"release_date": "2025-07-15T13:44:00.784000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-09-15T15:13:16+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-WebTerminal-1.12:web-terminal/web-terminal-tooling-rhel9@sha256:f43507114dbba2dcb8083c107c0db8a2ffa4834d1250155496f3c23fbaf68413_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:15827"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-WebTerminal-1.12:web-terminal/web-terminal-tooling-rhel9@sha256:f43507114dbba2dcb8083c107c0db8a2ffa4834d1250155496f3c23fbaf68413_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 7.7,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:H/A:L",
"version": "3.1"
},
"products": [
"9Base-WebTerminal-1.12:web-terminal/web-terminal-tooling-rhel9@sha256:f43507114dbba2dcb8083c107c0db8a2ffa4834d1250155496f3c23fbaf68413_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "sqlite: Integer Truncation in SQLite"
},
{
"acknowledgments": [
{
"names": [
"Sergei Glazunov"
],
"organization": "Google Project Zero"
}
],
"cve": "CVE-2025-7425",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"discovery_date": "2025-07-10T09:37:28.172000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2379274"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in libxslt where the attribute type, atype, flags are modified in a way that corrupts internal memory management. When XSLT functions, such as the key() process, result in tree fragments, this corruption prevents the proper cleanup of ID attributes. As a result, the system may access freed memory, causing crashes or enabling attackers to trigger heap corruption.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "libxslt: Heap Use-After-Free in libxslt caused by atype corruption in xmlAttrPtr",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This heap-use-after-free vulnerability in libxslt is rated Important because it can lead to memory corruption and application crashes. The flaw arises when internal attribute metadata (atype) is modified by libxslt\u0027s xsltSetSourceNodeFlags() function during processing of result tree fragments. If the flag corruption prevents proper removal of ID references, later memory cleanup routines may operate on already-freed memory. Since libxslt is commonly used in server-side XML processing, this could result in denial-of-service or potentially facilitate code execution under certain memory reuse conditions.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-WebTerminal-1.12:web-terminal/web-terminal-tooling-rhel9@sha256:f43507114dbba2dcb8083c107c0db8a2ffa4834d1250155496f3c23fbaf68413_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-7425"
},
{
"category": "external",
"summary": "RHBZ#2379274",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2379274"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-7425",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-7425"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-7425",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-7425"
},
{
"category": "external",
"summary": "https://gitlab.gnome.org/GNOME/libxslt/-/issues/140",
"url": "https://gitlab.gnome.org/GNOME/libxslt/-/issues/140"
}
],
"release_date": "2025-07-10T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-09-15T15:13:16+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-WebTerminal-1.12:web-terminal/web-terminal-tooling-rhel9@sha256:f43507114dbba2dcb8083c107c0db8a2ffa4834d1250155496f3c23fbaf68413_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:15827"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-WebTerminal-1.12:web-terminal/web-terminal-tooling-rhel9@sha256:f43507114dbba2dcb8083c107c0db8a2ffa4834d1250155496f3c23fbaf68413_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"9Base-WebTerminal-1.12:web-terminal/web-terminal-tooling-rhel9@sha256:f43507114dbba2dcb8083c107c0db8a2ffa4834d1250155496f3c23fbaf68413_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "libxslt: Heap Use-After-Free in libxslt caused by atype corruption in xmlAttrPtr"
},
{
"cve": "CVE-2025-8941",
"cwe": {
"id": "CWE-22",
"name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
},
"discovery_date": "2025-08-13T12:11:55.270000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2388220"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in linux-pam. The pam_namespace module may improperly handle user-controlled paths, allowing local users to exploit symlink attacks and race conditions to elevate their privileges to root. This CVE provides a \"complete\" fix for CVE-2025-6020.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "linux-pam: Incomplete fix for CVE-2025-6020",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability in pam_namespace is rated Important because it allows a local, unprivileged user to escalate privileges to root by exploiting symlink attacks or race conditions in polyinstantiated directories under their control. Successful exploitation requires only the ability to create and manipulate filesystem paths in such directories, without the need for special capabilities or kernel-level vulnerabilities. In multi-user environments\u2014such as shared systems, terminal servers, or certain container deployments, an unprotected or misconfigured pam_namespace configuration can serve as a single point of compromise. Privilege escalation flaws of this nature may also be chained with other vulnerabilities to maintain persistence or evade detection, further increasing the overall impact.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-WebTerminal-1.12:web-terminal/web-terminal-tooling-rhel9@sha256:f43507114dbba2dcb8083c107c0db8a2ffa4834d1250155496f3c23fbaf68413_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-8941"
},
{
"category": "external",
"summary": "RHBZ#2388220",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2388220"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-8941",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8941"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-8941",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-8941"
}
],
"release_date": "2025-08-13T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-09-15T15:13:16+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-WebTerminal-1.12:web-terminal/web-terminal-tooling-rhel9@sha256:f43507114dbba2dcb8083c107c0db8a2ffa4834d1250155496f3c23fbaf68413_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:15827"
},
{
"category": "workaround",
"details": "Disable the `pam_namespace` module if it is not essential for your environment, or carefully review and configure it to avoid operating on any directories or paths that can be influenced or controlled by unprivileged users, such as user home directories or world-writable locations like `/tmp`.",
"product_ids": [
"9Base-WebTerminal-1.12:web-terminal/web-terminal-tooling-rhel9@sha256:f43507114dbba2dcb8083c107c0db8a2ffa4834d1250155496f3c23fbaf68413_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"9Base-WebTerminal-1.12:web-terminal/web-terminal-tooling-rhel9@sha256:f43507114dbba2dcb8083c107c0db8a2ffa4834d1250155496f3c23fbaf68413_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "linux-pam: Incomplete fix for CVE-2025-6020"
},
{
"cve": "CVE-2025-48384",
"cwe": {
"id": "CWE-59",
"name": "Improper Link Resolution Before File Access (\u0027Link Following\u0027)"
},
"discovery_date": "2025-07-08T19:00:48.297925+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2378806"
}
],
"notes": [
{
"category": "description",
"text": "A line-end handling flaw was found in Git. When writing a config entry, values with a trailing carriage return (CR) are not quoted, resulting in the CR being lost when the config is read later. When initializing a submodule, if the submodule path contains a trailing CR, the altered path is read, resulting in the submodule being checked out to an incorrect location.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "git: Git arbitrary code execution",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability marked as Important and not Moderate flaw because it undermines Git\u2019s path and config integrity by allowing carriage return (\\r) injection to manipulate submodule checkout behavior. Git previously failed to quote config values containing trailing CR, causing the value to be misinterpreted when read back. In the context of submodules, this leads to incorrect path resolution, allowing an attacker to redirect the checkout path via a symlink to a sensitive directory like .git/modules/\u003csubmodule\u003e/hooks. If an executable post-checkout hook exists there, it could be inadvertently executed, resulting in arbitrary code execution during submodule operations. This is particularly dangerous in automated CI/CD pipelines or multi-repo projects where submodules are initialized or updated without manual inspection.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-WebTerminal-1.12:web-terminal/web-terminal-tooling-rhel9@sha256:f43507114dbba2dcb8083c107c0db8a2ffa4834d1250155496f3c23fbaf68413_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-48384"
},
{
"category": "external",
"summary": "RHBZ#2378806",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2378806"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-48384",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-48384"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-48384",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-48384"
},
{
"category": "external",
"summary": "https://dgl.cx/2025/07/git-clone-submodule-cve-2025-48384",
"url": "https://dgl.cx/2025/07/git-clone-submodule-cve-2025-48384"
},
{
"category": "external",
"summary": "https://github.com/git/git/commit/05e9cd64ee23bbadcea6bcffd6660ed02b8eab89",
"url": "https://github.com/git/git/commit/05e9cd64ee23bbadcea6bcffd6660ed02b8eab89"
},
{
"category": "external",
"summary": "https://github.com/git/git/security/advisories/GHSA-vwqx-4fm8-6qc9",
"url": "https://github.com/git/git/security/advisories/GHSA-vwqx-4fm8-6qc9"
},
{
"category": "external",
"summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog",
"url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
}
],
"release_date": "2025-07-08T18:23:48.710000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-09-15T15:13:16+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-WebTerminal-1.12:web-terminal/web-terminal-tooling-rhel9@sha256:f43507114dbba2dcb8083c107c0db8a2ffa4834d1250155496f3c23fbaf68413_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:15827"
},
{
"category": "workaround",
"details": "To mitigate this issue, avoid using --recurse-submodules when cloning repositories from untrusted sources; instead, clone normally and only initialize or update submodules manually after reviewing them.",
"product_ids": [
"9Base-WebTerminal-1.12:web-terminal/web-terminal-tooling-rhel9@sha256:f43507114dbba2dcb8083c107c0db8a2ffa4834d1250155496f3c23fbaf68413_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.0,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"9Base-WebTerminal-1.12:web-terminal/web-terminal-tooling-rhel9@sha256:f43507114dbba2dcb8083c107c0db8a2ffa4834d1250155496f3c23fbaf68413_amd64"
]
}
],
"threats": [
{
"category": "exploit_status",
"date": "2025-08-25T00:00:00+00:00",
"details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
},
{
"category": "impact",
"details": "Important"
}
],
"title": "git: Git arbitrary code execution"
},
{
"cve": "CVE-2025-48385",
"cwe": {
"id": "CWE-88",
"name": "Improper Neutralization of Argument Delimiters in a Command (\u0027Argument Injection\u0027)"
},
"discovery_date": "2025-07-08T19:00:55.106787+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2378808"
}
],
"notes": [
{
"category": "description",
"text": "A bundled uri handling flaw was found in Git. When cloning a repository, Git knows to optionally fetch a bundle advertised by the remote server, which allows the server side to offload parts of the clone to a CDN. The Git client does not perform sufficient validation of the advertised bundles, which allows the remote side to perform protocol injection.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "git: Git arbitrary file writes",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability marked as Important rather than a Moderate flaw because it enables protocol injection at the transport layer of Git\u0027s bundle-uri mechanism, allowing a remote server to manipulate how and where data is written on the client system during a clone operation. The lack of input sanitization on user-controlled values like the URI and target path means that malformed inputs containing spaces or newlines can break protocol framing, leading to arbitrary file writes. In scenarios such as CI pipelines, developer environments, or recursive clones with submodules, an attacker can exploit this to overwrite critical files or inject malicious content, potentially achieving remote code execution (RCE).",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-WebTerminal-1.12:web-terminal/web-terminal-tooling-rhel9@sha256:f43507114dbba2dcb8083c107c0db8a2ffa4834d1250155496f3c23fbaf68413_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-48385"
},
{
"category": "external",
"summary": "RHBZ#2378808",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2378808"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-48385",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-48385"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-48385",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-48385"
},
{
"category": "external",
"summary": "https://github.com/git/git/security/advisories/GHSA-m98c-vgpc-9655",
"url": "https://github.com/git/git/security/advisories/GHSA-m98c-vgpc-9655"
}
],
"release_date": "2025-07-08T18:23:44.405000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-09-15T15:13:16+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-WebTerminal-1.12:web-terminal/web-terminal-tooling-rhel9@sha256:f43507114dbba2dcb8083c107c0db8a2ffa4834d1250155496f3c23fbaf68413_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:15827"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-WebTerminal-1.12:web-terminal/web-terminal-tooling-rhel9@sha256:f43507114dbba2dcb8083c107c0db8a2ffa4834d1250155496f3c23fbaf68413_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 8.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:L",
"version": "3.1"
},
"products": [
"9Base-WebTerminal-1.12:web-terminal/web-terminal-tooling-rhel9@sha256:f43507114dbba2dcb8083c107c0db8a2ffa4834d1250155496f3c23fbaf68413_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "git: Git arbitrary file writes"
},
{
"cve": "CVE-2025-49794",
"cwe": {
"id": "CWE-825",
"name": "Expired Pointer Dereference"
},
"discovery_date": "2025-06-11T21:33:43.044000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2372373"
}
],
"notes": [
{
"category": "description",
"text": "A use-after-free vulnerability was found in libxml2. This issue occurs when parsing XPath elements under certain circumstances when the XML schematron has the \u003csch:name path=\"...\"/\u003e schema elements. This flaw allows a malicious actor to craft a malicious XML document used as input for libxml, resulting in the program\u0027s crash using libxml or other possible undefined behaviors.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "libxml: Heap use after free (UAF) leads to Denial of service (DoS)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue was rated with a severity impact of Important by Red Hat Product Security, as libxml can be used to parse XML coming from the network depending on how the program consumes it and uses the library. Additionally, although the initial report shows a crash due to invalid memory access (A:H), other undefined issues that can present data integrity due to the application overwriting sensitive data are not discarded (I:H).",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-WebTerminal-1.12:web-terminal/web-terminal-tooling-rhel9@sha256:f43507114dbba2dcb8083c107c0db8a2ffa4834d1250155496f3c23fbaf68413_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-49794"
},
{
"category": "external",
"summary": "RHBZ#2372373",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2372373"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-49794",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-49794"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-49794",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-49794"
}
],
"release_date": "2025-06-10T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-09-15T15:13:16+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-WebTerminal-1.12:web-terminal/web-terminal-tooling-rhel9@sha256:f43507114dbba2dcb8083c107c0db8a2ffa4834d1250155496f3c23fbaf68413_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:15827"
},
{
"category": "workaround",
"details": "There\u0027s no available mitigation other than avoid processing untrusted XML documents before updating to the libxml version containing the fix.",
"product_ids": [
"9Base-WebTerminal-1.12:web-terminal/web-terminal-tooling-rhel9@sha256:f43507114dbba2dcb8083c107c0db8a2ffa4834d1250155496f3c23fbaf68413_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"9Base-WebTerminal-1.12:web-terminal/web-terminal-tooling-rhel9@sha256:f43507114dbba2dcb8083c107c0db8a2ffa4834d1250155496f3c23fbaf68413_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "libxml: Heap use after free (UAF) leads to Denial of service (DoS)"
},
{
"cve": "CVE-2025-49796",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2025-06-12T00:35:26.470000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2372385"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in libxml2. Processing certain sch:name elements from the input XML file can trigger a memory corruption issue. This flaw allows an attacker to craft a malicious XML input file that can lead libxml to crash, resulting in a denial of service or other possible undefined behavior due to sensitive data being corrupted in memory.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "libxml: Type confusion leads to Denial of service (DoS)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The Red Hat Product Security team has evaluated this vulnerability as having an Important security impact, as libxml can be used to parse XML from the network depending on how the program consumes it using the library. Additionally, although the initial report shows a crash due to invalid memory access (A:H), other undefined issues that can present data integrity due to the application overwriting sensitive data are not discarded (I:H).",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-WebTerminal-1.12:web-terminal/web-terminal-tooling-rhel9@sha256:f43507114dbba2dcb8083c107c0db8a2ffa4834d1250155496f3c23fbaf68413_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-49796"
},
{
"category": "external",
"summary": "RHBZ#2372385",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2372385"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-49796",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-49796"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-49796",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-49796"
}
],
"release_date": "2025-06-11T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-09-15T15:13:16+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-WebTerminal-1.12:web-terminal/web-terminal-tooling-rhel9@sha256:f43507114dbba2dcb8083c107c0db8a2ffa4834d1250155496f3c23fbaf68413_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:15827"
},
{
"category": "workaround",
"details": "There\u0027s no available mitigation other than to avoid processing untrusted XML documents if the user is unable/unwilling to update the library.",
"product_ids": [
"9Base-WebTerminal-1.12:web-terminal/web-terminal-tooling-rhel9@sha256:f43507114dbba2dcb8083c107c0db8a2ffa4834d1250155496f3c23fbaf68413_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"9Base-WebTerminal-1.12:web-terminal/web-terminal-tooling-rhel9@sha256:f43507114dbba2dcb8083c107c0db8a2ffa4834d1250155496f3c23fbaf68413_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "libxml: Type confusion leads to Denial of service (DoS)"
}
]
}
rhsa-2025:11794
Vulnerability from csaf_redhat
Published
2025-07-28 01:28
Modified
2025-11-06 23:41
Summary
Red Hat Security Advisory: git security update
Notes
Topic
An update for git is now available for Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions and Red Hat Enterprise Linux 8.8 Telecommunications Update Service.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Git is a distributed revision control system with a decentralized architecture. As opposed to centralized version control systems with a client-server model, Git ensures that each working copy of a Git repository is an exact copy with complete revision history. This not only allows the user to work on and contribute to projects without the need to have permission to push the changes to their official repositories, but also makes it possible for the user to work with no network connection.
Security Fix(es):
* git: Git arbitrary code execution (CVE-2025-48384)
* git: Git arbitrary file writes (CVE-2025-48385)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for git is now available for Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions and Red Hat Enterprise Linux 8.8 Telecommunications Update Service.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Git is a distributed revision control system with a decentralized architecture. As opposed to centralized version control systems with a client-server model, Git ensures that each working copy of a Git repository is an exact copy with complete revision history. This not only allows the user to work on and contribute to projects without the need to have permission to push the changes to their official repositories, but also makes it possible for the user to work with no network connection.\n\nSecurity Fix(es):\n\n* git: Git arbitrary code execution (CVE-2025-48384)\n\n* git: Git arbitrary file writes (CVE-2025-48385)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:11794",
"url": "https://access.redhat.com/errata/RHSA-2025:11794"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2378806",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2378806"
},
{
"category": "external",
"summary": "2378808",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2378808"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_11794.json"
}
],
"title": "Red Hat Security Advisory: git security update",
"tracking": {
"current_release_date": "2025-11-06T23:41:42+00:00",
"generator": {
"date": "2025-11-06T23:41:42+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.11"
}
},
"id": "RHSA-2025:11794",
"initial_release_date": "2025-07-28T01:28:55+00:00",
"revision_history": [
{
"date": "2025-07-28T01:28:55+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-07-28T01:28:55+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-06T23:41:42+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream E4S (v.8.8)",
"product": {
"name": "Red Hat Enterprise Linux AppStream E4S (v.8.8)",
"product_id": "AppStream-8.8.0.Z.E4S",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_e4s:8.8::appstream"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream TUS (v.8.8)",
"product": {
"name": "Red Hat Enterprise Linux AppStream TUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.TUS",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_tus:8.8::appstream"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "git-0:2.39.5-1.el8_8.2.src",
"product": {
"name": "git-0:2.39.5-1.el8_8.2.src",
"product_id": "git-0:2.39.5-1.el8_8.2.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git@2.39.5-1.el8_8.2?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "git-0:2.39.5-1.el8_8.2.ppc64le",
"product": {
"name": "git-0:2.39.5-1.el8_8.2.ppc64le",
"product_id": "git-0:2.39.5-1.el8_8.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git@2.39.5-1.el8_8.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-core-0:2.39.5-1.el8_8.2.ppc64le",
"product": {
"name": "git-core-0:2.39.5-1.el8_8.2.ppc64le",
"product_id": "git-core-0:2.39.5-1.el8_8.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core@2.39.5-1.el8_8.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-0:2.39.5-1.el8_8.2.ppc64le",
"product": {
"name": "git-credential-libsecret-0:2.39.5-1.el8_8.2.ppc64le",
"product_id": "git-credential-libsecret-0:2.39.5-1.el8_8.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret@2.39.5-1.el8_8.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-daemon-0:2.39.5-1.el8_8.2.ppc64le",
"product": {
"name": "git-daemon-0:2.39.5-1.el8_8.2.ppc64le",
"product_id": "git-daemon-0:2.39.5-1.el8_8.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon@2.39.5-1.el8_8.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-subtree-0:2.39.5-1.el8_8.2.ppc64le",
"product": {
"name": "git-subtree-0:2.39.5-1.el8_8.2.ppc64le",
"product_id": "git-subtree-0:2.39.5-1.el8_8.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-subtree@2.39.5-1.el8_8.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-debugsource-0:2.39.5-1.el8_8.2.ppc64le",
"product": {
"name": "git-debugsource-0:2.39.5-1.el8_8.2.ppc64le",
"product_id": "git-debugsource-0:2.39.5-1.el8_8.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debugsource@2.39.5-1.el8_8.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-core-debuginfo-0:2.39.5-1.el8_8.2.ppc64le",
"product": {
"name": "git-core-debuginfo-0:2.39.5-1.el8_8.2.ppc64le",
"product_id": "git-core-debuginfo-0:2.39.5-1.el8_8.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core-debuginfo@2.39.5-1.el8_8.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-debuginfo-0:2.39.5-1.el8_8.2.ppc64le",
"product": {
"name": "git-credential-libsecret-debuginfo-0:2.39.5-1.el8_8.2.ppc64le",
"product_id": "git-credential-libsecret-debuginfo-0:2.39.5-1.el8_8.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret-debuginfo@2.39.5-1.el8_8.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-daemon-debuginfo-0:2.39.5-1.el8_8.2.ppc64le",
"product": {
"name": "git-daemon-debuginfo-0:2.39.5-1.el8_8.2.ppc64le",
"product_id": "git-daemon-debuginfo-0:2.39.5-1.el8_8.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon-debuginfo@2.39.5-1.el8_8.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-debuginfo-0:2.39.5-1.el8_8.2.ppc64le",
"product": {
"name": "git-debuginfo-0:2.39.5-1.el8_8.2.ppc64le",
"product_id": "git-debuginfo-0:2.39.5-1.el8_8.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debuginfo@2.39.5-1.el8_8.2?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "git-0:2.39.5-1.el8_8.2.x86_64",
"product": {
"name": "git-0:2.39.5-1.el8_8.2.x86_64",
"product_id": "git-0:2.39.5-1.el8_8.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git@2.39.5-1.el8_8.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-core-0:2.39.5-1.el8_8.2.x86_64",
"product": {
"name": "git-core-0:2.39.5-1.el8_8.2.x86_64",
"product_id": "git-core-0:2.39.5-1.el8_8.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core@2.39.5-1.el8_8.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-0:2.39.5-1.el8_8.2.x86_64",
"product": {
"name": "git-credential-libsecret-0:2.39.5-1.el8_8.2.x86_64",
"product_id": "git-credential-libsecret-0:2.39.5-1.el8_8.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret@2.39.5-1.el8_8.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-daemon-0:2.39.5-1.el8_8.2.x86_64",
"product": {
"name": "git-daemon-0:2.39.5-1.el8_8.2.x86_64",
"product_id": "git-daemon-0:2.39.5-1.el8_8.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon@2.39.5-1.el8_8.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-subtree-0:2.39.5-1.el8_8.2.x86_64",
"product": {
"name": "git-subtree-0:2.39.5-1.el8_8.2.x86_64",
"product_id": "git-subtree-0:2.39.5-1.el8_8.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-subtree@2.39.5-1.el8_8.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-debugsource-0:2.39.5-1.el8_8.2.x86_64",
"product": {
"name": "git-debugsource-0:2.39.5-1.el8_8.2.x86_64",
"product_id": "git-debugsource-0:2.39.5-1.el8_8.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debugsource@2.39.5-1.el8_8.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-core-debuginfo-0:2.39.5-1.el8_8.2.x86_64",
"product": {
"name": "git-core-debuginfo-0:2.39.5-1.el8_8.2.x86_64",
"product_id": "git-core-debuginfo-0:2.39.5-1.el8_8.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core-debuginfo@2.39.5-1.el8_8.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-debuginfo-0:2.39.5-1.el8_8.2.x86_64",
"product": {
"name": "git-credential-libsecret-debuginfo-0:2.39.5-1.el8_8.2.x86_64",
"product_id": "git-credential-libsecret-debuginfo-0:2.39.5-1.el8_8.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret-debuginfo@2.39.5-1.el8_8.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-daemon-debuginfo-0:2.39.5-1.el8_8.2.x86_64",
"product": {
"name": "git-daemon-debuginfo-0:2.39.5-1.el8_8.2.x86_64",
"product_id": "git-daemon-debuginfo-0:2.39.5-1.el8_8.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon-debuginfo@2.39.5-1.el8_8.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-debuginfo-0:2.39.5-1.el8_8.2.x86_64",
"product": {
"name": "git-debuginfo-0:2.39.5-1.el8_8.2.x86_64",
"product_id": "git-debuginfo-0:2.39.5-1.el8_8.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debuginfo@2.39.5-1.el8_8.2?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "git-all-0:2.39.5-1.el8_8.2.noarch",
"product": {
"name": "git-all-0:2.39.5-1.el8_8.2.noarch",
"product_id": "git-all-0:2.39.5-1.el8_8.2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-all@2.39.5-1.el8_8.2?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "git-core-doc-0:2.39.5-1.el8_8.2.noarch",
"product": {
"name": "git-core-doc-0:2.39.5-1.el8_8.2.noarch",
"product_id": "git-core-doc-0:2.39.5-1.el8_8.2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core-doc@2.39.5-1.el8_8.2?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "git-email-0:2.39.5-1.el8_8.2.noarch",
"product": {
"name": "git-email-0:2.39.5-1.el8_8.2.noarch",
"product_id": "git-email-0:2.39.5-1.el8_8.2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-email@2.39.5-1.el8_8.2?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "git-gui-0:2.39.5-1.el8_8.2.noarch",
"product": {
"name": "git-gui-0:2.39.5-1.el8_8.2.noarch",
"product_id": "git-gui-0:2.39.5-1.el8_8.2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-gui@2.39.5-1.el8_8.2?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "git-instaweb-0:2.39.5-1.el8_8.2.noarch",
"product": {
"name": "git-instaweb-0:2.39.5-1.el8_8.2.noarch",
"product_id": "git-instaweb-0:2.39.5-1.el8_8.2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-instaweb@2.39.5-1.el8_8.2?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "git-svn-0:2.39.5-1.el8_8.2.noarch",
"product": {
"name": "git-svn-0:2.39.5-1.el8_8.2.noarch",
"product_id": "git-svn-0:2.39.5-1.el8_8.2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-svn@2.39.5-1.el8_8.2?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "gitk-0:2.39.5-1.el8_8.2.noarch",
"product": {
"name": "gitk-0:2.39.5-1.el8_8.2.noarch",
"product_id": "gitk-0:2.39.5-1.el8_8.2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/gitk@2.39.5-1.el8_8.2?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "gitweb-0:2.39.5-1.el8_8.2.noarch",
"product": {
"name": "gitweb-0:2.39.5-1.el8_8.2.noarch",
"product_id": "gitweb-0:2.39.5-1.el8_8.2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/gitweb@2.39.5-1.el8_8.2?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "perl-Git-0:2.39.5-1.el8_8.2.noarch",
"product": {
"name": "perl-Git-0:2.39.5-1.el8_8.2.noarch",
"product_id": "perl-Git-0:2.39.5-1.el8_8.2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/perl-Git@2.39.5-1.el8_8.2?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "perl-Git-SVN-0:2.39.5-1.el8_8.2.noarch",
"product": {
"name": "perl-Git-SVN-0:2.39.5-1.el8_8.2.noarch",
"product_id": "perl-Git-SVN-0:2.39.5-1.el8_8.2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/perl-Git-SVN@2.39.5-1.el8_8.2?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "git-0:2.39.5-1.el8_8.2.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
"product_id": "AppStream-8.8.0.Z.E4S:git-0:2.39.5-1.el8_8.2.ppc64le"
},
"product_reference": "git-0:2.39.5-1.el8_8.2.ppc64le",
"relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-0:2.39.5-1.el8_8.2.src as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
"product_id": "AppStream-8.8.0.Z.E4S:git-0:2.39.5-1.el8_8.2.src"
},
"product_reference": "git-0:2.39.5-1.el8_8.2.src",
"relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-0:2.39.5-1.el8_8.2.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
"product_id": "AppStream-8.8.0.Z.E4S:git-0:2.39.5-1.el8_8.2.x86_64"
},
"product_reference": "git-0:2.39.5-1.el8_8.2.x86_64",
"relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-all-0:2.39.5-1.el8_8.2.noarch as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
"product_id": "AppStream-8.8.0.Z.E4S:git-all-0:2.39.5-1.el8_8.2.noarch"
},
"product_reference": "git-all-0:2.39.5-1.el8_8.2.noarch",
"relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-0:2.39.5-1.el8_8.2.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
"product_id": "AppStream-8.8.0.Z.E4S:git-core-0:2.39.5-1.el8_8.2.ppc64le"
},
"product_reference": "git-core-0:2.39.5-1.el8_8.2.ppc64le",
"relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-0:2.39.5-1.el8_8.2.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
"product_id": "AppStream-8.8.0.Z.E4S:git-core-0:2.39.5-1.el8_8.2.x86_64"
},
"product_reference": "git-core-0:2.39.5-1.el8_8.2.x86_64",
"relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-debuginfo-0:2.39.5-1.el8_8.2.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
"product_id": "AppStream-8.8.0.Z.E4S:git-core-debuginfo-0:2.39.5-1.el8_8.2.ppc64le"
},
"product_reference": "git-core-debuginfo-0:2.39.5-1.el8_8.2.ppc64le",
"relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-debuginfo-0:2.39.5-1.el8_8.2.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
"product_id": "AppStream-8.8.0.Z.E4S:git-core-debuginfo-0:2.39.5-1.el8_8.2.x86_64"
},
"product_reference": "git-core-debuginfo-0:2.39.5-1.el8_8.2.x86_64",
"relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-doc-0:2.39.5-1.el8_8.2.noarch as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
"product_id": "AppStream-8.8.0.Z.E4S:git-core-doc-0:2.39.5-1.el8_8.2.noarch"
},
"product_reference": "git-core-doc-0:2.39.5-1.el8_8.2.noarch",
"relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-0:2.39.5-1.el8_8.2.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
"product_id": "AppStream-8.8.0.Z.E4S:git-credential-libsecret-0:2.39.5-1.el8_8.2.ppc64le"
},
"product_reference": "git-credential-libsecret-0:2.39.5-1.el8_8.2.ppc64le",
"relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-0:2.39.5-1.el8_8.2.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
"product_id": "AppStream-8.8.0.Z.E4S:git-credential-libsecret-0:2.39.5-1.el8_8.2.x86_64"
},
"product_reference": "git-credential-libsecret-0:2.39.5-1.el8_8.2.x86_64",
"relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-debuginfo-0:2.39.5-1.el8_8.2.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
"product_id": "AppStream-8.8.0.Z.E4S:git-credential-libsecret-debuginfo-0:2.39.5-1.el8_8.2.ppc64le"
},
"product_reference": "git-credential-libsecret-debuginfo-0:2.39.5-1.el8_8.2.ppc64le",
"relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-debuginfo-0:2.39.5-1.el8_8.2.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
"product_id": "AppStream-8.8.0.Z.E4S:git-credential-libsecret-debuginfo-0:2.39.5-1.el8_8.2.x86_64"
},
"product_reference": "git-credential-libsecret-debuginfo-0:2.39.5-1.el8_8.2.x86_64",
"relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-0:2.39.5-1.el8_8.2.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
"product_id": "AppStream-8.8.0.Z.E4S:git-daemon-0:2.39.5-1.el8_8.2.ppc64le"
},
"product_reference": "git-daemon-0:2.39.5-1.el8_8.2.ppc64le",
"relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-0:2.39.5-1.el8_8.2.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
"product_id": "AppStream-8.8.0.Z.E4S:git-daemon-0:2.39.5-1.el8_8.2.x86_64"
},
"product_reference": "git-daemon-0:2.39.5-1.el8_8.2.x86_64",
"relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-debuginfo-0:2.39.5-1.el8_8.2.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
"product_id": "AppStream-8.8.0.Z.E4S:git-daemon-debuginfo-0:2.39.5-1.el8_8.2.ppc64le"
},
"product_reference": "git-daemon-debuginfo-0:2.39.5-1.el8_8.2.ppc64le",
"relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-debuginfo-0:2.39.5-1.el8_8.2.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
"product_id": "AppStream-8.8.0.Z.E4S:git-daemon-debuginfo-0:2.39.5-1.el8_8.2.x86_64"
},
"product_reference": "git-daemon-debuginfo-0:2.39.5-1.el8_8.2.x86_64",
"relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debuginfo-0:2.39.5-1.el8_8.2.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
"product_id": "AppStream-8.8.0.Z.E4S:git-debuginfo-0:2.39.5-1.el8_8.2.ppc64le"
},
"product_reference": "git-debuginfo-0:2.39.5-1.el8_8.2.ppc64le",
"relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debuginfo-0:2.39.5-1.el8_8.2.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
"product_id": "AppStream-8.8.0.Z.E4S:git-debuginfo-0:2.39.5-1.el8_8.2.x86_64"
},
"product_reference": "git-debuginfo-0:2.39.5-1.el8_8.2.x86_64",
"relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debugsource-0:2.39.5-1.el8_8.2.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
"product_id": "AppStream-8.8.0.Z.E4S:git-debugsource-0:2.39.5-1.el8_8.2.ppc64le"
},
"product_reference": "git-debugsource-0:2.39.5-1.el8_8.2.ppc64le",
"relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debugsource-0:2.39.5-1.el8_8.2.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
"product_id": "AppStream-8.8.0.Z.E4S:git-debugsource-0:2.39.5-1.el8_8.2.x86_64"
},
"product_reference": "git-debugsource-0:2.39.5-1.el8_8.2.x86_64",
"relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-0:2.39.5-1.el8_8.2.noarch as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
"product_id": "AppStream-8.8.0.Z.E4S:git-email-0:2.39.5-1.el8_8.2.noarch"
},
"product_reference": "git-email-0:2.39.5-1.el8_8.2.noarch",
"relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-0:2.39.5-1.el8_8.2.noarch as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
"product_id": "AppStream-8.8.0.Z.E4S:git-gui-0:2.39.5-1.el8_8.2.noarch"
},
"product_reference": "git-gui-0:2.39.5-1.el8_8.2.noarch",
"relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-instaweb-0:2.39.5-1.el8_8.2.noarch as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
"product_id": "AppStream-8.8.0.Z.E4S:git-instaweb-0:2.39.5-1.el8_8.2.noarch"
},
"product_reference": "git-instaweb-0:2.39.5-1.el8_8.2.noarch",
"relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-subtree-0:2.39.5-1.el8_8.2.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
"product_id": "AppStream-8.8.0.Z.E4S:git-subtree-0:2.39.5-1.el8_8.2.ppc64le"
},
"product_reference": "git-subtree-0:2.39.5-1.el8_8.2.ppc64le",
"relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-subtree-0:2.39.5-1.el8_8.2.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
"product_id": "AppStream-8.8.0.Z.E4S:git-subtree-0:2.39.5-1.el8_8.2.x86_64"
},
"product_reference": "git-subtree-0:2.39.5-1.el8_8.2.x86_64",
"relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-0:2.39.5-1.el8_8.2.noarch as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
"product_id": "AppStream-8.8.0.Z.E4S:git-svn-0:2.39.5-1.el8_8.2.noarch"
},
"product_reference": "git-svn-0:2.39.5-1.el8_8.2.noarch",
"relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-0:2.39.5-1.el8_8.2.noarch as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
"product_id": "AppStream-8.8.0.Z.E4S:gitk-0:2.39.5-1.el8_8.2.noarch"
},
"product_reference": "gitk-0:2.39.5-1.el8_8.2.noarch",
"relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitweb-0:2.39.5-1.el8_8.2.noarch as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
"product_id": "AppStream-8.8.0.Z.E4S:gitweb-0:2.39.5-1.el8_8.2.noarch"
},
"product_reference": "gitweb-0:2.39.5-1.el8_8.2.noarch",
"relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-0:2.39.5-1.el8_8.2.noarch as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
"product_id": "AppStream-8.8.0.Z.E4S:perl-Git-0:2.39.5-1.el8_8.2.noarch"
},
"product_reference": "perl-Git-0:2.39.5-1.el8_8.2.noarch",
"relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-SVN-0:2.39.5-1.el8_8.2.noarch as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
"product_id": "AppStream-8.8.0.Z.E4S:perl-Git-SVN-0:2.39.5-1.el8_8.2.noarch"
},
"product_reference": "perl-Git-SVN-0:2.39.5-1.el8_8.2.noarch",
"relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-0:2.39.5-1.el8_8.2.src as a component of Red Hat Enterprise Linux AppStream TUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.TUS:git-0:2.39.5-1.el8_8.2.src"
},
"product_reference": "git-0:2.39.5-1.el8_8.2.src",
"relates_to_product_reference": "AppStream-8.8.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-0:2.39.5-1.el8_8.2.x86_64 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.TUS:git-0:2.39.5-1.el8_8.2.x86_64"
},
"product_reference": "git-0:2.39.5-1.el8_8.2.x86_64",
"relates_to_product_reference": "AppStream-8.8.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-all-0:2.39.5-1.el8_8.2.noarch as a component of Red Hat Enterprise Linux AppStream TUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.TUS:git-all-0:2.39.5-1.el8_8.2.noarch"
},
"product_reference": "git-all-0:2.39.5-1.el8_8.2.noarch",
"relates_to_product_reference": "AppStream-8.8.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-0:2.39.5-1.el8_8.2.x86_64 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.TUS:git-core-0:2.39.5-1.el8_8.2.x86_64"
},
"product_reference": "git-core-0:2.39.5-1.el8_8.2.x86_64",
"relates_to_product_reference": "AppStream-8.8.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-debuginfo-0:2.39.5-1.el8_8.2.x86_64 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.TUS:git-core-debuginfo-0:2.39.5-1.el8_8.2.x86_64"
},
"product_reference": "git-core-debuginfo-0:2.39.5-1.el8_8.2.x86_64",
"relates_to_product_reference": "AppStream-8.8.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-doc-0:2.39.5-1.el8_8.2.noarch as a component of Red Hat Enterprise Linux AppStream TUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.TUS:git-core-doc-0:2.39.5-1.el8_8.2.noarch"
},
"product_reference": "git-core-doc-0:2.39.5-1.el8_8.2.noarch",
"relates_to_product_reference": "AppStream-8.8.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-0:2.39.5-1.el8_8.2.x86_64 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.TUS:git-credential-libsecret-0:2.39.5-1.el8_8.2.x86_64"
},
"product_reference": "git-credential-libsecret-0:2.39.5-1.el8_8.2.x86_64",
"relates_to_product_reference": "AppStream-8.8.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-debuginfo-0:2.39.5-1.el8_8.2.x86_64 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.TUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el8_8.2.x86_64"
},
"product_reference": "git-credential-libsecret-debuginfo-0:2.39.5-1.el8_8.2.x86_64",
"relates_to_product_reference": "AppStream-8.8.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-0:2.39.5-1.el8_8.2.x86_64 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.TUS:git-daemon-0:2.39.5-1.el8_8.2.x86_64"
},
"product_reference": "git-daemon-0:2.39.5-1.el8_8.2.x86_64",
"relates_to_product_reference": "AppStream-8.8.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-debuginfo-0:2.39.5-1.el8_8.2.x86_64 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.TUS:git-daemon-debuginfo-0:2.39.5-1.el8_8.2.x86_64"
},
"product_reference": "git-daemon-debuginfo-0:2.39.5-1.el8_8.2.x86_64",
"relates_to_product_reference": "AppStream-8.8.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debuginfo-0:2.39.5-1.el8_8.2.x86_64 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.TUS:git-debuginfo-0:2.39.5-1.el8_8.2.x86_64"
},
"product_reference": "git-debuginfo-0:2.39.5-1.el8_8.2.x86_64",
"relates_to_product_reference": "AppStream-8.8.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debugsource-0:2.39.5-1.el8_8.2.x86_64 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.TUS:git-debugsource-0:2.39.5-1.el8_8.2.x86_64"
},
"product_reference": "git-debugsource-0:2.39.5-1.el8_8.2.x86_64",
"relates_to_product_reference": "AppStream-8.8.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-0:2.39.5-1.el8_8.2.noarch as a component of Red Hat Enterprise Linux AppStream TUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.TUS:git-email-0:2.39.5-1.el8_8.2.noarch"
},
"product_reference": "git-email-0:2.39.5-1.el8_8.2.noarch",
"relates_to_product_reference": "AppStream-8.8.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-0:2.39.5-1.el8_8.2.noarch as a component of Red Hat Enterprise Linux AppStream TUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.TUS:git-gui-0:2.39.5-1.el8_8.2.noarch"
},
"product_reference": "git-gui-0:2.39.5-1.el8_8.2.noarch",
"relates_to_product_reference": "AppStream-8.8.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-instaweb-0:2.39.5-1.el8_8.2.noarch as a component of Red Hat Enterprise Linux AppStream TUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.TUS:git-instaweb-0:2.39.5-1.el8_8.2.noarch"
},
"product_reference": "git-instaweb-0:2.39.5-1.el8_8.2.noarch",
"relates_to_product_reference": "AppStream-8.8.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-subtree-0:2.39.5-1.el8_8.2.x86_64 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.TUS:git-subtree-0:2.39.5-1.el8_8.2.x86_64"
},
"product_reference": "git-subtree-0:2.39.5-1.el8_8.2.x86_64",
"relates_to_product_reference": "AppStream-8.8.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-0:2.39.5-1.el8_8.2.noarch as a component of Red Hat Enterprise Linux AppStream TUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.TUS:git-svn-0:2.39.5-1.el8_8.2.noarch"
},
"product_reference": "git-svn-0:2.39.5-1.el8_8.2.noarch",
"relates_to_product_reference": "AppStream-8.8.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-0:2.39.5-1.el8_8.2.noarch as a component of Red Hat Enterprise Linux AppStream TUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.TUS:gitk-0:2.39.5-1.el8_8.2.noarch"
},
"product_reference": "gitk-0:2.39.5-1.el8_8.2.noarch",
"relates_to_product_reference": "AppStream-8.8.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitweb-0:2.39.5-1.el8_8.2.noarch as a component of Red Hat Enterprise Linux AppStream TUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.TUS:gitweb-0:2.39.5-1.el8_8.2.noarch"
},
"product_reference": "gitweb-0:2.39.5-1.el8_8.2.noarch",
"relates_to_product_reference": "AppStream-8.8.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-0:2.39.5-1.el8_8.2.noarch as a component of Red Hat Enterprise Linux AppStream TUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.TUS:perl-Git-0:2.39.5-1.el8_8.2.noarch"
},
"product_reference": "perl-Git-0:2.39.5-1.el8_8.2.noarch",
"relates_to_product_reference": "AppStream-8.8.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-SVN-0:2.39.5-1.el8_8.2.noarch as a component of Red Hat Enterprise Linux AppStream TUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.TUS:perl-Git-SVN-0:2.39.5-1.el8_8.2.noarch"
},
"product_reference": "perl-Git-SVN-0:2.39.5-1.el8_8.2.noarch",
"relates_to_product_reference": "AppStream-8.8.0.Z.TUS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-48384",
"cwe": {
"id": "CWE-59",
"name": "Improper Link Resolution Before File Access (\u0027Link Following\u0027)"
},
"discovery_date": "2025-07-08T19:00:48.297925+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2378806"
}
],
"notes": [
{
"category": "description",
"text": "A line-end handling flaw was found in Git. When writing a config entry, values with a trailing carriage return (CR) are not quoted, resulting in the CR being lost when the config is read later. When initializing a submodule, if the submodule path contains a trailing CR, the altered path is read, resulting in the submodule being checked out to an incorrect location.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "git: Git arbitrary code execution",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability marked as Important and not Moderate flaw because it undermines Git\u2019s path and config integrity by allowing carriage return (\\r) injection to manipulate submodule checkout behavior. Git previously failed to quote config values containing trailing CR, causing the value to be misinterpreted when read back. In the context of submodules, this leads to incorrect path resolution, allowing an attacker to redirect the checkout path via a symlink to a sensitive directory like .git/modules/\u003csubmodule\u003e/hooks. If an executable post-checkout hook exists there, it could be inadvertently executed, resulting in arbitrary code execution during submodule operations. This is particularly dangerous in automated CI/CD pipelines or multi-repo projects where submodules are initialized or updated without manual inspection.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.8.0.Z.E4S:git-0:2.39.5-1.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:git-0:2.39.5-1.el8_8.2.src",
"AppStream-8.8.0.Z.E4S:git-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:git-all-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.E4S:git-core-0:2.39.5-1.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:git-core-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:git-core-debuginfo-0:2.39.5-1.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:git-core-debuginfo-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:git-core-doc-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.E4S:git-credential-libsecret-0:2.39.5-1.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:git-credential-libsecret-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:git-credential-libsecret-debuginfo-0:2.39.5-1.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:git-credential-libsecret-debuginfo-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:git-daemon-0:2.39.5-1.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:git-daemon-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:git-daemon-debuginfo-0:2.39.5-1.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:git-daemon-debuginfo-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:git-debuginfo-0:2.39.5-1.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:git-debuginfo-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:git-debugsource-0:2.39.5-1.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:git-debugsource-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:git-email-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.E4S:git-gui-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.E4S:git-instaweb-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.E4S:git-subtree-0:2.39.5-1.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:git-subtree-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:git-svn-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.E4S:gitk-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.E4S:gitweb-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.E4S:perl-Git-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.E4S:perl-Git-SVN-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.TUS:git-0:2.39.5-1.el8_8.2.src",
"AppStream-8.8.0.Z.TUS:git-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:git-all-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.TUS:git-core-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:git-core-debuginfo-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:git-core-doc-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.TUS:git-credential-libsecret-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:git-daemon-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:git-daemon-debuginfo-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:git-debuginfo-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:git-debugsource-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:git-email-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.TUS:git-gui-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.TUS:git-instaweb-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.TUS:git-subtree-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:git-svn-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.TUS:gitk-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.TUS:gitweb-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.TUS:perl-Git-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.TUS:perl-Git-SVN-0:2.39.5-1.el8_8.2.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-48384"
},
{
"category": "external",
"summary": "RHBZ#2378806",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2378806"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-48384",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-48384"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-48384",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-48384"
},
{
"category": "external",
"summary": "https://dgl.cx/2025/07/git-clone-submodule-cve-2025-48384",
"url": "https://dgl.cx/2025/07/git-clone-submodule-cve-2025-48384"
},
{
"category": "external",
"summary": "https://github.com/git/git/commit/05e9cd64ee23bbadcea6bcffd6660ed02b8eab89",
"url": "https://github.com/git/git/commit/05e9cd64ee23bbadcea6bcffd6660ed02b8eab89"
},
{
"category": "external",
"summary": "https://github.com/git/git/security/advisories/GHSA-vwqx-4fm8-6qc9",
"url": "https://github.com/git/git/security/advisories/GHSA-vwqx-4fm8-6qc9"
},
{
"category": "external",
"summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog",
"url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
}
],
"release_date": "2025-07-08T18:23:48.710000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-07-28T01:28:55+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.8.0.Z.E4S:git-0:2.39.5-1.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:git-0:2.39.5-1.el8_8.2.src",
"AppStream-8.8.0.Z.E4S:git-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:git-all-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.E4S:git-core-0:2.39.5-1.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:git-core-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:git-core-debuginfo-0:2.39.5-1.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:git-core-debuginfo-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:git-core-doc-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.E4S:git-credential-libsecret-0:2.39.5-1.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:git-credential-libsecret-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:git-credential-libsecret-debuginfo-0:2.39.5-1.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:git-credential-libsecret-debuginfo-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:git-daemon-0:2.39.5-1.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:git-daemon-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:git-daemon-debuginfo-0:2.39.5-1.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:git-daemon-debuginfo-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:git-debuginfo-0:2.39.5-1.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:git-debuginfo-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:git-debugsource-0:2.39.5-1.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:git-debugsource-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:git-email-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.E4S:git-gui-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.E4S:git-instaweb-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.E4S:git-subtree-0:2.39.5-1.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:git-subtree-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:git-svn-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.E4S:gitk-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.E4S:gitweb-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.E4S:perl-Git-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.E4S:perl-Git-SVN-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.TUS:git-0:2.39.5-1.el8_8.2.src",
"AppStream-8.8.0.Z.TUS:git-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:git-all-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.TUS:git-core-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:git-core-debuginfo-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:git-core-doc-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.TUS:git-credential-libsecret-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:git-daemon-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:git-daemon-debuginfo-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:git-debuginfo-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:git-debugsource-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:git-email-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.TUS:git-gui-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.TUS:git-instaweb-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.TUS:git-subtree-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:git-svn-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.TUS:gitk-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.TUS:gitweb-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.TUS:perl-Git-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.TUS:perl-Git-SVN-0:2.39.5-1.el8_8.2.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:11794"
},
{
"category": "workaround",
"details": "To mitigate this issue, avoid using --recurse-submodules when cloning repositories from untrusted sources; instead, clone normally and only initialize or update submodules manually after reviewing them.",
"product_ids": [
"AppStream-8.8.0.Z.E4S:git-0:2.39.5-1.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:git-0:2.39.5-1.el8_8.2.src",
"AppStream-8.8.0.Z.E4S:git-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:git-all-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.E4S:git-core-0:2.39.5-1.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:git-core-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:git-core-debuginfo-0:2.39.5-1.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:git-core-debuginfo-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:git-core-doc-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.E4S:git-credential-libsecret-0:2.39.5-1.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:git-credential-libsecret-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:git-credential-libsecret-debuginfo-0:2.39.5-1.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:git-credential-libsecret-debuginfo-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:git-daemon-0:2.39.5-1.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:git-daemon-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:git-daemon-debuginfo-0:2.39.5-1.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:git-daemon-debuginfo-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:git-debuginfo-0:2.39.5-1.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:git-debuginfo-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:git-debugsource-0:2.39.5-1.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:git-debugsource-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:git-email-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.E4S:git-gui-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.E4S:git-instaweb-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.E4S:git-subtree-0:2.39.5-1.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:git-subtree-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:git-svn-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.E4S:gitk-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.E4S:gitweb-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.E4S:perl-Git-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.E4S:perl-Git-SVN-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.TUS:git-0:2.39.5-1.el8_8.2.src",
"AppStream-8.8.0.Z.TUS:git-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:git-all-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.TUS:git-core-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:git-core-debuginfo-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:git-core-doc-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.TUS:git-credential-libsecret-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:git-daemon-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:git-daemon-debuginfo-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:git-debuginfo-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:git-debugsource-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:git-email-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.TUS:git-gui-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.TUS:git-instaweb-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.TUS:git-subtree-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:git-svn-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.TUS:gitk-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.TUS:gitweb-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.TUS:perl-Git-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.TUS:perl-Git-SVN-0:2.39.5-1.el8_8.2.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.0,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.8.0.Z.E4S:git-0:2.39.5-1.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:git-0:2.39.5-1.el8_8.2.src",
"AppStream-8.8.0.Z.E4S:git-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:git-all-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.E4S:git-core-0:2.39.5-1.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:git-core-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:git-core-debuginfo-0:2.39.5-1.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:git-core-debuginfo-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:git-core-doc-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.E4S:git-credential-libsecret-0:2.39.5-1.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:git-credential-libsecret-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:git-credential-libsecret-debuginfo-0:2.39.5-1.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:git-credential-libsecret-debuginfo-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:git-daemon-0:2.39.5-1.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:git-daemon-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:git-daemon-debuginfo-0:2.39.5-1.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:git-daemon-debuginfo-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:git-debuginfo-0:2.39.5-1.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:git-debuginfo-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:git-debugsource-0:2.39.5-1.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:git-debugsource-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:git-email-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.E4S:git-gui-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.E4S:git-instaweb-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.E4S:git-subtree-0:2.39.5-1.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:git-subtree-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:git-svn-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.E4S:gitk-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.E4S:gitweb-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.E4S:perl-Git-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.E4S:perl-Git-SVN-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.TUS:git-0:2.39.5-1.el8_8.2.src",
"AppStream-8.8.0.Z.TUS:git-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:git-all-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.TUS:git-core-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:git-core-debuginfo-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:git-core-doc-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.TUS:git-credential-libsecret-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:git-daemon-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:git-daemon-debuginfo-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:git-debuginfo-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:git-debugsource-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:git-email-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.TUS:git-gui-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.TUS:git-instaweb-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.TUS:git-subtree-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:git-svn-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.TUS:gitk-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.TUS:gitweb-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.TUS:perl-Git-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.TUS:perl-Git-SVN-0:2.39.5-1.el8_8.2.noarch"
]
}
],
"threats": [
{
"category": "exploit_status",
"date": "2025-08-25T00:00:00+00:00",
"details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
},
{
"category": "impact",
"details": "Important"
}
],
"title": "git: Git arbitrary code execution"
},
{
"cve": "CVE-2025-48385",
"cwe": {
"id": "CWE-88",
"name": "Improper Neutralization of Argument Delimiters in a Command (\u0027Argument Injection\u0027)"
},
"discovery_date": "2025-07-08T19:00:55.106787+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2378808"
}
],
"notes": [
{
"category": "description",
"text": "A bundled uri handling flaw was found in Git. When cloning a repository, Git knows to optionally fetch a bundle advertised by the remote server, which allows the server side to offload parts of the clone to a CDN. The Git client does not perform sufficient validation of the advertised bundles, which allows the remote side to perform protocol injection.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "git: Git arbitrary file writes",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability marked as Important rather than a Moderate flaw because it enables protocol injection at the transport layer of Git\u0027s bundle-uri mechanism, allowing a remote server to manipulate how and where data is written on the client system during a clone operation. The lack of input sanitization on user-controlled values like the URI and target path means that malformed inputs containing spaces or newlines can break protocol framing, leading to arbitrary file writes. In scenarios such as CI pipelines, developer environments, or recursive clones with submodules, an attacker can exploit this to overwrite critical files or inject malicious content, potentially achieving remote code execution (RCE).",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.8.0.Z.E4S:git-0:2.39.5-1.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:git-0:2.39.5-1.el8_8.2.src",
"AppStream-8.8.0.Z.E4S:git-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:git-all-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.E4S:git-core-0:2.39.5-1.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:git-core-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:git-core-debuginfo-0:2.39.5-1.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:git-core-debuginfo-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:git-core-doc-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.E4S:git-credential-libsecret-0:2.39.5-1.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:git-credential-libsecret-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:git-credential-libsecret-debuginfo-0:2.39.5-1.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:git-credential-libsecret-debuginfo-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:git-daemon-0:2.39.5-1.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:git-daemon-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:git-daemon-debuginfo-0:2.39.5-1.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:git-daemon-debuginfo-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:git-debuginfo-0:2.39.5-1.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:git-debuginfo-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:git-debugsource-0:2.39.5-1.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:git-debugsource-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:git-email-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.E4S:git-gui-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.E4S:git-instaweb-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.E4S:git-subtree-0:2.39.5-1.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:git-subtree-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:git-svn-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.E4S:gitk-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.E4S:gitweb-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.E4S:perl-Git-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.E4S:perl-Git-SVN-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.TUS:git-0:2.39.5-1.el8_8.2.src",
"AppStream-8.8.0.Z.TUS:git-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:git-all-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.TUS:git-core-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:git-core-debuginfo-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:git-core-doc-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.TUS:git-credential-libsecret-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:git-daemon-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:git-daemon-debuginfo-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:git-debuginfo-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:git-debugsource-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:git-email-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.TUS:git-gui-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.TUS:git-instaweb-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.TUS:git-subtree-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:git-svn-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.TUS:gitk-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.TUS:gitweb-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.TUS:perl-Git-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.TUS:perl-Git-SVN-0:2.39.5-1.el8_8.2.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-48385"
},
{
"category": "external",
"summary": "RHBZ#2378808",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2378808"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-48385",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-48385"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-48385",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-48385"
},
{
"category": "external",
"summary": "https://github.com/git/git/security/advisories/GHSA-m98c-vgpc-9655",
"url": "https://github.com/git/git/security/advisories/GHSA-m98c-vgpc-9655"
}
],
"release_date": "2025-07-08T18:23:44.405000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-07-28T01:28:55+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.8.0.Z.E4S:git-0:2.39.5-1.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:git-0:2.39.5-1.el8_8.2.src",
"AppStream-8.8.0.Z.E4S:git-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:git-all-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.E4S:git-core-0:2.39.5-1.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:git-core-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:git-core-debuginfo-0:2.39.5-1.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:git-core-debuginfo-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:git-core-doc-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.E4S:git-credential-libsecret-0:2.39.5-1.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:git-credential-libsecret-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:git-credential-libsecret-debuginfo-0:2.39.5-1.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:git-credential-libsecret-debuginfo-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:git-daemon-0:2.39.5-1.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:git-daemon-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:git-daemon-debuginfo-0:2.39.5-1.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:git-daemon-debuginfo-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:git-debuginfo-0:2.39.5-1.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:git-debuginfo-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:git-debugsource-0:2.39.5-1.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:git-debugsource-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:git-email-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.E4S:git-gui-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.E4S:git-instaweb-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.E4S:git-subtree-0:2.39.5-1.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:git-subtree-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:git-svn-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.E4S:gitk-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.E4S:gitweb-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.E4S:perl-Git-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.E4S:perl-Git-SVN-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.TUS:git-0:2.39.5-1.el8_8.2.src",
"AppStream-8.8.0.Z.TUS:git-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:git-all-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.TUS:git-core-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:git-core-debuginfo-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:git-core-doc-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.TUS:git-credential-libsecret-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:git-daemon-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:git-daemon-debuginfo-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:git-debuginfo-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:git-debugsource-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:git-email-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.TUS:git-gui-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.TUS:git-instaweb-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.TUS:git-subtree-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:git-svn-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.TUS:gitk-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.TUS:gitweb-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.TUS:perl-Git-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.TUS:perl-Git-SVN-0:2.39.5-1.el8_8.2.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:11794"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-8.8.0.Z.E4S:git-0:2.39.5-1.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:git-0:2.39.5-1.el8_8.2.src",
"AppStream-8.8.0.Z.E4S:git-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:git-all-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.E4S:git-core-0:2.39.5-1.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:git-core-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:git-core-debuginfo-0:2.39.5-1.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:git-core-debuginfo-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:git-core-doc-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.E4S:git-credential-libsecret-0:2.39.5-1.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:git-credential-libsecret-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:git-credential-libsecret-debuginfo-0:2.39.5-1.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:git-credential-libsecret-debuginfo-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:git-daemon-0:2.39.5-1.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:git-daemon-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:git-daemon-debuginfo-0:2.39.5-1.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:git-daemon-debuginfo-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:git-debuginfo-0:2.39.5-1.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:git-debuginfo-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:git-debugsource-0:2.39.5-1.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:git-debugsource-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:git-email-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.E4S:git-gui-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.E4S:git-instaweb-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.E4S:git-subtree-0:2.39.5-1.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:git-subtree-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:git-svn-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.E4S:gitk-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.E4S:gitweb-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.E4S:perl-Git-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.E4S:perl-Git-SVN-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.TUS:git-0:2.39.5-1.el8_8.2.src",
"AppStream-8.8.0.Z.TUS:git-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:git-all-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.TUS:git-core-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:git-core-debuginfo-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:git-core-doc-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.TUS:git-credential-libsecret-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:git-daemon-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:git-daemon-debuginfo-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:git-debuginfo-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:git-debugsource-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:git-email-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.TUS:git-gui-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.TUS:git-instaweb-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.TUS:git-subtree-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:git-svn-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.TUS:gitk-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.TUS:gitweb-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.TUS:perl-Git-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.TUS:perl-Git-SVN-0:2.39.5-1.el8_8.2.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 8.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:L",
"version": "3.1"
},
"products": [
"AppStream-8.8.0.Z.E4S:git-0:2.39.5-1.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:git-0:2.39.5-1.el8_8.2.src",
"AppStream-8.8.0.Z.E4S:git-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:git-all-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.E4S:git-core-0:2.39.5-1.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:git-core-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:git-core-debuginfo-0:2.39.5-1.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:git-core-debuginfo-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:git-core-doc-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.E4S:git-credential-libsecret-0:2.39.5-1.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:git-credential-libsecret-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:git-credential-libsecret-debuginfo-0:2.39.5-1.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:git-credential-libsecret-debuginfo-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:git-daemon-0:2.39.5-1.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:git-daemon-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:git-daemon-debuginfo-0:2.39.5-1.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:git-daemon-debuginfo-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:git-debuginfo-0:2.39.5-1.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:git-debuginfo-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:git-debugsource-0:2.39.5-1.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:git-debugsource-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:git-email-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.E4S:git-gui-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.E4S:git-instaweb-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.E4S:git-subtree-0:2.39.5-1.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:git-subtree-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:git-svn-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.E4S:gitk-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.E4S:gitweb-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.E4S:perl-Git-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.E4S:perl-Git-SVN-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.TUS:git-0:2.39.5-1.el8_8.2.src",
"AppStream-8.8.0.Z.TUS:git-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:git-all-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.TUS:git-core-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:git-core-debuginfo-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:git-core-doc-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.TUS:git-credential-libsecret-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:git-credential-libsecret-debuginfo-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:git-daemon-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:git-daemon-debuginfo-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:git-debuginfo-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:git-debugsource-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:git-email-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.TUS:git-gui-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.TUS:git-instaweb-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.TUS:git-subtree-0:2.39.5-1.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:git-svn-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.TUS:gitk-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.TUS:gitweb-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.TUS:perl-Git-0:2.39.5-1.el8_8.2.noarch",
"AppStream-8.8.0.Z.TUS:perl-Git-SVN-0:2.39.5-1.el8_8.2.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "git: Git arbitrary file writes"
}
]
}
rhsa-2025:14853
Vulnerability from csaf_redhat
Published
2025-09-04 17:05
Modified
2025-11-12 20:09
Summary
Red Hat Security Advisory: OpenShift Container Platform 4.14.56 bug fix and security update
Notes
Topic
Red Hat OpenShift Container Platform release 4.14.56 is now available with
updates to packages and images that fix several bugs and add enhancements.
This release includes a security update for Red Hat OpenShift Container
Platform 4.14.
Red Hat Product Security has rated this update as having a security impact
of Important. A Common Vulnerability Scoring System (CVSS) base score,
which gives a detailed severity rating, is available for each vulnerability
from the CVE link(s) in the References section.
Details
Red Hat OpenShift Container Platform is Red Hat's cloud computing
Kubernetes application platform solution designed for on-premise or private
cloud deployments.
This advisory contains the container images for Red Hat OpenShift Container
Platform 4.14.56. There are no RPM packages for this release.
release:
Space precludes documenting all of the container images in this advisory.
See the following Release Notes documentation, which will be updated
shortly for this release, for details about these changes:
https://docs.redhat.com/en/documentation/openshift_container_platform/4.14/html/release_notes/
Security Fix(es):
* libxslt: Heap Use-After-Free in libxslt caused by atype corruption in
xmlAttrPtr (CVE-2025-7425)
* git: Git arbitrary code execution (CVE-2025-48384)
* git: Git arbitrary file writes (CVE-2025-48385)
* libxml2: Out-of-Bounds Read in libxml2 (CVE-2025-32414)
* libxml2: Out-of-bounds Read in xmlSchemaIDCFillNodeTables
(CVE-2025-32415)
* jq: AddressSanitizer: stack-buffer-overflow in jq_fuzz_execute
(jv_string_vfmt) (CVE-2025-48060)
For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE
page(s) listed in the References section.
All OpenShift Container Platform 4.14 users are advised to upgrade to these
updated packages and images when they are available in the appropriate
release channel. To check for available updates, use the OpenShift CLI (oc)
or web console. Instructions for upgrading a cluster are available at
https://docs.redhat.com/en/documentation/openshift_container_platform/4.14/html-single/updating_clusters/index#updating-cluster-cli.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat OpenShift Container Platform release 4.14.56 is now available with\nupdates to packages and images that fix several bugs and add enhancements.\n\n This release includes a security update for Red Hat OpenShift Container\nPlatform 4.14.\n\nRed Hat Product Security has rated this update as having a security impact\nof Important. A Common Vulnerability Scoring System (CVSS) base score,\nwhich gives a detailed severity rating, is available for each vulnerability\nfrom the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat OpenShift Container Platform is Red Hat\u0027s cloud computing\nKubernetes application platform solution designed for on-premise or private\ncloud deployments.\n\nThis advisory contains the container images for Red Hat OpenShift Container\nPlatform 4.14.56. There are no RPM packages for this release.\nrelease:\n\nSpace precludes documenting all of the container images in this advisory.\nSee the following Release Notes documentation, which will be updated\nshortly for this release, for details about these changes:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.14/html/release_notes/\n\nSecurity Fix(es):\n\n* libxslt: Heap Use-After-Free in libxslt caused by atype corruption in\nxmlAttrPtr (CVE-2025-7425)\n* git: Git arbitrary code execution (CVE-2025-48384)\n* git: Git arbitrary file writes (CVE-2025-48385)\n* libxml2: Out-of-Bounds Read in libxml2 (CVE-2025-32414)\n* libxml2: Out-of-bounds Read in xmlSchemaIDCFillNodeTables\n(CVE-2025-32415)\n* jq: AddressSanitizer: stack-buffer-overflow in jq_fuzz_execute\n(jv_string_vfmt) (CVE-2025-48060)\n\nFor more details about the security issue(s), including the impact, a CVSS\nscore, acknowledgments, and other related information, refer to the CVE\npage(s) listed in the References section.\n\nAll OpenShift Container Platform 4.14 users are advised to upgrade to these\nupdated packages and images when they are available in the appropriate\nrelease channel. To check for available updates, use the OpenShift CLI (oc)\nor web console. Instructions for upgrading a cluster are available at\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.14/html-single/updating_clusters/index#updating-cluster-cli.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:14853",
"url": "https://access.redhat.com/errata/RHSA-2025:14853"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2358121",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2358121"
},
{
"category": "external",
"summary": "2360768",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2360768"
},
{
"category": "external",
"summary": "2367842",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2367842"
},
{
"category": "external",
"summary": "2378806",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2378806"
},
{
"category": "external",
"summary": "2378808",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2378808"
},
{
"category": "external",
"summary": "2379274",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2379274"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_14853.json"
}
],
"title": "Red Hat Security Advisory: OpenShift Container Platform 4.14.56 bug fix and security update",
"tracking": {
"current_release_date": "2025-11-12T20:09:34+00:00",
"generator": {
"date": "2025-11-12T20:09:34+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.12"
}
},
"id": "RHSA-2025:14853",
"initial_release_date": "2025-09-04T17:05:30+00:00",
"revision_history": [
{
"date": "2025-09-04T17:05:30+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-09-04T17:05:30+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-12T20:09:34+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat OpenShift Container Platform 4.14",
"product": {
"name": "Red Hat OpenShift Container Platform 4.14",
"product_id": "9Base-RHOSE-4.14",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:4.14::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift Enterprise"
},
{
"branches": [
{
"category": "product_version",
"name": "rhcos-aarch64-414.92.202508270040-0",
"product": {
"name": "rhcos-aarch64-414.92.202508270040-0",
"product_id": "rhcos-aarch64-414.92.202508270040-0",
"product_identification_helper": {
"purl": "pkg:generic/redhat/rhcos@414.92.202508270040?arch=aarch64"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "rhcos-ppc64le-414.92.202508270040-0",
"product": {
"name": "rhcos-ppc64le-414.92.202508270040-0",
"product_id": "rhcos-ppc64le-414.92.202508270040-0",
"product_identification_helper": {
"purl": "pkg:generic/redhat/rhcos@414.92.202508270040?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "rhcos-s390x-414.92.202508270040-0",
"product": {
"name": "rhcos-s390x-414.92.202508270040-0",
"product_id": "rhcos-s390x-414.92.202508270040-0",
"product_identification_helper": {
"purl": "pkg:generic/redhat/rhcos@414.92.202508270040?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "rhcos-x86_64-414.92.202508270040-0",
"product": {
"name": "rhcos-x86_64-414.92.202508270040-0",
"product_id": "rhcos-x86_64-414.92.202508270040-0",
"product_identification_helper": {
"purl": "pkg:generic/redhat/rhcos@414.92.202508270040?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "rhcos-aarch64-414.92.202508270040-0 as a component of Red Hat OpenShift Container Platform 4.14",
"product_id": "9Base-RHOSE-4.14:rhcos-aarch64-414.92.202508270040-0"
},
"product_reference": "rhcos-aarch64-414.92.202508270040-0",
"relates_to_product_reference": "9Base-RHOSE-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhcos-ppc64le-414.92.202508270040-0 as a component of Red Hat OpenShift Container Platform 4.14",
"product_id": "9Base-RHOSE-4.14:rhcos-ppc64le-414.92.202508270040-0"
},
"product_reference": "rhcos-ppc64le-414.92.202508270040-0",
"relates_to_product_reference": "9Base-RHOSE-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhcos-s390x-414.92.202508270040-0 as a component of Red Hat OpenShift Container Platform 4.14",
"product_id": "9Base-RHOSE-4.14:rhcos-s390x-414.92.202508270040-0"
},
"product_reference": "rhcos-s390x-414.92.202508270040-0",
"relates_to_product_reference": "9Base-RHOSE-4.14"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhcos-x86_64-414.92.202508270040-0 as a component of Red Hat OpenShift Container Platform 4.14",
"product_id": "9Base-RHOSE-4.14:rhcos-x86_64-414.92.202508270040-0"
},
"product_reference": "rhcos-x86_64-414.92.202508270040-0",
"relates_to_product_reference": "9Base-RHOSE-4.14"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Sergei Glazunov"
],
"organization": "Google Project Zero"
}
],
"cve": "CVE-2025-7425",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"discovery_date": "2025-07-10T09:37:28.172000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2379274"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in libxslt where the attribute type, atype, flags are modified in a way that corrupts internal memory management. When XSLT functions, such as the key() process, result in tree fragments, this corruption prevents the proper cleanup of ID attributes. As a result, the system may access freed memory, causing crashes or enabling attackers to trigger heap corruption.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "libxslt: Heap Use-After-Free in libxslt caused by atype corruption in xmlAttrPtr",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This heap-use-after-free vulnerability in libxslt is rated Important because it can lead to memory corruption and application crashes. The flaw arises when internal attribute metadata (atype) is modified by libxslt\u0027s xsltSetSourceNodeFlags() function during processing of result tree fragments. If the flag corruption prevents proper removal of ID references, later memory cleanup routines may operate on already-freed memory. Since libxslt is commonly used in server-side XML processing, this could result in denial-of-service or potentially facilitate code execution under certain memory reuse conditions.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHOSE-4.14:rhcos-aarch64-414.92.202508270040-0",
"9Base-RHOSE-4.14:rhcos-ppc64le-414.92.202508270040-0",
"9Base-RHOSE-4.14:rhcos-s390x-414.92.202508270040-0",
"9Base-RHOSE-4.14:rhcos-x86_64-414.92.202508270040-0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-7425"
},
{
"category": "external",
"summary": "RHBZ#2379274",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2379274"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-7425",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-7425"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-7425",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-7425"
},
{
"category": "external",
"summary": "https://gitlab.gnome.org/GNOME/libxslt/-/issues/140",
"url": "https://gitlab.gnome.org/GNOME/libxslt/-/issues/140"
}
],
"release_date": "2025-07-10T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-09-04T17:05:30+00:00",
"details": "For OpenShift Container Platform 4.14 see the following documentation,\nwhich will be updated shortly for this release, for important instructions\non how to upgrade your cluster and fully apply this asynchronous errata\nupdate:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.14/html/release_notes/\n\nYou may download the oc tool and use it to inspect release image metadata\nfor x86_64, s390x, ppc64le, and aarch64 architectures. The image digests\nmay be found at\nhttps://quay.io/repository/openshift-release-dev/ocp-release?tab=tags.\n\nThe sha values for the release are as follows:\n\n (For x86_64 architecture)\n The image digest is sha256:5f0204b0de50a408dc8b52f568e90aef6b3266ee8d22a77c1b34ceefb2b00f14\n\n (For s390x architecture)\n The image digest is sha256:758be0c12f06fadff01eb06d514ed48c306679706b3a82b72a2943f211003a7b\n\n (For ppc64le architecture)\n The image digest is sha256:9d022cdb3929572745d9b77d9f27e29fcc8ff5c7c5d04b404e81600601e7d6c7\n\n (For aarch64 architecture)\n The image digest is sha256:c75cf7a5560e7352860dcf9ae8f115a7ce7b45ca05744d65af7513ce4913ea7d\n\nAll OpenShift Container Platform 4.14 users are advised to upgrade to these\nupdated packages and images when they are available in the appropriate\nrelease channel. To check for available updates, use the OpenShift CLI (oc)\nor web console. Instructions for upgrading a cluster are available at\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.14/html-single/updating_clusters/index#updating-cluster-cli.",
"product_ids": [
"9Base-RHOSE-4.14:rhcos-aarch64-414.92.202508270040-0",
"9Base-RHOSE-4.14:rhcos-ppc64le-414.92.202508270040-0",
"9Base-RHOSE-4.14:rhcos-s390x-414.92.202508270040-0",
"9Base-RHOSE-4.14:rhcos-x86_64-414.92.202508270040-0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:14853"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHOSE-4.14:rhcos-aarch64-414.92.202508270040-0",
"9Base-RHOSE-4.14:rhcos-ppc64le-414.92.202508270040-0",
"9Base-RHOSE-4.14:rhcos-s390x-414.92.202508270040-0",
"9Base-RHOSE-4.14:rhcos-x86_64-414.92.202508270040-0"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"9Base-RHOSE-4.14:rhcos-aarch64-414.92.202508270040-0",
"9Base-RHOSE-4.14:rhcos-ppc64le-414.92.202508270040-0",
"9Base-RHOSE-4.14:rhcos-s390x-414.92.202508270040-0",
"9Base-RHOSE-4.14:rhcos-x86_64-414.92.202508270040-0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "libxslt: Heap Use-After-Free in libxslt caused by atype corruption in xmlAttrPtr"
},
{
"cve": "CVE-2025-32414",
"cwe": {
"id": "CWE-393",
"name": "Return of Wrong Status Code"
},
"discovery_date": "2025-04-08T04:00:51.284113+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2358121"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in libxml2. This vulnerability allows out-of-bounds memory access due to incorrect handling of return values in xmlPythonFileRead and xmlPythonFileReadRaw. This is caused by a mismatch between the length of the file in bytes vs the length in characters, as unicode characters can occupy up to 4 bytes per character.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "libxml2: Out-of-Bounds Read in libxml2",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This bug affects parsing of text streams using:\n- the Python bindings (pending deprecation: https://gitlab.gnome.org/GNOME/libxml2/-/issues/891)\n- the libxml2 SAX driver drv_libxml2,\n- the XML Reader API\n\nParsing of binary streams is not affected by this vulnerability.\n\nThe vulnerability exists in the libxml2 package the bug arises because of a mismatch between characters vs. bytes handling: functions xmlPythonFileRead and xmlPythonFileReadRaw may compute a length incorrectly (mistaking character count for byte count), but for a succesful exploitation of this bug requires local access, on top of that the path to exploiation is non trivial, where handling of python binding\u0027s and specific input handling of bytes and charcters are required which makes this outside the scope of an attacker and increases the attack complexity, for these reasons this has been marked as moderate by redhat.\n\n\nWithin regulated environments, a combination of the following controls acts as a significant barrier to successfully exploiting a CWE-393: Return of Wrong Status Code vulnerability and therefore downgrades the severity of this particular CVE from Moderate to Low.\n\nThe platform enforces hardening guidelines to apply the most restrictive settings necessary for operational needs, while baseline configurations maintain secure system and software states. A defense-in-depth monitoring strategy includes perimeter firewalls and endpoint protection services that detect and respond to threats in real time, helping prevent or limit exploitation attempts. Robust input validation and error handling ensure all user inputs are thoroughly validated, supporting consistent and secure system responses.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHOSE-4.14:rhcos-aarch64-414.92.202508270040-0",
"9Base-RHOSE-4.14:rhcos-ppc64le-414.92.202508270040-0",
"9Base-RHOSE-4.14:rhcos-s390x-414.92.202508270040-0",
"9Base-RHOSE-4.14:rhcos-x86_64-414.92.202508270040-0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-32414"
},
{
"category": "external",
"summary": "RHBZ#2358121",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2358121"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-32414",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-32414"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-32414",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-32414"
},
{
"category": "external",
"summary": "https://gitlab.gnome.org/GNOME/libxml2/-/issues/889",
"url": "https://gitlab.gnome.org/GNOME/libxml2/-/issues/889"
}
],
"release_date": "2025-04-08T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-09-04T17:05:30+00:00",
"details": "For OpenShift Container Platform 4.14 see the following documentation,\nwhich will be updated shortly for this release, for important instructions\non how to upgrade your cluster and fully apply this asynchronous errata\nupdate:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.14/html/release_notes/\n\nYou may download the oc tool and use it to inspect release image metadata\nfor x86_64, s390x, ppc64le, and aarch64 architectures. The image digests\nmay be found at\nhttps://quay.io/repository/openshift-release-dev/ocp-release?tab=tags.\n\nThe sha values for the release are as follows:\n\n (For x86_64 architecture)\n The image digest is sha256:5f0204b0de50a408dc8b52f568e90aef6b3266ee8d22a77c1b34ceefb2b00f14\n\n (For s390x architecture)\n The image digest is sha256:758be0c12f06fadff01eb06d514ed48c306679706b3a82b72a2943f211003a7b\n\n (For ppc64le architecture)\n The image digest is sha256:9d022cdb3929572745d9b77d9f27e29fcc8ff5c7c5d04b404e81600601e7d6c7\n\n (For aarch64 architecture)\n The image digest is sha256:c75cf7a5560e7352860dcf9ae8f115a7ce7b45ca05744d65af7513ce4913ea7d\n\nAll OpenShift Container Platform 4.14 users are advised to upgrade to these\nupdated packages and images when they are available in the appropriate\nrelease channel. To check for available updates, use the OpenShift CLI (oc)\nor web console. Instructions for upgrading a cluster are available at\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.14/html-single/updating_clusters/index#updating-cluster-cli.",
"product_ids": [
"9Base-RHOSE-4.14:rhcos-aarch64-414.92.202508270040-0",
"9Base-RHOSE-4.14:rhcos-ppc64le-414.92.202508270040-0",
"9Base-RHOSE-4.14:rhcos-s390x-414.92.202508270040-0",
"9Base-RHOSE-4.14:rhcos-x86_64-414.92.202508270040-0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:14853"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHOSE-4.14:rhcos-aarch64-414.92.202508270040-0",
"9Base-RHOSE-4.14:rhcos-ppc64le-414.92.202508270040-0",
"9Base-RHOSE-4.14:rhcos-s390x-414.92.202508270040-0",
"9Base-RHOSE-4.14:rhcos-x86_64-414.92.202508270040-0"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "LOW",
"baseScore": 5.6,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"9Base-RHOSE-4.14:rhcos-aarch64-414.92.202508270040-0",
"9Base-RHOSE-4.14:rhcos-ppc64le-414.92.202508270040-0",
"9Base-RHOSE-4.14:rhcos-s390x-414.92.202508270040-0",
"9Base-RHOSE-4.14:rhcos-x86_64-414.92.202508270040-0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "libxml2: Out-of-Bounds Read in libxml2"
},
{
"cve": "CVE-2025-32415",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2025-04-17T18:00:46.954384+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2360768"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the libxml2 library. A heap-based underflow can be triggered when a crafted XML document is validated against an XML schema with certain identity constraints or when a crafted XML schema is used, causing a crash to the application linked to the library and resulting in a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "libxml2: Out-of-bounds Read in xmlSchemaIDCFillNodeTables",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "To exploit this issue, an attacker needs to be able to process a specially crafted XML file with the application linked to the libxml2 library. Additionally, the only security impact of this vulnerability is a denial of service.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHOSE-4.14:rhcos-aarch64-414.92.202508270040-0",
"9Base-RHOSE-4.14:rhcos-ppc64le-414.92.202508270040-0",
"9Base-RHOSE-4.14:rhcos-s390x-414.92.202508270040-0",
"9Base-RHOSE-4.14:rhcos-x86_64-414.92.202508270040-0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-32415"
},
{
"category": "external",
"summary": "RHBZ#2360768",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2360768"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-32415",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-32415"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-32415",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-32415"
},
{
"category": "external",
"summary": "https://gitlab.gnome.org/GNOME/libxml2/-/issues/890",
"url": "https://gitlab.gnome.org/GNOME/libxml2/-/issues/890"
}
],
"release_date": "2025-04-17T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-09-04T17:05:30+00:00",
"details": "For OpenShift Container Platform 4.14 see the following documentation,\nwhich will be updated shortly for this release, for important instructions\non how to upgrade your cluster and fully apply this asynchronous errata\nupdate:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.14/html/release_notes/\n\nYou may download the oc tool and use it to inspect release image metadata\nfor x86_64, s390x, ppc64le, and aarch64 architectures. The image digests\nmay be found at\nhttps://quay.io/repository/openshift-release-dev/ocp-release?tab=tags.\n\nThe sha values for the release are as follows:\n\n (For x86_64 architecture)\n The image digest is sha256:5f0204b0de50a408dc8b52f568e90aef6b3266ee8d22a77c1b34ceefb2b00f14\n\n (For s390x architecture)\n The image digest is sha256:758be0c12f06fadff01eb06d514ed48c306679706b3a82b72a2943f211003a7b\n\n (For ppc64le architecture)\n The image digest is sha256:9d022cdb3929572745d9b77d9f27e29fcc8ff5c7c5d04b404e81600601e7d6c7\n\n (For aarch64 architecture)\n The image digest is sha256:c75cf7a5560e7352860dcf9ae8f115a7ce7b45ca05744d65af7513ce4913ea7d\n\nAll OpenShift Container Platform 4.14 users are advised to upgrade to these\nupdated packages and images when they are available in the appropriate\nrelease channel. To check for available updates, use the OpenShift CLI (oc)\nor web console. Instructions for upgrading a cluster are available at\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.14/html-single/updating_clusters/index#updating-cluster-cli.",
"product_ids": [
"9Base-RHOSE-4.14:rhcos-aarch64-414.92.202508270040-0",
"9Base-RHOSE-4.14:rhcos-ppc64le-414.92.202508270040-0",
"9Base-RHOSE-4.14:rhcos-s390x-414.92.202508270040-0",
"9Base-RHOSE-4.14:rhcos-x86_64-414.92.202508270040-0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:14853"
},
{
"category": "workaround",
"details": "Do not process untrusted files with the libxml2 library.",
"product_ids": [
"9Base-RHOSE-4.14:rhcos-aarch64-414.92.202508270040-0",
"9Base-RHOSE-4.14:rhcos-ppc64le-414.92.202508270040-0",
"9Base-RHOSE-4.14:rhcos-s390x-414.92.202508270040-0",
"9Base-RHOSE-4.14:rhcos-x86_64-414.92.202508270040-0"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHOSE-4.14:rhcos-aarch64-414.92.202508270040-0",
"9Base-RHOSE-4.14:rhcos-ppc64le-414.92.202508270040-0",
"9Base-RHOSE-4.14:rhcos-s390x-414.92.202508270040-0",
"9Base-RHOSE-4.14:rhcos-x86_64-414.92.202508270040-0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "libxml2: Out-of-bounds Read in xmlSchemaIDCFillNodeTables"
},
{
"cve": "CVE-2025-48060",
"cwe": {
"id": "CWE-126",
"name": "Buffer Over-read"
},
"discovery_date": "2025-05-21T18:00:55.721838+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2367842"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in jq, a command line JSON processor. A specially crafted input can cause a heap-based buffer over-read when formatting an empty string because it was not properly null-terminated, causing a crash and resulting in a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "jq: AddressSanitizer: stack-buffer-overflow in jq_fuzz_execute (jv_string_vfmt)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "To exploit this flaw, an attacker needs to trick a user into processing a specially crafted JSON input, allowing an attacker to trigger a buffer over-read of 2 bytes and cause a crash in jq with no other security impact. Due to these reasons, this flaw has been rated with a Moderate severity.\n\nWithin regulated environments, a combination of the following controls acts as a significant barrier to successfully exploiting a CWE-126: Buffer Over-read vulnerability and therefore downgrades the severity of this particular CVE from Moderate to Low.\n\nMemory access boundaries are enforced through secure coding practices, including bounds checking and automated detection of over-read conditions during development. Static analysis and peer reviews catch improper memory handling early, reducing the risk of vulnerabilities reaching production. Memory protection mechanisms restrict access to allocated regions at runtime, and process isolation contains memory faults within the affected workload. Additionally, a defense-in-depth monitoring strategy supports real-time detection of anomalous memory activity, enabling rapid response and limiting potential impact.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHOSE-4.14:rhcos-aarch64-414.92.202508270040-0",
"9Base-RHOSE-4.14:rhcos-ppc64le-414.92.202508270040-0",
"9Base-RHOSE-4.14:rhcos-s390x-414.92.202508270040-0",
"9Base-RHOSE-4.14:rhcos-x86_64-414.92.202508270040-0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-48060"
},
{
"category": "external",
"summary": "RHBZ#2367842",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2367842"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-48060",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-48060"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-48060",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-48060"
},
{
"category": "external",
"summary": "https://github.com/jqlang/jq/security/advisories/GHSA-p7rr-28xf-3m5w",
"url": "https://github.com/jqlang/jq/security/advisories/GHSA-p7rr-28xf-3m5w"
}
],
"release_date": "2025-05-21T17:32:43.602000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-09-04T17:05:30+00:00",
"details": "For OpenShift Container Platform 4.14 see the following documentation,\nwhich will be updated shortly for this release, for important instructions\non how to upgrade your cluster and fully apply this asynchronous errata\nupdate:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.14/html/release_notes/\n\nYou may download the oc tool and use it to inspect release image metadata\nfor x86_64, s390x, ppc64le, and aarch64 architectures. The image digests\nmay be found at\nhttps://quay.io/repository/openshift-release-dev/ocp-release?tab=tags.\n\nThe sha values for the release are as follows:\n\n (For x86_64 architecture)\n The image digest is sha256:5f0204b0de50a408dc8b52f568e90aef6b3266ee8d22a77c1b34ceefb2b00f14\n\n (For s390x architecture)\n The image digest is sha256:758be0c12f06fadff01eb06d514ed48c306679706b3a82b72a2943f211003a7b\n\n (For ppc64le architecture)\n The image digest is sha256:9d022cdb3929572745d9b77d9f27e29fcc8ff5c7c5d04b404e81600601e7d6c7\n\n (For aarch64 architecture)\n The image digest is sha256:c75cf7a5560e7352860dcf9ae8f115a7ce7b45ca05744d65af7513ce4913ea7d\n\nAll OpenShift Container Platform 4.14 users are advised to upgrade to these\nupdated packages and images when they are available in the appropriate\nrelease channel. To check for available updates, use the OpenShift CLI (oc)\nor web console. Instructions for upgrading a cluster are available at\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.14/html-single/updating_clusters/index#updating-cluster-cli.",
"product_ids": [
"9Base-RHOSE-4.14:rhcos-aarch64-414.92.202508270040-0",
"9Base-RHOSE-4.14:rhcos-ppc64le-414.92.202508270040-0",
"9Base-RHOSE-4.14:rhcos-s390x-414.92.202508270040-0",
"9Base-RHOSE-4.14:rhcos-x86_64-414.92.202508270040-0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:14853"
},
{
"category": "workaround",
"details": "Do not process untrusted input with the jq command line JSON processor.",
"product_ids": [
"9Base-RHOSE-4.14:rhcos-aarch64-414.92.202508270040-0",
"9Base-RHOSE-4.14:rhcos-ppc64le-414.92.202508270040-0",
"9Base-RHOSE-4.14:rhcos-s390x-414.92.202508270040-0",
"9Base-RHOSE-4.14:rhcos-x86_64-414.92.202508270040-0"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHOSE-4.14:rhcos-aarch64-414.92.202508270040-0",
"9Base-RHOSE-4.14:rhcos-ppc64le-414.92.202508270040-0",
"9Base-RHOSE-4.14:rhcos-s390x-414.92.202508270040-0",
"9Base-RHOSE-4.14:rhcos-x86_64-414.92.202508270040-0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "jq: AddressSanitizer: stack-buffer-overflow in jq_fuzz_execute (jv_string_vfmt)"
},
{
"cve": "CVE-2025-48384",
"cwe": {
"id": "CWE-59",
"name": "Improper Link Resolution Before File Access (\u0027Link Following\u0027)"
},
"discovery_date": "2025-07-08T19:00:48.297925+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2378806"
}
],
"notes": [
{
"category": "description",
"text": "A line-end handling flaw was found in Git. When writing a config entry, values with a trailing carriage return (CR) are not quoted, resulting in the CR being lost when the config is read later. When initializing a submodule, if the submodule path contains a trailing CR, the altered path is read, resulting in the submodule being checked out to an incorrect location.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "git: Git arbitrary code execution",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability marked as Important and not Moderate flaw because it undermines Git\u2019s path and config integrity by allowing carriage return (\\r) injection to manipulate submodule checkout behavior. Git previously failed to quote config values containing trailing CR, causing the value to be misinterpreted when read back. In the context of submodules, this leads to incorrect path resolution, allowing an attacker to redirect the checkout path via a symlink to a sensitive directory like .git/modules/\u003csubmodule\u003e/hooks. If an executable post-checkout hook exists there, it could be inadvertently executed, resulting in arbitrary code execution during submodule operations. This is particularly dangerous in automated CI/CD pipelines or multi-repo projects where submodules are initialized or updated without manual inspection.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHOSE-4.14:rhcos-aarch64-414.92.202508270040-0",
"9Base-RHOSE-4.14:rhcos-ppc64le-414.92.202508270040-0",
"9Base-RHOSE-4.14:rhcos-s390x-414.92.202508270040-0",
"9Base-RHOSE-4.14:rhcos-x86_64-414.92.202508270040-0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-48384"
},
{
"category": "external",
"summary": "RHBZ#2378806",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2378806"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-48384",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-48384"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-48384",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-48384"
},
{
"category": "external",
"summary": "https://dgl.cx/2025/07/git-clone-submodule-cve-2025-48384",
"url": "https://dgl.cx/2025/07/git-clone-submodule-cve-2025-48384"
},
{
"category": "external",
"summary": "https://github.com/git/git/commit/05e9cd64ee23bbadcea6bcffd6660ed02b8eab89",
"url": "https://github.com/git/git/commit/05e9cd64ee23bbadcea6bcffd6660ed02b8eab89"
},
{
"category": "external",
"summary": "https://github.com/git/git/security/advisories/GHSA-vwqx-4fm8-6qc9",
"url": "https://github.com/git/git/security/advisories/GHSA-vwqx-4fm8-6qc9"
},
{
"category": "external",
"summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog",
"url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
}
],
"release_date": "2025-07-08T18:23:48.710000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-09-04T17:05:30+00:00",
"details": "For OpenShift Container Platform 4.14 see the following documentation,\nwhich will be updated shortly for this release, for important instructions\non how to upgrade your cluster and fully apply this asynchronous errata\nupdate:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.14/html/release_notes/\n\nYou may download the oc tool and use it to inspect release image metadata\nfor x86_64, s390x, ppc64le, and aarch64 architectures. The image digests\nmay be found at\nhttps://quay.io/repository/openshift-release-dev/ocp-release?tab=tags.\n\nThe sha values for the release are as follows:\n\n (For x86_64 architecture)\n The image digest is sha256:5f0204b0de50a408dc8b52f568e90aef6b3266ee8d22a77c1b34ceefb2b00f14\n\n (For s390x architecture)\n The image digest is sha256:758be0c12f06fadff01eb06d514ed48c306679706b3a82b72a2943f211003a7b\n\n (For ppc64le architecture)\n The image digest is sha256:9d022cdb3929572745d9b77d9f27e29fcc8ff5c7c5d04b404e81600601e7d6c7\n\n (For aarch64 architecture)\n The image digest is sha256:c75cf7a5560e7352860dcf9ae8f115a7ce7b45ca05744d65af7513ce4913ea7d\n\nAll OpenShift Container Platform 4.14 users are advised to upgrade to these\nupdated packages and images when they are available in the appropriate\nrelease channel. To check for available updates, use the OpenShift CLI (oc)\nor web console. Instructions for upgrading a cluster are available at\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.14/html-single/updating_clusters/index#updating-cluster-cli.",
"product_ids": [
"9Base-RHOSE-4.14:rhcos-aarch64-414.92.202508270040-0",
"9Base-RHOSE-4.14:rhcos-ppc64le-414.92.202508270040-0",
"9Base-RHOSE-4.14:rhcos-s390x-414.92.202508270040-0",
"9Base-RHOSE-4.14:rhcos-x86_64-414.92.202508270040-0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:14853"
},
{
"category": "workaround",
"details": "To mitigate this issue, avoid using --recurse-submodules when cloning repositories from untrusted sources; instead, clone normally and only initialize or update submodules manually after reviewing them.",
"product_ids": [
"9Base-RHOSE-4.14:rhcos-aarch64-414.92.202508270040-0",
"9Base-RHOSE-4.14:rhcos-ppc64le-414.92.202508270040-0",
"9Base-RHOSE-4.14:rhcos-s390x-414.92.202508270040-0",
"9Base-RHOSE-4.14:rhcos-x86_64-414.92.202508270040-0"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.0,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"9Base-RHOSE-4.14:rhcos-aarch64-414.92.202508270040-0",
"9Base-RHOSE-4.14:rhcos-ppc64le-414.92.202508270040-0",
"9Base-RHOSE-4.14:rhcos-s390x-414.92.202508270040-0",
"9Base-RHOSE-4.14:rhcos-x86_64-414.92.202508270040-0"
]
}
],
"threats": [
{
"category": "exploit_status",
"date": "2025-08-25T00:00:00+00:00",
"details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
},
{
"category": "impact",
"details": "Important"
}
],
"title": "git: Git arbitrary code execution"
},
{
"cve": "CVE-2025-48385",
"cwe": {
"id": "CWE-88",
"name": "Improper Neutralization of Argument Delimiters in a Command (\u0027Argument Injection\u0027)"
},
"discovery_date": "2025-07-08T19:00:55.106787+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2378808"
}
],
"notes": [
{
"category": "description",
"text": "A bundled uri handling flaw was found in Git. When cloning a repository, Git knows to optionally fetch a bundle advertised by the remote server, which allows the server side to offload parts of the clone to a CDN. The Git client does not perform sufficient validation of the advertised bundles, which allows the remote side to perform protocol injection.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "git: Git arbitrary file writes",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability marked as Important rather than a Moderate flaw because it enables protocol injection at the transport layer of Git\u0027s bundle-uri mechanism, allowing a remote server to manipulate how and where data is written on the client system during a clone operation. The lack of input sanitization on user-controlled values like the URI and target path means that malformed inputs containing spaces or newlines can break protocol framing, leading to arbitrary file writes. In scenarios such as CI pipelines, developer environments, or recursive clones with submodules, an attacker can exploit this to overwrite critical files or inject malicious content, potentially achieving remote code execution (RCE).",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHOSE-4.14:rhcos-aarch64-414.92.202508270040-0",
"9Base-RHOSE-4.14:rhcos-ppc64le-414.92.202508270040-0",
"9Base-RHOSE-4.14:rhcos-s390x-414.92.202508270040-0",
"9Base-RHOSE-4.14:rhcos-x86_64-414.92.202508270040-0"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-48385"
},
{
"category": "external",
"summary": "RHBZ#2378808",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2378808"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-48385",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-48385"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-48385",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-48385"
},
{
"category": "external",
"summary": "https://github.com/git/git/security/advisories/GHSA-m98c-vgpc-9655",
"url": "https://github.com/git/git/security/advisories/GHSA-m98c-vgpc-9655"
}
],
"release_date": "2025-07-08T18:23:44.405000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-09-04T17:05:30+00:00",
"details": "For OpenShift Container Platform 4.14 see the following documentation,\nwhich will be updated shortly for this release, for important instructions\non how to upgrade your cluster and fully apply this asynchronous errata\nupdate:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.14/html/release_notes/\n\nYou may download the oc tool and use it to inspect release image metadata\nfor x86_64, s390x, ppc64le, and aarch64 architectures. The image digests\nmay be found at\nhttps://quay.io/repository/openshift-release-dev/ocp-release?tab=tags.\n\nThe sha values for the release are as follows:\n\n (For x86_64 architecture)\n The image digest is sha256:5f0204b0de50a408dc8b52f568e90aef6b3266ee8d22a77c1b34ceefb2b00f14\n\n (For s390x architecture)\n The image digest is sha256:758be0c12f06fadff01eb06d514ed48c306679706b3a82b72a2943f211003a7b\n\n (For ppc64le architecture)\n The image digest is sha256:9d022cdb3929572745d9b77d9f27e29fcc8ff5c7c5d04b404e81600601e7d6c7\n\n (For aarch64 architecture)\n The image digest is sha256:c75cf7a5560e7352860dcf9ae8f115a7ce7b45ca05744d65af7513ce4913ea7d\n\nAll OpenShift Container Platform 4.14 users are advised to upgrade to these\nupdated packages and images when they are available in the appropriate\nrelease channel. To check for available updates, use the OpenShift CLI (oc)\nor web console. Instructions for upgrading a cluster are available at\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.14/html-single/updating_clusters/index#updating-cluster-cli.",
"product_ids": [
"9Base-RHOSE-4.14:rhcos-aarch64-414.92.202508270040-0",
"9Base-RHOSE-4.14:rhcos-ppc64le-414.92.202508270040-0",
"9Base-RHOSE-4.14:rhcos-s390x-414.92.202508270040-0",
"9Base-RHOSE-4.14:rhcos-x86_64-414.92.202508270040-0"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:14853"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHOSE-4.14:rhcos-aarch64-414.92.202508270040-0",
"9Base-RHOSE-4.14:rhcos-ppc64le-414.92.202508270040-0",
"9Base-RHOSE-4.14:rhcos-s390x-414.92.202508270040-0",
"9Base-RHOSE-4.14:rhcos-x86_64-414.92.202508270040-0"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 8.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:L",
"version": "3.1"
},
"products": [
"9Base-RHOSE-4.14:rhcos-aarch64-414.92.202508270040-0",
"9Base-RHOSE-4.14:rhcos-ppc64le-414.92.202508270040-0",
"9Base-RHOSE-4.14:rhcos-s390x-414.92.202508270040-0",
"9Base-RHOSE-4.14:rhcos-x86_64-414.92.202508270040-0"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "git: Git arbitrary file writes"
}
]
}
rhsa-2025:11534
Vulnerability from csaf_redhat
Published
2025-07-23 14:25
Modified
2025-11-06 22:35
Summary
Red Hat Security Advisory: git security update
Notes
Topic
An update for git is now available for Red Hat Enterprise Linux 8.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Git is a distributed revision control system with a decentralized architecture. As opposed to centralized version control systems with a client-server model, Git ensures that each working copy of a Git repository is an exact copy with complete revision history. This not only allows the user to work on and contribute to projects without the need to have permission to push the changes to their official repositories, but also makes it possible for the user to work with no network connection.
Security Fix(es):
* git: Git does not sanitize URLs when asking for credentials interactively (CVE-2024-50349)
* git: Newline confusion in credential helpers can lead to credential exfiltration in git (CVE-2024-52006)
* git: Git arbitrary code execution (CVE-2025-48384)
* git: Git arbitrary file writes (CVE-2025-48385)
* gitk: Git file creation flaw (CVE-2025-27613)
* gitk: git script execution flaw (CVE-2025-27614)
* git: Git GUI can create and overwrite files for which the user has write permission (CVE-2025-46835)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for git is now available for Red Hat Enterprise Linux 8.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Git is a distributed revision control system with a decentralized architecture. As opposed to centralized version control systems with a client-server model, Git ensures that each working copy of a Git repository is an exact copy with complete revision history. This not only allows the user to work on and contribute to projects without the need to have permission to push the changes to their official repositories, but also makes it possible for the user to work with no network connection.\n\nSecurity Fix(es):\n\n* git: Git does not sanitize URLs when asking for credentials interactively (CVE-2024-50349)\n\n* git: Newline confusion in credential helpers can lead to credential exfiltration in git (CVE-2024-52006)\n\n* git: Git arbitrary code execution (CVE-2025-48384)\n\n* git: Git arbitrary file writes (CVE-2025-48385)\n\n* gitk: Git file creation flaw (CVE-2025-27613)\n\n* gitk: git script execution flaw (CVE-2025-27614)\n\n* git: Git GUI can create and overwrite files for which the user has write permission (CVE-2025-46835)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:11534",
"url": "https://access.redhat.com/errata/RHSA-2025:11534"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2337824",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2337824"
},
{
"category": "external",
"summary": "2337956",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2337956"
},
{
"category": "external",
"summary": "2378806",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2378806"
},
{
"category": "external",
"summary": "2378808",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2378808"
},
{
"category": "external",
"summary": "2379124",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2379124"
},
{
"category": "external",
"summary": "2379125",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2379125"
},
{
"category": "external",
"summary": "2379326",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2379326"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_11534.json"
}
],
"title": "Red Hat Security Advisory: git security update",
"tracking": {
"current_release_date": "2025-11-06T22:35:16+00:00",
"generator": {
"date": "2025-11-06T22:35:16+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.11"
}
},
"id": "RHSA-2025:11534",
"initial_release_date": "2025-07-23T14:25:28+00:00",
"revision_history": [
{
"date": "2025-07-23T14:25:28+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-07-23T14:25:28+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-06T22:35:16+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream (v. 8)",
"product": {
"name": "Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:8::appstream"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "git-0:2.43.7-1.el8_10.src",
"product": {
"name": "git-0:2.43.7-1.el8_10.src",
"product_id": "git-0:2.43.7-1.el8_10.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git@2.43.7-1.el8_10?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "git-0:2.43.7-1.el8_10.aarch64",
"product": {
"name": "git-0:2.43.7-1.el8_10.aarch64",
"product_id": "git-0:2.43.7-1.el8_10.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git@2.43.7-1.el8_10?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-core-0:2.43.7-1.el8_10.aarch64",
"product": {
"name": "git-core-0:2.43.7-1.el8_10.aarch64",
"product_id": "git-core-0:2.43.7-1.el8_10.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core@2.43.7-1.el8_10?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-0:2.43.7-1.el8_10.aarch64",
"product": {
"name": "git-credential-libsecret-0:2.43.7-1.el8_10.aarch64",
"product_id": "git-credential-libsecret-0:2.43.7-1.el8_10.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret@2.43.7-1.el8_10?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-daemon-0:2.43.7-1.el8_10.aarch64",
"product": {
"name": "git-daemon-0:2.43.7-1.el8_10.aarch64",
"product_id": "git-daemon-0:2.43.7-1.el8_10.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon@2.43.7-1.el8_10?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-subtree-0:2.43.7-1.el8_10.aarch64",
"product": {
"name": "git-subtree-0:2.43.7-1.el8_10.aarch64",
"product_id": "git-subtree-0:2.43.7-1.el8_10.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-subtree@2.43.7-1.el8_10?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-debugsource-0:2.43.7-1.el8_10.aarch64",
"product": {
"name": "git-debugsource-0:2.43.7-1.el8_10.aarch64",
"product_id": "git-debugsource-0:2.43.7-1.el8_10.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debugsource@2.43.7-1.el8_10?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-core-debuginfo-0:2.43.7-1.el8_10.aarch64",
"product": {
"name": "git-core-debuginfo-0:2.43.7-1.el8_10.aarch64",
"product_id": "git-core-debuginfo-0:2.43.7-1.el8_10.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core-debuginfo@2.43.7-1.el8_10?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.aarch64",
"product": {
"name": "git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.aarch64",
"product_id": "git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret-debuginfo@2.43.7-1.el8_10?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-daemon-debuginfo-0:2.43.7-1.el8_10.aarch64",
"product": {
"name": "git-daemon-debuginfo-0:2.43.7-1.el8_10.aarch64",
"product_id": "git-daemon-debuginfo-0:2.43.7-1.el8_10.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon-debuginfo@2.43.7-1.el8_10?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "git-debuginfo-0:2.43.7-1.el8_10.aarch64",
"product": {
"name": "git-debuginfo-0:2.43.7-1.el8_10.aarch64",
"product_id": "git-debuginfo-0:2.43.7-1.el8_10.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debuginfo@2.43.7-1.el8_10?arch=aarch64"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "git-0:2.43.7-1.el8_10.ppc64le",
"product": {
"name": "git-0:2.43.7-1.el8_10.ppc64le",
"product_id": "git-0:2.43.7-1.el8_10.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git@2.43.7-1.el8_10?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-core-0:2.43.7-1.el8_10.ppc64le",
"product": {
"name": "git-core-0:2.43.7-1.el8_10.ppc64le",
"product_id": "git-core-0:2.43.7-1.el8_10.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core@2.43.7-1.el8_10?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-0:2.43.7-1.el8_10.ppc64le",
"product": {
"name": "git-credential-libsecret-0:2.43.7-1.el8_10.ppc64le",
"product_id": "git-credential-libsecret-0:2.43.7-1.el8_10.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret@2.43.7-1.el8_10?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-daemon-0:2.43.7-1.el8_10.ppc64le",
"product": {
"name": "git-daemon-0:2.43.7-1.el8_10.ppc64le",
"product_id": "git-daemon-0:2.43.7-1.el8_10.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon@2.43.7-1.el8_10?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-subtree-0:2.43.7-1.el8_10.ppc64le",
"product": {
"name": "git-subtree-0:2.43.7-1.el8_10.ppc64le",
"product_id": "git-subtree-0:2.43.7-1.el8_10.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-subtree@2.43.7-1.el8_10?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-debugsource-0:2.43.7-1.el8_10.ppc64le",
"product": {
"name": "git-debugsource-0:2.43.7-1.el8_10.ppc64le",
"product_id": "git-debugsource-0:2.43.7-1.el8_10.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debugsource@2.43.7-1.el8_10?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-core-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"product": {
"name": "git-core-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"product_id": "git-core-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core-debuginfo@2.43.7-1.el8_10?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"product": {
"name": "git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"product_id": "git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret-debuginfo@2.43.7-1.el8_10?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-daemon-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"product": {
"name": "git-daemon-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"product_id": "git-daemon-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon-debuginfo@2.43.7-1.el8_10?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "git-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"product": {
"name": "git-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"product_id": "git-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debuginfo@2.43.7-1.el8_10?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "git-0:2.43.7-1.el8_10.x86_64",
"product": {
"name": "git-0:2.43.7-1.el8_10.x86_64",
"product_id": "git-0:2.43.7-1.el8_10.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git@2.43.7-1.el8_10?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-core-0:2.43.7-1.el8_10.x86_64",
"product": {
"name": "git-core-0:2.43.7-1.el8_10.x86_64",
"product_id": "git-core-0:2.43.7-1.el8_10.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core@2.43.7-1.el8_10?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-0:2.43.7-1.el8_10.x86_64",
"product": {
"name": "git-credential-libsecret-0:2.43.7-1.el8_10.x86_64",
"product_id": "git-credential-libsecret-0:2.43.7-1.el8_10.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret@2.43.7-1.el8_10?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-daemon-0:2.43.7-1.el8_10.x86_64",
"product": {
"name": "git-daemon-0:2.43.7-1.el8_10.x86_64",
"product_id": "git-daemon-0:2.43.7-1.el8_10.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon@2.43.7-1.el8_10?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-subtree-0:2.43.7-1.el8_10.x86_64",
"product": {
"name": "git-subtree-0:2.43.7-1.el8_10.x86_64",
"product_id": "git-subtree-0:2.43.7-1.el8_10.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-subtree@2.43.7-1.el8_10?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-debugsource-0:2.43.7-1.el8_10.x86_64",
"product": {
"name": "git-debugsource-0:2.43.7-1.el8_10.x86_64",
"product_id": "git-debugsource-0:2.43.7-1.el8_10.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debugsource@2.43.7-1.el8_10?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-core-debuginfo-0:2.43.7-1.el8_10.x86_64",
"product": {
"name": "git-core-debuginfo-0:2.43.7-1.el8_10.x86_64",
"product_id": "git-core-debuginfo-0:2.43.7-1.el8_10.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core-debuginfo@2.43.7-1.el8_10?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.x86_64",
"product": {
"name": "git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.x86_64",
"product_id": "git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret-debuginfo@2.43.7-1.el8_10?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-daemon-debuginfo-0:2.43.7-1.el8_10.x86_64",
"product": {
"name": "git-daemon-debuginfo-0:2.43.7-1.el8_10.x86_64",
"product_id": "git-daemon-debuginfo-0:2.43.7-1.el8_10.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon-debuginfo@2.43.7-1.el8_10?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "git-debuginfo-0:2.43.7-1.el8_10.x86_64",
"product": {
"name": "git-debuginfo-0:2.43.7-1.el8_10.x86_64",
"product_id": "git-debuginfo-0:2.43.7-1.el8_10.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debuginfo@2.43.7-1.el8_10?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "git-0:2.43.7-1.el8_10.s390x",
"product": {
"name": "git-0:2.43.7-1.el8_10.s390x",
"product_id": "git-0:2.43.7-1.el8_10.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git@2.43.7-1.el8_10?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-core-0:2.43.7-1.el8_10.s390x",
"product": {
"name": "git-core-0:2.43.7-1.el8_10.s390x",
"product_id": "git-core-0:2.43.7-1.el8_10.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core@2.43.7-1.el8_10?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-0:2.43.7-1.el8_10.s390x",
"product": {
"name": "git-credential-libsecret-0:2.43.7-1.el8_10.s390x",
"product_id": "git-credential-libsecret-0:2.43.7-1.el8_10.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret@2.43.7-1.el8_10?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-daemon-0:2.43.7-1.el8_10.s390x",
"product": {
"name": "git-daemon-0:2.43.7-1.el8_10.s390x",
"product_id": "git-daemon-0:2.43.7-1.el8_10.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon@2.43.7-1.el8_10?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-subtree-0:2.43.7-1.el8_10.s390x",
"product": {
"name": "git-subtree-0:2.43.7-1.el8_10.s390x",
"product_id": "git-subtree-0:2.43.7-1.el8_10.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-subtree@2.43.7-1.el8_10?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-debugsource-0:2.43.7-1.el8_10.s390x",
"product": {
"name": "git-debugsource-0:2.43.7-1.el8_10.s390x",
"product_id": "git-debugsource-0:2.43.7-1.el8_10.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debugsource@2.43.7-1.el8_10?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-core-debuginfo-0:2.43.7-1.el8_10.s390x",
"product": {
"name": "git-core-debuginfo-0:2.43.7-1.el8_10.s390x",
"product_id": "git-core-debuginfo-0:2.43.7-1.el8_10.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core-debuginfo@2.43.7-1.el8_10?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.s390x",
"product": {
"name": "git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.s390x",
"product_id": "git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-credential-libsecret-debuginfo@2.43.7-1.el8_10?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-daemon-debuginfo-0:2.43.7-1.el8_10.s390x",
"product": {
"name": "git-daemon-debuginfo-0:2.43.7-1.el8_10.s390x",
"product_id": "git-daemon-debuginfo-0:2.43.7-1.el8_10.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-daemon-debuginfo@2.43.7-1.el8_10?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "git-debuginfo-0:2.43.7-1.el8_10.s390x",
"product": {
"name": "git-debuginfo-0:2.43.7-1.el8_10.s390x",
"product_id": "git-debuginfo-0:2.43.7-1.el8_10.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-debuginfo@2.43.7-1.el8_10?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "git-all-0:2.43.7-1.el8_10.noarch",
"product": {
"name": "git-all-0:2.43.7-1.el8_10.noarch",
"product_id": "git-all-0:2.43.7-1.el8_10.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-all@2.43.7-1.el8_10?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "git-core-doc-0:2.43.7-1.el8_10.noarch",
"product": {
"name": "git-core-doc-0:2.43.7-1.el8_10.noarch",
"product_id": "git-core-doc-0:2.43.7-1.el8_10.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-core-doc@2.43.7-1.el8_10?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "git-email-0:2.43.7-1.el8_10.noarch",
"product": {
"name": "git-email-0:2.43.7-1.el8_10.noarch",
"product_id": "git-email-0:2.43.7-1.el8_10.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-email@2.43.7-1.el8_10?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "git-gui-0:2.43.7-1.el8_10.noarch",
"product": {
"name": "git-gui-0:2.43.7-1.el8_10.noarch",
"product_id": "git-gui-0:2.43.7-1.el8_10.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-gui@2.43.7-1.el8_10?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "git-instaweb-0:2.43.7-1.el8_10.noarch",
"product": {
"name": "git-instaweb-0:2.43.7-1.el8_10.noarch",
"product_id": "git-instaweb-0:2.43.7-1.el8_10.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-instaweb@2.43.7-1.el8_10?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "git-svn-0:2.43.7-1.el8_10.noarch",
"product": {
"name": "git-svn-0:2.43.7-1.el8_10.noarch",
"product_id": "git-svn-0:2.43.7-1.el8_10.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/git-svn@2.43.7-1.el8_10?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "gitk-0:2.43.7-1.el8_10.noarch",
"product": {
"name": "gitk-0:2.43.7-1.el8_10.noarch",
"product_id": "gitk-0:2.43.7-1.el8_10.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/gitk@2.43.7-1.el8_10?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "gitweb-0:2.43.7-1.el8_10.noarch",
"product": {
"name": "gitweb-0:2.43.7-1.el8_10.noarch",
"product_id": "gitweb-0:2.43.7-1.el8_10.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/gitweb@2.43.7-1.el8_10?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "perl-Git-0:2.43.7-1.el8_10.noarch",
"product": {
"name": "perl-Git-0:2.43.7-1.el8_10.noarch",
"product_id": "perl-Git-0:2.43.7-1.el8_10.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/perl-Git@2.43.7-1.el8_10?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "perl-Git-SVN-0:2.43.7-1.el8_10.noarch",
"product": {
"name": "perl-Git-SVN-0:2.43.7-1.el8_10.noarch",
"product_id": "perl-Git-SVN-0:2.43.7-1.el8_10.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/perl-Git-SVN@2.43.7-1.el8_10?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "git-0:2.43.7-1.el8_10.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.aarch64"
},
"product_reference": "git-0:2.43.7-1.el8_10.aarch64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-0:2.43.7-1.el8_10.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.ppc64le"
},
"product_reference": "git-0:2.43.7-1.el8_10.ppc64le",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-0:2.43.7-1.el8_10.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.s390x"
},
"product_reference": "git-0:2.43.7-1.el8_10.s390x",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-0:2.43.7-1.el8_10.src as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.src"
},
"product_reference": "git-0:2.43.7-1.el8_10.src",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-0:2.43.7-1.el8_10.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.x86_64"
},
"product_reference": "git-0:2.43.7-1.el8_10.x86_64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-all-0:2.43.7-1.el8_10.noarch as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-all-0:2.43.7-1.el8_10.noarch"
},
"product_reference": "git-all-0:2.43.7-1.el8_10.noarch",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-0:2.43.7-1.el8_10.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.7-1.el8_10.aarch64"
},
"product_reference": "git-core-0:2.43.7-1.el8_10.aarch64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-0:2.43.7-1.el8_10.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.7-1.el8_10.ppc64le"
},
"product_reference": "git-core-0:2.43.7-1.el8_10.ppc64le",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-0:2.43.7-1.el8_10.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.7-1.el8_10.s390x"
},
"product_reference": "git-core-0:2.43.7-1.el8_10.s390x",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-0:2.43.7-1.el8_10.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.7-1.el8_10.x86_64"
},
"product_reference": "git-core-0:2.43.7-1.el8_10.x86_64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-debuginfo-0:2.43.7-1.el8_10.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.7-1.el8_10.aarch64"
},
"product_reference": "git-core-debuginfo-0:2.43.7-1.el8_10.aarch64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-debuginfo-0:2.43.7-1.el8_10.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.7-1.el8_10.ppc64le"
},
"product_reference": "git-core-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-debuginfo-0:2.43.7-1.el8_10.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.7-1.el8_10.s390x"
},
"product_reference": "git-core-debuginfo-0:2.43.7-1.el8_10.s390x",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-debuginfo-0:2.43.7-1.el8_10.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.7-1.el8_10.x86_64"
},
"product_reference": "git-core-debuginfo-0:2.43.7-1.el8_10.x86_64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-doc-0:2.43.7-1.el8_10.noarch as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-core-doc-0:2.43.7-1.el8_10.noarch"
},
"product_reference": "git-core-doc-0:2.43.7-1.el8_10.noarch",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-0:2.43.7-1.el8_10.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.7-1.el8_10.aarch64"
},
"product_reference": "git-credential-libsecret-0:2.43.7-1.el8_10.aarch64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-0:2.43.7-1.el8_10.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.7-1.el8_10.ppc64le"
},
"product_reference": "git-credential-libsecret-0:2.43.7-1.el8_10.ppc64le",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-0:2.43.7-1.el8_10.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.7-1.el8_10.s390x"
},
"product_reference": "git-credential-libsecret-0:2.43.7-1.el8_10.s390x",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-0:2.43.7-1.el8_10.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.7-1.el8_10.x86_64"
},
"product_reference": "git-credential-libsecret-0:2.43.7-1.el8_10.x86_64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.aarch64"
},
"product_reference": "git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.aarch64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.ppc64le"
},
"product_reference": "git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.s390x"
},
"product_reference": "git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.s390x",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.x86_64"
},
"product_reference": "git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.x86_64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-0:2.43.7-1.el8_10.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.7-1.el8_10.aarch64"
},
"product_reference": "git-daemon-0:2.43.7-1.el8_10.aarch64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-0:2.43.7-1.el8_10.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.7-1.el8_10.ppc64le"
},
"product_reference": "git-daemon-0:2.43.7-1.el8_10.ppc64le",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-0:2.43.7-1.el8_10.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.7-1.el8_10.s390x"
},
"product_reference": "git-daemon-0:2.43.7-1.el8_10.s390x",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-0:2.43.7-1.el8_10.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.7-1.el8_10.x86_64"
},
"product_reference": "git-daemon-0:2.43.7-1.el8_10.x86_64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-debuginfo-0:2.43.7-1.el8_10.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.7-1.el8_10.aarch64"
},
"product_reference": "git-daemon-debuginfo-0:2.43.7-1.el8_10.aarch64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-debuginfo-0:2.43.7-1.el8_10.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.7-1.el8_10.ppc64le"
},
"product_reference": "git-daemon-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-debuginfo-0:2.43.7-1.el8_10.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.7-1.el8_10.s390x"
},
"product_reference": "git-daemon-debuginfo-0:2.43.7-1.el8_10.s390x",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-debuginfo-0:2.43.7-1.el8_10.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.7-1.el8_10.x86_64"
},
"product_reference": "git-daemon-debuginfo-0:2.43.7-1.el8_10.x86_64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debuginfo-0:2.43.7-1.el8_10.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.7-1.el8_10.aarch64"
},
"product_reference": "git-debuginfo-0:2.43.7-1.el8_10.aarch64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debuginfo-0:2.43.7-1.el8_10.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.7-1.el8_10.ppc64le"
},
"product_reference": "git-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debuginfo-0:2.43.7-1.el8_10.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.7-1.el8_10.s390x"
},
"product_reference": "git-debuginfo-0:2.43.7-1.el8_10.s390x",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debuginfo-0:2.43.7-1.el8_10.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.7-1.el8_10.x86_64"
},
"product_reference": "git-debuginfo-0:2.43.7-1.el8_10.x86_64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debugsource-0:2.43.7-1.el8_10.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.7-1.el8_10.aarch64"
},
"product_reference": "git-debugsource-0:2.43.7-1.el8_10.aarch64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debugsource-0:2.43.7-1.el8_10.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.7-1.el8_10.ppc64le"
},
"product_reference": "git-debugsource-0:2.43.7-1.el8_10.ppc64le",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debugsource-0:2.43.7-1.el8_10.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.7-1.el8_10.s390x"
},
"product_reference": "git-debugsource-0:2.43.7-1.el8_10.s390x",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-debugsource-0:2.43.7-1.el8_10.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.7-1.el8_10.x86_64"
},
"product_reference": "git-debugsource-0:2.43.7-1.el8_10.x86_64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-0:2.43.7-1.el8_10.noarch as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-email-0:2.43.7-1.el8_10.noarch"
},
"product_reference": "git-email-0:2.43.7-1.el8_10.noarch",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-0:2.43.7-1.el8_10.noarch as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-gui-0:2.43.7-1.el8_10.noarch"
},
"product_reference": "git-gui-0:2.43.7-1.el8_10.noarch",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-instaweb-0:2.43.7-1.el8_10.noarch as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-instaweb-0:2.43.7-1.el8_10.noarch"
},
"product_reference": "git-instaweb-0:2.43.7-1.el8_10.noarch",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-subtree-0:2.43.7-1.el8_10.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.7-1.el8_10.aarch64"
},
"product_reference": "git-subtree-0:2.43.7-1.el8_10.aarch64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-subtree-0:2.43.7-1.el8_10.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.7-1.el8_10.ppc64le"
},
"product_reference": "git-subtree-0:2.43.7-1.el8_10.ppc64le",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-subtree-0:2.43.7-1.el8_10.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.7-1.el8_10.s390x"
},
"product_reference": "git-subtree-0:2.43.7-1.el8_10.s390x",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-subtree-0:2.43.7-1.el8_10.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.7-1.el8_10.x86_64"
},
"product_reference": "git-subtree-0:2.43.7-1.el8_10.x86_64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-0:2.43.7-1.el8_10.noarch as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:git-svn-0:2.43.7-1.el8_10.noarch"
},
"product_reference": "git-svn-0:2.43.7-1.el8_10.noarch",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-0:2.43.7-1.el8_10.noarch as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:gitk-0:2.43.7-1.el8_10.noarch"
},
"product_reference": "gitk-0:2.43.7-1.el8_10.noarch",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitweb-0:2.43.7-1.el8_10.noarch as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:gitweb-0:2.43.7-1.el8_10.noarch"
},
"product_reference": "gitweb-0:2.43.7-1.el8_10.noarch",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-0:2.43.7-1.el8_10.noarch as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:perl-Git-0:2.43.7-1.el8_10.noarch"
},
"product_reference": "perl-Git-0:2.43.7-1.el8_10.noarch",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-SVN-0:2.43.7-1.el8_10.noarch as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.7-1.el8_10.noarch"
},
"product_reference": "perl-Git-SVN-0:2.43.7-1.el8_10.noarch",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-50349",
"cwe": {
"id": "CWE-150",
"name": "Improper Neutralization of Escape, Meta, or Control Sequences"
},
"discovery_date": "2025-01-14T19:00:58.133257+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2337824"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Git. This vulnerability occurs when Git requests credentials via a terminal prompt, for example, without the use of a credential helper. During this process, Git displays the host name for which the credentials are needed, but any URL-encoded parts are decoded and displayed directly. This can allow an attacker to manipulate URLs by including ANSI escape sequences, which can be interpreted by the terminal to mislead users by tricking them into entering passwords that are redirected to malicious attacker-controlled sites.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "git: Git does not sanitize URLs when asking for credentials interactively",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.src",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-all-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-doc-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-email-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-gui-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-instaweb-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-svn-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitk-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitweb-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.7-1.el8_10.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-50349"
},
{
"category": "external",
"summary": "RHBZ#2337824",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2337824"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-50349",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50349"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-50349",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-50349"
},
{
"category": "external",
"summary": "https://github.com/git/git/commit/7725b8100ffbbff2750ee4d61a0fcc1f53a086e8",
"url": "https://github.com/git/git/commit/7725b8100ffbbff2750ee4d61a0fcc1f53a086e8"
},
{
"category": "external",
"summary": "https://github.com/git/git/commit/c903985bf7e772e2d08275c1a95c8a55ab011577",
"url": "https://github.com/git/git/commit/c903985bf7e772e2d08275c1a95c8a55ab011577"
},
{
"category": "external",
"summary": "https://github.com/git/git/security/advisories/GHSA-hmg8-h7qf-7cxr",
"url": "https://github.com/git/git/security/advisories/GHSA-hmg8-h7qf-7cxr"
}
],
"release_date": "2025-01-14T18:43:42.620000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-07-23T14:25:28+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.src",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-all-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-doc-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-email-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-gui-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-instaweb-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-svn-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitk-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitweb-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.7-1.el8_10.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:11534"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 3.1,
"baseSeverity": "LOW",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.src",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-all-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-doc-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-email-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-gui-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-instaweb-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-svn-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitk-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitweb-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.7-1.el8_10.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "git: Git does not sanitize URLs when asking for credentials interactively"
},
{
"cve": "CVE-2024-52006",
"cwe": {
"id": "CWE-150",
"name": "Improper Neutralization of Escape, Meta, or Control Sequences"
},
"discovery_date": "2025-01-14T19:09:43.720302+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2337956"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Git. Git defines a line-based protocol that is used to exchange information between Git and Git credential helpers. Some ecosystems, most notably .NET and node.js, interpret single Carriage Return characters as newlines, which render the protections against CVE-2020-5260 incomplete for credential helpers, which has the potential to expose stored credentials to malicious URLs.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "git: Newline confusion in credential helpers can lead to credential exfiltration in git",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.src",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-all-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-doc-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-email-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-gui-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-instaweb-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-svn-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitk-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitweb-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.7-1.el8_10.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-52006"
},
{
"category": "external",
"summary": "RHBZ#2337956",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2337956"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-52006",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-52006"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-52006",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-52006"
},
{
"category": "external",
"summary": "https://github.com/git-ecosystem/git-credential-manager/security/advisories/GHSA-86c2-4x57-wc8g",
"url": "https://github.com/git-ecosystem/git-credential-manager/security/advisories/GHSA-86c2-4x57-wc8g"
},
{
"category": "external",
"summary": "https://github.com/git/git/commit/b01b9b81d36759cdcd07305e78765199e1bc2060",
"url": "https://github.com/git/git/commit/b01b9b81d36759cdcd07305e78765199e1bc2060"
},
{
"category": "external",
"summary": "https://github.com/git/git/security/advisories/GHSA-qm7j-c969-7j4q",
"url": "https://github.com/git/git/security/advisories/GHSA-qm7j-c969-7j4q"
},
{
"category": "external",
"summary": "https://github.com/git/git/security/advisories/GHSA-r5ph-xg7q-xfrp",
"url": "https://github.com/git/git/security/advisories/GHSA-r5ph-xg7q-xfrp"
}
],
"release_date": "2025-01-14T18:39:52.748000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-07-23T14:25:28+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.src",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-all-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-doc-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-email-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-gui-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-instaweb-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-svn-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitk-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitweb-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.7-1.el8_10.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:11534"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.src",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-all-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-doc-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-email-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-gui-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-instaweb-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-svn-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitk-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitweb-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.7-1.el8_10.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "git: Newline confusion in credential helpers can lead to credential exfiltration in git"
},
{
"cve": "CVE-2025-27613",
"cwe": {
"id": "CWE-73",
"name": "External Control of File Name or Path"
},
"discovery_date": "2025-07-09T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2379124"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability has been identified in the gitk application that could lead to unauthorized file modification or data loss.\n\nThis flaw manifests in two primary scenarios:\n- Untrusted Repository Cloning: When a user is tricked into cloning an untrusted Git repository and then uses gitk to visualize it without any additional parameters, any writable file on the user\u0027s system can be arbitrarily created or truncated. Exploitation via this method also requires the Support per-file encoding option to be explicitly enabled in Gitk\u0027s preferences, which is not the default setting.\n- \u0027Show origin of this line\u0027 Command: The vulnerability can also be triggered if a user employs the Show origin of this line command within gitk\u0027s main window while viewing a malicious repository. This method does not depend on the Support per-file encoding option being enabled.\n\nThe primary risk is unauthorized file system modification, which could lead to data integrity issues, data loss, or potentially open avenues for further system compromise.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "gitk: Git file creation flaw",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The Red Hat Product Security team rated this vulnerability as having a Moderate security impact. Exploitation depends on a non-default option being enabled and the user being tricked into cloning the untrusted repository or using the \"Show origin of this line\" command in the main window.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.src",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-all-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-doc-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-email-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-gui-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-instaweb-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-svn-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitk-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitweb-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.7-1.el8_10.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-27613"
},
{
"category": "external",
"summary": "RHBZ#2379124",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2379124"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-27613",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-27613"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-27613",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-27613"
},
{
"category": "external",
"summary": "https://github.com/j6t/gitk/security/advisories/GHSA-f3cw-xrj3-wr2v",
"url": "https://github.com/j6t/gitk/security/advisories/GHSA-f3cw-xrj3-wr2v"
},
{
"category": "external",
"summary": "https://lore.kernel.org/git/xmqq5xg2wrd1.fsf@gitster.g/",
"url": "https://lore.kernel.org/git/xmqq5xg2wrd1.fsf@gitster.g/"
},
{
"category": "external",
"summary": "https://www.openwall.com/lists/oss-security/2025/07/08/4",
"url": "https://www.openwall.com/lists/oss-security/2025/07/08/4"
}
],
"release_date": "2025-07-08T13:01:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-07-23T14:25:28+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.src",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-all-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-doc-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-email-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-gui-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-instaweb-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-svn-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitk-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitweb-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.7-1.el8_10.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:11534"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.src",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-all-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-doc-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-email-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-gui-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-instaweb-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-svn-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitk-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitweb-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.7-1.el8_10.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "gitk: Git file creation flaw"
},
{
"cve": "CVE-2025-27614",
"discovery_date": "2025-07-09T22:54:11.462000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2379125"
}
],
"notes": [
{
"category": "description",
"text": "Gitk is a Tcl/Tk based Git history browser. Starting with 2.41.0, a Git repository can be crafted in such a way that with some social engineering a user who has cloned the repository can be tricked into running any script (e.g., Bourne shell, Perl, Python, ...) supplied by the attacker by invoking gitk filename, where filename has a particular structure. The script is run with the privileges of the user. This vulnerability is fixed in 2.43.7, 2.44.4, 2.45.4, 2.46.4, 2.47.3, 2.48.2, 2.49.1, and 2.50.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "gitk: git script execution flaw",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The Red Hat Product Security team has rated this vulnerability as having a Moderate impact as it depends on the user to be tricked to run the command using the malicious file as parameter.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.src",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-all-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-doc-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-email-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-gui-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-instaweb-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-svn-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitk-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitweb-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.7-1.el8_10.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-27614"
},
{
"category": "external",
"summary": "RHBZ#2379125",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2379125"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-27614",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-27614"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-27614",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-27614"
},
{
"category": "external",
"summary": "https://lore.kernel.org/git/xmqq5xg2wrd1.fsf@gitster.g/",
"url": "https://lore.kernel.org/git/xmqq5xg2wrd1.fsf@gitster.g/"
},
{
"category": "external",
"summary": "https://www.openwall.com/lists/oss-security/2025/07/08/4",
"url": "https://www.openwall.com/lists/oss-security/2025/07/08/4"
}
],
"release_date": "2025-07-08T13:01:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-07-23T14:25:28+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.src",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-all-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-doc-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-email-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-gui-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-instaweb-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-svn-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitk-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitweb-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.7-1.el8_10.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:11534"
},
{
"category": "workaround",
"details": "There\u0027s no known mitigation for this issue besides avoid using gitk with untrusted repositories or unstrusted files.",
"product_ids": [
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.src",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-all-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-doc-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-email-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-gui-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-instaweb-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-svn-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitk-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitweb-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.7-1.el8_10.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.src",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-all-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-doc-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-email-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-gui-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-instaweb-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-svn-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitk-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitweb-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.7-1.el8_10.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "gitk: git script execution flaw"
},
{
"cve": "CVE-2025-46835",
"cwe": {
"id": "CWE-88",
"name": "Improper Neutralization of Argument Delimiters in a Command (\u0027Argument Injection\u0027)"
},
"discovery_date": "2025-07-10T16:00:54.639582+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2379326"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in the git GUI package. When a user clones an untrusted repository and edits a file located in a maliciously named directory, git GUI may end up creating or overwriting arbitrary files for the running user has written permission. This flaw allows an attacker to modify the content of target files without the affected user\u0027s intent, resulting in a data integrity issue.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "git: Git GUI can create and overwrite files for which the user has write permission",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security team has rated this vulnerability as having a Low severity. The is due to the high complexity in exploiting the vulnerability. Additionally, the user needs to be tricked into cloning an untrusted repository and editing a file located in a directory with a maliciously crafted name.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.src",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-all-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-doc-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-email-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-gui-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-instaweb-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-svn-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitk-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitweb-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.7-1.el8_10.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-46835"
},
{
"category": "external",
"summary": "RHBZ#2379326",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2379326"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-46835",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-46835"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-46835",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-46835"
},
{
"category": "external",
"summary": "https://github.com/j6t/git-gui/compare/dcda716dbc9c90bcac4611bd1076747671ee0906..a437f5bc93330a70b42a230e52f3bd036ca1b1da",
"url": "https://github.com/j6t/git-gui/compare/dcda716dbc9c90bcac4611bd1076747671ee0906..a437f5bc93330a70b42a230e52f3bd036ca1b1da"
},
{
"category": "external",
"summary": "https://github.com/j6t/git-gui/security/advisories/GHSA-xfx7-68v4-v8fg",
"url": "https://github.com/j6t/git-gui/security/advisories/GHSA-xfx7-68v4-v8fg"
}
],
"release_date": "2025-07-10T15:09:42.735000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-07-23T14:25:28+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.src",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-all-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-doc-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-email-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-gui-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-instaweb-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-svn-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitk-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitweb-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.7-1.el8_10.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:11534"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 3.1,
"baseSeverity": "LOW",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.src",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-all-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-doc-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-email-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-gui-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-instaweb-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-svn-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitk-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitweb-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.7-1.el8_10.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "git: Git GUI can create and overwrite files for which the user has write permission"
},
{
"cve": "CVE-2025-48384",
"cwe": {
"id": "CWE-59",
"name": "Improper Link Resolution Before File Access (\u0027Link Following\u0027)"
},
"discovery_date": "2025-07-08T19:00:48.297925+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2378806"
}
],
"notes": [
{
"category": "description",
"text": "A line-end handling flaw was found in Git. When writing a config entry, values with a trailing carriage return (CR) are not quoted, resulting in the CR being lost when the config is read later. When initializing a submodule, if the submodule path contains a trailing CR, the altered path is read, resulting in the submodule being checked out to an incorrect location.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "git: Git arbitrary code execution",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability marked as Important and not Moderate flaw because it undermines Git\u2019s path and config integrity by allowing carriage return (\\r) injection to manipulate submodule checkout behavior. Git previously failed to quote config values containing trailing CR, causing the value to be misinterpreted when read back. In the context of submodules, this leads to incorrect path resolution, allowing an attacker to redirect the checkout path via a symlink to a sensitive directory like .git/modules/\u003csubmodule\u003e/hooks. If an executable post-checkout hook exists there, it could be inadvertently executed, resulting in arbitrary code execution during submodule operations. This is particularly dangerous in automated CI/CD pipelines or multi-repo projects where submodules are initialized or updated without manual inspection.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.src",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-all-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-doc-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-email-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-gui-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-instaweb-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-svn-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitk-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitweb-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.7-1.el8_10.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-48384"
},
{
"category": "external",
"summary": "RHBZ#2378806",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2378806"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-48384",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-48384"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-48384",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-48384"
},
{
"category": "external",
"summary": "https://dgl.cx/2025/07/git-clone-submodule-cve-2025-48384",
"url": "https://dgl.cx/2025/07/git-clone-submodule-cve-2025-48384"
},
{
"category": "external",
"summary": "https://github.com/git/git/commit/05e9cd64ee23bbadcea6bcffd6660ed02b8eab89",
"url": "https://github.com/git/git/commit/05e9cd64ee23bbadcea6bcffd6660ed02b8eab89"
},
{
"category": "external",
"summary": "https://github.com/git/git/security/advisories/GHSA-vwqx-4fm8-6qc9",
"url": "https://github.com/git/git/security/advisories/GHSA-vwqx-4fm8-6qc9"
},
{
"category": "external",
"summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog",
"url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
}
],
"release_date": "2025-07-08T18:23:48.710000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-07-23T14:25:28+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.src",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-all-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-doc-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-email-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-gui-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-instaweb-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-svn-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitk-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitweb-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.7-1.el8_10.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:11534"
},
{
"category": "workaround",
"details": "To mitigate this issue, avoid using --recurse-submodules when cloning repositories from untrusted sources; instead, clone normally and only initialize or update submodules manually after reviewing them.",
"product_ids": [
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.src",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-all-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-doc-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-email-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-gui-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-instaweb-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-svn-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitk-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitweb-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.7-1.el8_10.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.0,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.src",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-all-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-doc-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-email-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-gui-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-instaweb-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-svn-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitk-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitweb-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.7-1.el8_10.noarch"
]
}
],
"threats": [
{
"category": "exploit_status",
"date": "2025-08-25T00:00:00+00:00",
"details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
},
{
"category": "impact",
"details": "Important"
}
],
"title": "git: Git arbitrary code execution"
},
{
"cve": "CVE-2025-48385",
"cwe": {
"id": "CWE-88",
"name": "Improper Neutralization of Argument Delimiters in a Command (\u0027Argument Injection\u0027)"
},
"discovery_date": "2025-07-08T19:00:55.106787+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2378808"
}
],
"notes": [
{
"category": "description",
"text": "A bundled uri handling flaw was found in Git. When cloning a repository, Git knows to optionally fetch a bundle advertised by the remote server, which allows the server side to offload parts of the clone to a CDN. The Git client does not perform sufficient validation of the advertised bundles, which allows the remote side to perform protocol injection.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "git: Git arbitrary file writes",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability marked as Important rather than a Moderate flaw because it enables protocol injection at the transport layer of Git\u0027s bundle-uri mechanism, allowing a remote server to manipulate how and where data is written on the client system during a clone operation. The lack of input sanitization on user-controlled values like the URI and target path means that malformed inputs containing spaces or newlines can break protocol framing, leading to arbitrary file writes. In scenarios such as CI pipelines, developer environments, or recursive clones with submodules, an attacker can exploit this to overwrite critical files or inject malicious content, potentially achieving remote code execution (RCE).",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.src",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-all-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-doc-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-email-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-gui-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-instaweb-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-svn-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitk-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitweb-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.7-1.el8_10.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-48385"
},
{
"category": "external",
"summary": "RHBZ#2378808",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2378808"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-48385",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-48385"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-48385",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-48385"
},
{
"category": "external",
"summary": "https://github.com/git/git/security/advisories/GHSA-m98c-vgpc-9655",
"url": "https://github.com/git/git/security/advisories/GHSA-m98c-vgpc-9655"
}
],
"release_date": "2025-07-08T18:23:44.405000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-07-23T14:25:28+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.src",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-all-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-doc-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-email-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-gui-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-instaweb-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-svn-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitk-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitweb-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.7-1.el8_10.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:11534"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.src",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-all-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-doc-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-email-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-gui-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-instaweb-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-svn-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitk-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitweb-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.7-1.el8_10.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 8.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:L",
"version": "3.1"
},
"products": [
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.src",
"AppStream-8.10.0.Z.MAIN.EUS:git-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-all-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-debuginfo-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-core-doc-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-credential-libsecret-debuginfo-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-daemon-debuginfo-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debuginfo-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-debugsource-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-email-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-gui-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-instaweb-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.7-1.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.7-1.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.7-1.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:git-subtree-0:2.43.7-1.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:git-svn-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitk-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:gitweb-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-0:2.43.7-1.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:perl-Git-SVN-0:2.43.7-1.el8_10.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "git: Git arbitrary file writes"
}
]
}
suse-su-2025:03022-1
Vulnerability from csaf_suse
Published
2025-08-29 11:51
Modified
2025-08-29 11:51
Summary
Security update for git
Notes
Title of the patch
Security update for git
Description of the patch
This update for git fixes the following issues:
- CVE-2025-27613: Fixed arbitrary writable file creation and truncation in Gitk (bsc#1245938)
- CVE-2025-46835: Fixed arbitrary writable file creation when cloning untrusted repository
in Git GUI (bsc#1245942)
- CVE-2025-48384: Fixed arbitrary writable file creation when cloning untrusted repositories with
submodules using the --recursive flag (bsc#1245943)
Patchnames
SUSE-2025-3022,SUSE-SLE-SERVER-12-SP5-LTSS-2025-3022,SUSE-SLE-SERVER-12-SP5-LTSS-EXTENDED-SECURITY-2025-3022
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for git",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for git fixes the following issues:\n\n- CVE-2025-27613: Fixed arbitrary writable file creation and truncation in Gitk (bsc#1245938)\n- CVE-2025-46835: Fixed arbitrary writable file creation when cloning untrusted repository\n in Git GUI (bsc#1245942)\n- CVE-2025-48384: Fixed arbitrary writable file creation when cloning untrusted repositories with \n submodules using the --recursive flag (bsc#1245943)\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2025-3022,SUSE-SLE-SERVER-12-SP5-LTSS-2025-3022,SUSE-SLE-SERVER-12-SP5-LTSS-EXTENDED-SECURITY-2025-3022",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2025_03022-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2025:03022-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-202503022-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2025:03022-1",
"url": "https://lists.suse.com/pipermail/sle-updates/2025-August/041417.html"
},
{
"category": "self",
"summary": "SUSE Bug 1245938",
"url": "https://bugzilla.suse.com/1245938"
},
{
"category": "self",
"summary": "SUSE Bug 1245942",
"url": "https://bugzilla.suse.com/1245942"
},
{
"category": "self",
"summary": "SUSE Bug 1245943",
"url": "https://bugzilla.suse.com/1245943"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-27613 page",
"url": "https://www.suse.com/security/cve/CVE-2025-27613/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-46835 page",
"url": "https://www.suse.com/security/cve/CVE-2025-46835/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-48384 page",
"url": "https://www.suse.com/security/cve/CVE-2025-48384/"
}
],
"title": "Security update for git",
"tracking": {
"current_release_date": "2025-08-29T11:51:56Z",
"generator": {
"date": "2025-08-29T11:51:56Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2025:03022-1",
"initial_release_date": "2025-08-29T11:51:56Z",
"revision_history": [
{
"date": "2025-08-29T11:51:56Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "git-2.26.2-27.81.1.aarch64",
"product": {
"name": "git-2.26.2-27.81.1.aarch64",
"product_id": "git-2.26.2-27.81.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-arch-2.26.2-27.81.1.aarch64",
"product": {
"name": "git-arch-2.26.2-27.81.1.aarch64",
"product_id": "git-arch-2.26.2-27.81.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-core-2.26.2-27.81.1.aarch64",
"product": {
"name": "git-core-2.26.2-27.81.1.aarch64",
"product_id": "git-core-2.26.2-27.81.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-credential-gnome-keyring-2.26.2-27.81.1.aarch64",
"product": {
"name": "git-credential-gnome-keyring-2.26.2-27.81.1.aarch64",
"product_id": "git-credential-gnome-keyring-2.26.2-27.81.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-2.26.2-27.81.1.aarch64",
"product": {
"name": "git-credential-libsecret-2.26.2-27.81.1.aarch64",
"product_id": "git-credential-libsecret-2.26.2-27.81.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-cvs-2.26.2-27.81.1.aarch64",
"product": {
"name": "git-cvs-2.26.2-27.81.1.aarch64",
"product_id": "git-cvs-2.26.2-27.81.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-daemon-2.26.2-27.81.1.aarch64",
"product": {
"name": "git-daemon-2.26.2-27.81.1.aarch64",
"product_id": "git-daemon-2.26.2-27.81.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-email-2.26.2-27.81.1.aarch64",
"product": {
"name": "git-email-2.26.2-27.81.1.aarch64",
"product_id": "git-email-2.26.2-27.81.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-gui-2.26.2-27.81.1.aarch64",
"product": {
"name": "git-gui-2.26.2-27.81.1.aarch64",
"product_id": "git-gui-2.26.2-27.81.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-p4-2.26.2-27.81.1.aarch64",
"product": {
"name": "git-p4-2.26.2-27.81.1.aarch64",
"product_id": "git-p4-2.26.2-27.81.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-svn-2.26.2-27.81.1.aarch64",
"product": {
"name": "git-svn-2.26.2-27.81.1.aarch64",
"product_id": "git-svn-2.26.2-27.81.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-web-2.26.2-27.81.1.aarch64",
"product": {
"name": "git-web-2.26.2-27.81.1.aarch64",
"product_id": "git-web-2.26.2-27.81.1.aarch64"
}
},
{
"category": "product_version",
"name": "gitk-2.26.2-27.81.1.aarch64",
"product": {
"name": "gitk-2.26.2-27.81.1.aarch64",
"product_id": "gitk-2.26.2-27.81.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "git-2.26.2-27.81.1.i586",
"product": {
"name": "git-2.26.2-27.81.1.i586",
"product_id": "git-2.26.2-27.81.1.i586"
}
},
{
"category": "product_version",
"name": "git-arch-2.26.2-27.81.1.i586",
"product": {
"name": "git-arch-2.26.2-27.81.1.i586",
"product_id": "git-arch-2.26.2-27.81.1.i586"
}
},
{
"category": "product_version",
"name": "git-core-2.26.2-27.81.1.i586",
"product": {
"name": "git-core-2.26.2-27.81.1.i586",
"product_id": "git-core-2.26.2-27.81.1.i586"
}
},
{
"category": "product_version",
"name": "git-credential-gnome-keyring-2.26.2-27.81.1.i586",
"product": {
"name": "git-credential-gnome-keyring-2.26.2-27.81.1.i586",
"product_id": "git-credential-gnome-keyring-2.26.2-27.81.1.i586"
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-2.26.2-27.81.1.i586",
"product": {
"name": "git-credential-libsecret-2.26.2-27.81.1.i586",
"product_id": "git-credential-libsecret-2.26.2-27.81.1.i586"
}
},
{
"category": "product_version",
"name": "git-cvs-2.26.2-27.81.1.i586",
"product": {
"name": "git-cvs-2.26.2-27.81.1.i586",
"product_id": "git-cvs-2.26.2-27.81.1.i586"
}
},
{
"category": "product_version",
"name": "git-daemon-2.26.2-27.81.1.i586",
"product": {
"name": "git-daemon-2.26.2-27.81.1.i586",
"product_id": "git-daemon-2.26.2-27.81.1.i586"
}
},
{
"category": "product_version",
"name": "git-email-2.26.2-27.81.1.i586",
"product": {
"name": "git-email-2.26.2-27.81.1.i586",
"product_id": "git-email-2.26.2-27.81.1.i586"
}
},
{
"category": "product_version",
"name": "git-gui-2.26.2-27.81.1.i586",
"product": {
"name": "git-gui-2.26.2-27.81.1.i586",
"product_id": "git-gui-2.26.2-27.81.1.i586"
}
},
{
"category": "product_version",
"name": "git-p4-2.26.2-27.81.1.i586",
"product": {
"name": "git-p4-2.26.2-27.81.1.i586",
"product_id": "git-p4-2.26.2-27.81.1.i586"
}
},
{
"category": "product_version",
"name": "git-svn-2.26.2-27.81.1.i586",
"product": {
"name": "git-svn-2.26.2-27.81.1.i586",
"product_id": "git-svn-2.26.2-27.81.1.i586"
}
},
{
"category": "product_version",
"name": "git-web-2.26.2-27.81.1.i586",
"product": {
"name": "git-web-2.26.2-27.81.1.i586",
"product_id": "git-web-2.26.2-27.81.1.i586"
}
},
{
"category": "product_version",
"name": "gitk-2.26.2-27.81.1.i586",
"product": {
"name": "gitk-2.26.2-27.81.1.i586",
"product_id": "gitk-2.26.2-27.81.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "git-doc-2.26.2-27.81.1.noarch",
"product": {
"name": "git-doc-2.26.2-27.81.1.noarch",
"product_id": "git-doc-2.26.2-27.81.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "git-2.26.2-27.81.1.ppc64le",
"product": {
"name": "git-2.26.2-27.81.1.ppc64le",
"product_id": "git-2.26.2-27.81.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-arch-2.26.2-27.81.1.ppc64le",
"product": {
"name": "git-arch-2.26.2-27.81.1.ppc64le",
"product_id": "git-arch-2.26.2-27.81.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-core-2.26.2-27.81.1.ppc64le",
"product": {
"name": "git-core-2.26.2-27.81.1.ppc64le",
"product_id": "git-core-2.26.2-27.81.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-credential-gnome-keyring-2.26.2-27.81.1.ppc64le",
"product": {
"name": "git-credential-gnome-keyring-2.26.2-27.81.1.ppc64le",
"product_id": "git-credential-gnome-keyring-2.26.2-27.81.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-2.26.2-27.81.1.ppc64le",
"product": {
"name": "git-credential-libsecret-2.26.2-27.81.1.ppc64le",
"product_id": "git-credential-libsecret-2.26.2-27.81.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-cvs-2.26.2-27.81.1.ppc64le",
"product": {
"name": "git-cvs-2.26.2-27.81.1.ppc64le",
"product_id": "git-cvs-2.26.2-27.81.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-daemon-2.26.2-27.81.1.ppc64le",
"product": {
"name": "git-daemon-2.26.2-27.81.1.ppc64le",
"product_id": "git-daemon-2.26.2-27.81.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-email-2.26.2-27.81.1.ppc64le",
"product": {
"name": "git-email-2.26.2-27.81.1.ppc64le",
"product_id": "git-email-2.26.2-27.81.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-gui-2.26.2-27.81.1.ppc64le",
"product": {
"name": "git-gui-2.26.2-27.81.1.ppc64le",
"product_id": "git-gui-2.26.2-27.81.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-p4-2.26.2-27.81.1.ppc64le",
"product": {
"name": "git-p4-2.26.2-27.81.1.ppc64le",
"product_id": "git-p4-2.26.2-27.81.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-svn-2.26.2-27.81.1.ppc64le",
"product": {
"name": "git-svn-2.26.2-27.81.1.ppc64le",
"product_id": "git-svn-2.26.2-27.81.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-web-2.26.2-27.81.1.ppc64le",
"product": {
"name": "git-web-2.26.2-27.81.1.ppc64le",
"product_id": "git-web-2.26.2-27.81.1.ppc64le"
}
},
{
"category": "product_version",
"name": "gitk-2.26.2-27.81.1.ppc64le",
"product": {
"name": "gitk-2.26.2-27.81.1.ppc64le",
"product_id": "gitk-2.26.2-27.81.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "git-2.26.2-27.81.1.s390",
"product": {
"name": "git-2.26.2-27.81.1.s390",
"product_id": "git-2.26.2-27.81.1.s390"
}
},
{
"category": "product_version",
"name": "git-arch-2.26.2-27.81.1.s390",
"product": {
"name": "git-arch-2.26.2-27.81.1.s390",
"product_id": "git-arch-2.26.2-27.81.1.s390"
}
},
{
"category": "product_version",
"name": "git-core-2.26.2-27.81.1.s390",
"product": {
"name": "git-core-2.26.2-27.81.1.s390",
"product_id": "git-core-2.26.2-27.81.1.s390"
}
},
{
"category": "product_version",
"name": "git-credential-gnome-keyring-2.26.2-27.81.1.s390",
"product": {
"name": "git-credential-gnome-keyring-2.26.2-27.81.1.s390",
"product_id": "git-credential-gnome-keyring-2.26.2-27.81.1.s390"
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-2.26.2-27.81.1.s390",
"product": {
"name": "git-credential-libsecret-2.26.2-27.81.1.s390",
"product_id": "git-credential-libsecret-2.26.2-27.81.1.s390"
}
},
{
"category": "product_version",
"name": "git-cvs-2.26.2-27.81.1.s390",
"product": {
"name": "git-cvs-2.26.2-27.81.1.s390",
"product_id": "git-cvs-2.26.2-27.81.1.s390"
}
},
{
"category": "product_version",
"name": "git-daemon-2.26.2-27.81.1.s390",
"product": {
"name": "git-daemon-2.26.2-27.81.1.s390",
"product_id": "git-daemon-2.26.2-27.81.1.s390"
}
},
{
"category": "product_version",
"name": "git-email-2.26.2-27.81.1.s390",
"product": {
"name": "git-email-2.26.2-27.81.1.s390",
"product_id": "git-email-2.26.2-27.81.1.s390"
}
},
{
"category": "product_version",
"name": "git-gui-2.26.2-27.81.1.s390",
"product": {
"name": "git-gui-2.26.2-27.81.1.s390",
"product_id": "git-gui-2.26.2-27.81.1.s390"
}
},
{
"category": "product_version",
"name": "git-p4-2.26.2-27.81.1.s390",
"product": {
"name": "git-p4-2.26.2-27.81.1.s390",
"product_id": "git-p4-2.26.2-27.81.1.s390"
}
},
{
"category": "product_version",
"name": "git-svn-2.26.2-27.81.1.s390",
"product": {
"name": "git-svn-2.26.2-27.81.1.s390",
"product_id": "git-svn-2.26.2-27.81.1.s390"
}
},
{
"category": "product_version",
"name": "git-web-2.26.2-27.81.1.s390",
"product": {
"name": "git-web-2.26.2-27.81.1.s390",
"product_id": "git-web-2.26.2-27.81.1.s390"
}
},
{
"category": "product_version",
"name": "gitk-2.26.2-27.81.1.s390",
"product": {
"name": "gitk-2.26.2-27.81.1.s390",
"product_id": "gitk-2.26.2-27.81.1.s390"
}
}
],
"category": "architecture",
"name": "s390"
},
{
"branches": [
{
"category": "product_version",
"name": "git-2.26.2-27.81.1.s390x",
"product": {
"name": "git-2.26.2-27.81.1.s390x",
"product_id": "git-2.26.2-27.81.1.s390x"
}
},
{
"category": "product_version",
"name": "git-arch-2.26.2-27.81.1.s390x",
"product": {
"name": "git-arch-2.26.2-27.81.1.s390x",
"product_id": "git-arch-2.26.2-27.81.1.s390x"
}
},
{
"category": "product_version",
"name": "git-core-2.26.2-27.81.1.s390x",
"product": {
"name": "git-core-2.26.2-27.81.1.s390x",
"product_id": "git-core-2.26.2-27.81.1.s390x"
}
},
{
"category": "product_version",
"name": "git-credential-gnome-keyring-2.26.2-27.81.1.s390x",
"product": {
"name": "git-credential-gnome-keyring-2.26.2-27.81.1.s390x",
"product_id": "git-credential-gnome-keyring-2.26.2-27.81.1.s390x"
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-2.26.2-27.81.1.s390x",
"product": {
"name": "git-credential-libsecret-2.26.2-27.81.1.s390x",
"product_id": "git-credential-libsecret-2.26.2-27.81.1.s390x"
}
},
{
"category": "product_version",
"name": "git-cvs-2.26.2-27.81.1.s390x",
"product": {
"name": "git-cvs-2.26.2-27.81.1.s390x",
"product_id": "git-cvs-2.26.2-27.81.1.s390x"
}
},
{
"category": "product_version",
"name": "git-daemon-2.26.2-27.81.1.s390x",
"product": {
"name": "git-daemon-2.26.2-27.81.1.s390x",
"product_id": "git-daemon-2.26.2-27.81.1.s390x"
}
},
{
"category": "product_version",
"name": "git-email-2.26.2-27.81.1.s390x",
"product": {
"name": "git-email-2.26.2-27.81.1.s390x",
"product_id": "git-email-2.26.2-27.81.1.s390x"
}
},
{
"category": "product_version",
"name": "git-gui-2.26.2-27.81.1.s390x",
"product": {
"name": "git-gui-2.26.2-27.81.1.s390x",
"product_id": "git-gui-2.26.2-27.81.1.s390x"
}
},
{
"category": "product_version",
"name": "git-p4-2.26.2-27.81.1.s390x",
"product": {
"name": "git-p4-2.26.2-27.81.1.s390x",
"product_id": "git-p4-2.26.2-27.81.1.s390x"
}
},
{
"category": "product_version",
"name": "git-svn-2.26.2-27.81.1.s390x",
"product": {
"name": "git-svn-2.26.2-27.81.1.s390x",
"product_id": "git-svn-2.26.2-27.81.1.s390x"
}
},
{
"category": "product_version",
"name": "git-web-2.26.2-27.81.1.s390x",
"product": {
"name": "git-web-2.26.2-27.81.1.s390x",
"product_id": "git-web-2.26.2-27.81.1.s390x"
}
},
{
"category": "product_version",
"name": "gitk-2.26.2-27.81.1.s390x",
"product": {
"name": "gitk-2.26.2-27.81.1.s390x",
"product_id": "gitk-2.26.2-27.81.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "git-2.26.2-27.81.1.x86_64",
"product": {
"name": "git-2.26.2-27.81.1.x86_64",
"product_id": "git-2.26.2-27.81.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-arch-2.26.2-27.81.1.x86_64",
"product": {
"name": "git-arch-2.26.2-27.81.1.x86_64",
"product_id": "git-arch-2.26.2-27.81.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-core-2.26.2-27.81.1.x86_64",
"product": {
"name": "git-core-2.26.2-27.81.1.x86_64",
"product_id": "git-core-2.26.2-27.81.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-credential-gnome-keyring-2.26.2-27.81.1.x86_64",
"product": {
"name": "git-credential-gnome-keyring-2.26.2-27.81.1.x86_64",
"product_id": "git-credential-gnome-keyring-2.26.2-27.81.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-2.26.2-27.81.1.x86_64",
"product": {
"name": "git-credential-libsecret-2.26.2-27.81.1.x86_64",
"product_id": "git-credential-libsecret-2.26.2-27.81.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-cvs-2.26.2-27.81.1.x86_64",
"product": {
"name": "git-cvs-2.26.2-27.81.1.x86_64",
"product_id": "git-cvs-2.26.2-27.81.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-daemon-2.26.2-27.81.1.x86_64",
"product": {
"name": "git-daemon-2.26.2-27.81.1.x86_64",
"product_id": "git-daemon-2.26.2-27.81.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-email-2.26.2-27.81.1.x86_64",
"product": {
"name": "git-email-2.26.2-27.81.1.x86_64",
"product_id": "git-email-2.26.2-27.81.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-gui-2.26.2-27.81.1.x86_64",
"product": {
"name": "git-gui-2.26.2-27.81.1.x86_64",
"product_id": "git-gui-2.26.2-27.81.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-p4-2.26.2-27.81.1.x86_64",
"product": {
"name": "git-p4-2.26.2-27.81.1.x86_64",
"product_id": "git-p4-2.26.2-27.81.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-svn-2.26.2-27.81.1.x86_64",
"product": {
"name": "git-svn-2.26.2-27.81.1.x86_64",
"product_id": "git-svn-2.26.2-27.81.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-web-2.26.2-27.81.1.x86_64",
"product": {
"name": "git-web-2.26.2-27.81.1.x86_64",
"product_id": "git-web-2.26.2-27.81.1.x86_64"
}
},
{
"category": "product_version",
"name": "gitk-2.26.2-27.81.1.x86_64",
"product": {
"name": "gitk-2.26.2-27.81.1.x86_64",
"product_id": "gitk-2.26.2-27.81.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12 SP5-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:12:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5",
"product": {
"name": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5",
"product_id": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss-extended-security:12:sp5"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.26.2-27.81.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.81.1.aarch64"
},
"product_reference": "git-2.26.2-27.81.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.26.2-27.81.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.81.1.ppc64le"
},
"product_reference": "git-2.26.2-27.81.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.26.2-27.81.1.s390x as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.81.1.s390x"
},
"product_reference": "git-2.26.2-27.81.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.26.2-27.81.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.81.1.x86_64"
},
"product_reference": "git-2.26.2-27.81.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.26.2-27.81.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.81.1.aarch64"
},
"product_reference": "git-core-2.26.2-27.81.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.26.2-27.81.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.81.1.ppc64le"
},
"product_reference": "git-core-2.26.2-27.81.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.26.2-27.81.1.s390x as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.81.1.s390x"
},
"product_reference": "git-core-2.26.2-27.81.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.26.2-27.81.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.81.1.x86_64"
},
"product_reference": "git-core-2.26.2-27.81.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.26.2-27.81.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.81.1.aarch64"
},
"product_reference": "git-cvs-2.26.2-27.81.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.26.2-27.81.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.81.1.ppc64le"
},
"product_reference": "git-cvs-2.26.2-27.81.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.26.2-27.81.1.s390x as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.81.1.s390x"
},
"product_reference": "git-cvs-2.26.2-27.81.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.26.2-27.81.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.81.1.x86_64"
},
"product_reference": "git-cvs-2.26.2-27.81.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.26.2-27.81.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.81.1.aarch64"
},
"product_reference": "git-daemon-2.26.2-27.81.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.26.2-27.81.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.81.1.ppc64le"
},
"product_reference": "git-daemon-2.26.2-27.81.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.26.2-27.81.1.s390x as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.81.1.s390x"
},
"product_reference": "git-daemon-2.26.2-27.81.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.26.2-27.81.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.81.1.x86_64"
},
"product_reference": "git-daemon-2.26.2-27.81.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.26.2-27.81.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.81.1.aarch64"
},
"product_reference": "git-email-2.26.2-27.81.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.26.2-27.81.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.81.1.ppc64le"
},
"product_reference": "git-email-2.26.2-27.81.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.26.2-27.81.1.s390x as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.81.1.s390x"
},
"product_reference": "git-email-2.26.2-27.81.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.26.2-27.81.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.81.1.x86_64"
},
"product_reference": "git-email-2.26.2-27.81.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.26.2-27.81.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.81.1.aarch64"
},
"product_reference": "git-gui-2.26.2-27.81.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.26.2-27.81.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.81.1.ppc64le"
},
"product_reference": "git-gui-2.26.2-27.81.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.26.2-27.81.1.s390x as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.81.1.s390x"
},
"product_reference": "git-gui-2.26.2-27.81.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.26.2-27.81.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.81.1.x86_64"
},
"product_reference": "git-gui-2.26.2-27.81.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.26.2-27.81.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.81.1.aarch64"
},
"product_reference": "git-svn-2.26.2-27.81.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.26.2-27.81.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.81.1.ppc64le"
},
"product_reference": "git-svn-2.26.2-27.81.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.26.2-27.81.1.s390x as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.81.1.s390x"
},
"product_reference": "git-svn-2.26.2-27.81.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.26.2-27.81.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.81.1.x86_64"
},
"product_reference": "git-svn-2.26.2-27.81.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.26.2-27.81.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.81.1.aarch64"
},
"product_reference": "git-web-2.26.2-27.81.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.26.2-27.81.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.81.1.ppc64le"
},
"product_reference": "git-web-2.26.2-27.81.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.26.2-27.81.1.s390x as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.81.1.s390x"
},
"product_reference": "git-web-2.26.2-27.81.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.26.2-27.81.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.81.1.x86_64"
},
"product_reference": "git-web-2.26.2-27.81.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.26.2-27.81.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.81.1.aarch64"
},
"product_reference": "gitk-2.26.2-27.81.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.26.2-27.81.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.81.1.ppc64le"
},
"product_reference": "gitk-2.26.2-27.81.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.26.2-27.81.1.s390x as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.81.1.s390x"
},
"product_reference": "gitk-2.26.2-27.81.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.26.2-27.81.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.81.1.x86_64"
},
"product_reference": "gitk-2.26.2-27.81.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.26.2-27.81.1.x86_64 as component of SUSE Linux Enterprise Server LTSS Extended Security 12 SP5",
"product_id": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-2.26.2-27.81.1.x86_64"
},
"product_reference": "git-2.26.2-27.81.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.26.2-27.81.1.x86_64 as component of SUSE Linux Enterprise Server LTSS Extended Security 12 SP5",
"product_id": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-core-2.26.2-27.81.1.x86_64"
},
"product_reference": "git-core-2.26.2-27.81.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.26.2-27.81.1.x86_64 as component of SUSE Linux Enterprise Server LTSS Extended Security 12 SP5",
"product_id": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-cvs-2.26.2-27.81.1.x86_64"
},
"product_reference": "git-cvs-2.26.2-27.81.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.26.2-27.81.1.x86_64 as component of SUSE Linux Enterprise Server LTSS Extended Security 12 SP5",
"product_id": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-daemon-2.26.2-27.81.1.x86_64"
},
"product_reference": "git-daemon-2.26.2-27.81.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.26.2-27.81.1.x86_64 as component of SUSE Linux Enterprise Server LTSS Extended Security 12 SP5",
"product_id": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-email-2.26.2-27.81.1.x86_64"
},
"product_reference": "git-email-2.26.2-27.81.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.26.2-27.81.1.x86_64 as component of SUSE Linux Enterprise Server LTSS Extended Security 12 SP5",
"product_id": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-gui-2.26.2-27.81.1.x86_64"
},
"product_reference": "git-gui-2.26.2-27.81.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.26.2-27.81.1.x86_64 as component of SUSE Linux Enterprise Server LTSS Extended Security 12 SP5",
"product_id": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-svn-2.26.2-27.81.1.x86_64"
},
"product_reference": "git-svn-2.26.2-27.81.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.26.2-27.81.1.x86_64 as component of SUSE Linux Enterprise Server LTSS Extended Security 12 SP5",
"product_id": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-web-2.26.2-27.81.1.x86_64"
},
"product_reference": "git-web-2.26.2-27.81.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.26.2-27.81.1.x86_64 as component of SUSE Linux Enterprise Server LTSS Extended Security 12 SP5",
"product_id": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gitk-2.26.2-27.81.1.x86_64"
},
"product_reference": "gitk-2.26.2-27.81.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-27613",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-27613"
}
],
"notes": [
{
"category": "general",
"text": "Gitk is a Tcl/Tk based Git history browser. Starting with 1.7.0, when a user clones an untrusted repository and runs gitk without additional command arguments, files for which the user has write permission can be created and truncated. The option Support per-file encoding must have been enabled before in Gitk\u0027s Preferences. This option is disabled by default. The same happens when Show origin of this line is used in the main window (regardless of whether Support per-file encoding is enabled or not). This vulnerability is fixed in 2.43.7, 2.44.4, 2.45.4, 2.46.4, 2.47.3, 2.48.2, 2.49.1, and 2.50.1.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.81.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.81.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.81.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.81.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.81.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.81.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.81.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.81.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.81.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.81.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.81.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.81.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.81.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.81.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.81.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.81.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.81.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.81.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.81.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.81.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.81.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.81.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.81.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.81.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.81.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.81.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.81.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-core-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-cvs-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-daemon-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-email-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-gui-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-svn-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-web-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gitk-2.26.2-27.81.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-27613",
"url": "https://www.suse.com/security/cve/CVE-2025-27613"
},
{
"category": "external",
"summary": "SUSE Bug 1245938 for CVE-2025-27613",
"url": "https://bugzilla.suse.com/1245938"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.81.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.81.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.81.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.81.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.81.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.81.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.81.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.81.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.81.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.81.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.81.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.81.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.81.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.81.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.81.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.81.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.81.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.81.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.81.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.81.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.81.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.81.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.81.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.81.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.81.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.81.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.81.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-core-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-cvs-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-daemon-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-email-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-gui-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-svn-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-web-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gitk-2.26.2-27.81.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.81.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.81.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.81.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.81.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.81.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.81.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.81.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.81.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.81.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.81.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.81.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.81.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.81.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.81.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.81.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.81.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.81.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.81.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.81.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.81.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.81.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.81.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.81.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.81.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.81.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.81.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.81.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-core-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-cvs-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-daemon-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-email-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-gui-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-svn-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-web-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gitk-2.26.2-27.81.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-08-29T11:51:56Z",
"details": "moderate"
}
],
"title": "CVE-2025-27613"
},
{
"cve": "CVE-2025-46835",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-46835"
}
],
"notes": [
{
"category": "general",
"text": "Git GUI allows you to use the Git source control management tools via a GUI. When a user clones an untrusted repository and is tricked into editing a file located in a maliciously named directory in the repository, then Git GUI can create and overwrite files for which the user has write permission. This vulnerability is fixed in 2.43.7, 2.44.4, 2.45.4, 2.46.4, 2.47.3, 2.48.2, 2.49.1, and 2.50.1.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.81.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.81.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.81.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.81.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.81.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.81.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.81.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.81.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.81.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.81.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.81.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.81.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.81.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.81.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.81.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.81.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.81.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.81.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.81.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.81.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.81.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.81.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.81.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.81.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.81.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.81.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.81.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-core-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-cvs-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-daemon-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-email-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-gui-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-svn-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-web-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gitk-2.26.2-27.81.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-46835",
"url": "https://www.suse.com/security/cve/CVE-2025-46835"
},
{
"category": "external",
"summary": "SUSE Bug 1245942 for CVE-2025-46835",
"url": "https://bugzilla.suse.com/1245942"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.81.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.81.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.81.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.81.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.81.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.81.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.81.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.81.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.81.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.81.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.81.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.81.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.81.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.81.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.81.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.81.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.81.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.81.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.81.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.81.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.81.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.81.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.81.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.81.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.81.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.81.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.81.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-core-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-cvs-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-daemon-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-email-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-gui-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-svn-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-web-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gitk-2.26.2-27.81.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.81.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.81.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.81.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.81.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.81.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.81.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.81.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.81.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.81.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.81.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.81.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.81.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.81.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.81.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.81.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.81.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.81.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.81.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.81.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.81.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.81.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.81.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.81.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.81.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.81.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.81.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.81.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-core-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-cvs-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-daemon-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-email-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-gui-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-svn-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-web-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gitk-2.26.2-27.81.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-08-29T11:51:56Z",
"details": "moderate"
}
],
"title": "CVE-2025-46835"
},
{
"cve": "CVE-2025-48384",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-48384"
}
],
"notes": [
{
"category": "general",
"text": "Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full access to internals. When reading a config value, Git strips any trailing carriage return and line feed (CRLF). When writing a config entry, values with a trailing CR are not quoted, causing the CR to be lost when the config is later read. When initializing a submodule, if the submodule path contains a trailing CR, the altered path is read resulting in the submodule being checked out to an incorrect location. If a symlink exists that points the altered path to the submodule hooks directory, and the submodule contains an executable post-checkout hook, the script may be unintentionally executed after checkout. This vulnerability is fixed in v2.43.7, v2.44.4, v2.45.4, v2.46.4, v2.47.3, v2.48.2, v2.49.1, and v2.50.1.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.81.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.81.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.81.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.81.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.81.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.81.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.81.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.81.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.81.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.81.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.81.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.81.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.81.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.81.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.81.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.81.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.81.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.81.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.81.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.81.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.81.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.81.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.81.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.81.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.81.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.81.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.81.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-core-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-cvs-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-daemon-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-email-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-gui-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-svn-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-web-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gitk-2.26.2-27.81.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-48384",
"url": "https://www.suse.com/security/cve/CVE-2025-48384"
},
{
"category": "external",
"summary": "SUSE Bug 1245943 for CVE-2025-48384",
"url": "https://bugzilla.suse.com/1245943"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.81.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.81.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.81.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.81.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.81.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.81.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.81.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.81.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.81.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.81.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.81.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.81.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.81.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.81.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.81.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.81.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.81.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.81.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.81.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.81.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.81.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.81.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.81.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.81.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.81.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.81.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.81.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-core-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-cvs-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-daemon-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-email-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-gui-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-svn-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-web-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gitk-2.26.2-27.81.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.81.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.81.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.81.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.81.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.81.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.81.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-core-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.81.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.81.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.81.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-cvs-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.81.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.81.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.81.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-daemon-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.81.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.81.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.81.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-email-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.81.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.81.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.81.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-gui-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.81.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.81.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.81.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-svn-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.81.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.81.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.81.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:git-web-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.81.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.81.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.81.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:gitk-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-core-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-cvs-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-daemon-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-email-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-gui-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-svn-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:git-web-2.26.2-27.81.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:gitk-2.26.2-27.81.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-08-29T11:51:56Z",
"details": "important"
}
],
"title": "CVE-2025-48384"
}
]
}
suse-su-2025:20855-1
Vulnerability from csaf_suse
Published
2025-10-09 14:25
Modified
2025-10-09 14:25
Summary
Security update for git
Notes
Title of the patch
Security update for git
Description of the patch
This update for git fixes the following issues:
Update to 2.51.0:
- CVE-2025-27613: arbitrary writable file creation and truncation in Gitk (bsc#1245938)
- CVE-2025-27614: arbitrary script execution via repo clonation in gitk (bsc#1245939)
- CVE-2025-46835: untrusted repository cloning can lead to arbitrary writable file creation in Git GUI (bsc#1245942)
- CVE-2025-48384: script may be unintentionally executed after checkout due to CRLF transforming (bsc#1245943)
- CVE-2025-48385: arbitrary code execution due to protocol injection via fetching advertised bundle (bsc#1245946)
- CVE-2025-48386: buffer overflow in static buffer 'target' in wincred credential helper (bsc#1245947)
Patchnames
SUSE-SLE-Micro-6.1-298
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "critical"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for git",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for git fixes the following issues:\n\nUpdate to 2.51.0:\n\n- CVE-2025-27613: arbitrary writable file creation and truncation in Gitk (bsc#1245938)\n- CVE-2025-27614: arbitrary script execution via repo clonation in gitk (bsc#1245939)\n- CVE-2025-46835: untrusted repository cloning can lead to arbitrary writable file creation in Git GUI (bsc#1245942)\n- CVE-2025-48384: script may be unintentionally executed after checkout due to CRLF transforming (bsc#1245943)\n- CVE-2025-48385: arbitrary code execution due to protocol injection via fetching advertised bundle (bsc#1245946)\n- CVE-2025-48386: buffer overflow in static buffer \u0027target\u0027 in wincred credential helper (bsc#1245947)\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-SLE-Micro-6.1-298",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2025_20855-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2025:20855-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-202520855-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2025:20855-1",
"url": "https://lists.suse.com/pipermail/sle-updates/2025-October/042323.html"
},
{
"category": "self",
"summary": "SUSE Bug 1245938",
"url": "https://bugzilla.suse.com/1245938"
},
{
"category": "self",
"summary": "SUSE Bug 1245939",
"url": "https://bugzilla.suse.com/1245939"
},
{
"category": "self",
"summary": "SUSE Bug 1245942",
"url": "https://bugzilla.suse.com/1245942"
},
{
"category": "self",
"summary": "SUSE Bug 1245943",
"url": "https://bugzilla.suse.com/1245943"
},
{
"category": "self",
"summary": "SUSE Bug 1245946",
"url": "https://bugzilla.suse.com/1245946"
},
{
"category": "self",
"summary": "SUSE Bug 1245947",
"url": "https://bugzilla.suse.com/1245947"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-27613 page",
"url": "https://www.suse.com/security/cve/CVE-2025-27613/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-27614 page",
"url": "https://www.suse.com/security/cve/CVE-2025-27614/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-46835 page",
"url": "https://www.suse.com/security/cve/CVE-2025-46835/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-48384 page",
"url": "https://www.suse.com/security/cve/CVE-2025-48384/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-48385 page",
"url": "https://www.suse.com/security/cve/CVE-2025-48385/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-48386 page",
"url": "https://www.suse.com/security/cve/CVE-2025-48386/"
}
],
"title": "Security update for git",
"tracking": {
"current_release_date": "2025-10-09T14:25:15Z",
"generator": {
"date": "2025-10-09T14:25:15Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2025:20855-1",
"initial_release_date": "2025-10-09T14:25:15Z",
"revision_history": [
{
"date": "2025-10-09T14:25:15Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "git-2.51.0-slfo.1.1_1.1.aarch64",
"product": {
"name": "git-2.51.0-slfo.1.1_1.1.aarch64",
"product_id": "git-2.51.0-slfo.1.1_1.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-core-2.51.0-slfo.1.1_1.1.aarch64",
"product": {
"name": "git-core-2.51.0-slfo.1.1_1.1.aarch64",
"product_id": "git-core-2.51.0-slfo.1.1_1.1.aarch64"
}
},
{
"category": "product_version",
"name": "perl-Git-2.51.0-slfo.1.1_1.1.aarch64",
"product": {
"name": "perl-Git-2.51.0-slfo.1.1_1.1.aarch64",
"product_id": "perl-Git-2.51.0-slfo.1.1_1.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "git-2.51.0-slfo.1.1_1.1.ppc64le",
"product": {
"name": "git-2.51.0-slfo.1.1_1.1.ppc64le",
"product_id": "git-2.51.0-slfo.1.1_1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-core-2.51.0-slfo.1.1_1.1.ppc64le",
"product": {
"name": "git-core-2.51.0-slfo.1.1_1.1.ppc64le",
"product_id": "git-core-2.51.0-slfo.1.1_1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "perl-Git-2.51.0-slfo.1.1_1.1.ppc64le",
"product": {
"name": "perl-Git-2.51.0-slfo.1.1_1.1.ppc64le",
"product_id": "perl-Git-2.51.0-slfo.1.1_1.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "git-2.51.0-slfo.1.1_1.1.s390x",
"product": {
"name": "git-2.51.0-slfo.1.1_1.1.s390x",
"product_id": "git-2.51.0-slfo.1.1_1.1.s390x"
}
},
{
"category": "product_version",
"name": "git-core-2.51.0-slfo.1.1_1.1.s390x",
"product": {
"name": "git-core-2.51.0-slfo.1.1_1.1.s390x",
"product_id": "git-core-2.51.0-slfo.1.1_1.1.s390x"
}
},
{
"category": "product_version",
"name": "perl-Git-2.51.0-slfo.1.1_1.1.s390x",
"product": {
"name": "perl-Git-2.51.0-slfo.1.1_1.1.s390x",
"product_id": "perl-Git-2.51.0-slfo.1.1_1.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "git-2.51.0-slfo.1.1_1.1.x86_64",
"product": {
"name": "git-2.51.0-slfo.1.1_1.1.x86_64",
"product_id": "git-2.51.0-slfo.1.1_1.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-core-2.51.0-slfo.1.1_1.1.x86_64",
"product": {
"name": "git-core-2.51.0-slfo.1.1_1.1.x86_64",
"product_id": "git-core-2.51.0-slfo.1.1_1.1.x86_64"
}
},
{
"category": "product_version",
"name": "perl-Git-2.51.0-slfo.1.1_1.1.x86_64",
"product": {
"name": "perl-Git-2.51.0-slfo.1.1_1.1.x86_64",
"product_id": "perl-Git-2.51.0-slfo.1.1_1.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Micro 6.1",
"product": {
"name": "SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sl-micro:6.1"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.51.0-slfo.1.1_1.1.aarch64 as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:git-2.51.0-slfo.1.1_1.1.aarch64"
},
"product_reference": "git-2.51.0-slfo.1.1_1.1.aarch64",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.51.0-slfo.1.1_1.1.ppc64le as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:git-2.51.0-slfo.1.1_1.1.ppc64le"
},
"product_reference": "git-2.51.0-slfo.1.1_1.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.51.0-slfo.1.1_1.1.s390x as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:git-2.51.0-slfo.1.1_1.1.s390x"
},
"product_reference": "git-2.51.0-slfo.1.1_1.1.s390x",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.51.0-slfo.1.1_1.1.x86_64 as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:git-2.51.0-slfo.1.1_1.1.x86_64"
},
"product_reference": "git-2.51.0-slfo.1.1_1.1.x86_64",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.51.0-slfo.1.1_1.1.aarch64 as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:git-core-2.51.0-slfo.1.1_1.1.aarch64"
},
"product_reference": "git-core-2.51.0-slfo.1.1_1.1.aarch64",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.51.0-slfo.1.1_1.1.ppc64le as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:git-core-2.51.0-slfo.1.1_1.1.ppc64le"
},
"product_reference": "git-core-2.51.0-slfo.1.1_1.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.51.0-slfo.1.1_1.1.s390x as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:git-core-2.51.0-slfo.1.1_1.1.s390x"
},
"product_reference": "git-core-2.51.0-slfo.1.1_1.1.s390x",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.51.0-slfo.1.1_1.1.x86_64 as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:git-core-2.51.0-slfo.1.1_1.1.x86_64"
},
"product_reference": "git-core-2.51.0-slfo.1.1_1.1.x86_64",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.51.0-slfo.1.1_1.1.aarch64 as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:perl-Git-2.51.0-slfo.1.1_1.1.aarch64"
},
"product_reference": "perl-Git-2.51.0-slfo.1.1_1.1.aarch64",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.51.0-slfo.1.1_1.1.ppc64le as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:perl-Git-2.51.0-slfo.1.1_1.1.ppc64le"
},
"product_reference": "perl-Git-2.51.0-slfo.1.1_1.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.51.0-slfo.1.1_1.1.s390x as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:perl-Git-2.51.0-slfo.1.1_1.1.s390x"
},
"product_reference": "perl-Git-2.51.0-slfo.1.1_1.1.s390x",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.51.0-slfo.1.1_1.1.x86_64 as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:perl-Git-2.51.0-slfo.1.1_1.1.x86_64"
},
"product_reference": "perl-Git-2.51.0-slfo.1.1_1.1.x86_64",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-27613",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-27613"
}
],
"notes": [
{
"category": "general",
"text": "Gitk is a Tcl/Tk based Git history browser. Starting with 1.7.0, when a user clones an untrusted repository and runs gitk without additional command arguments, files for which the user has write permission can be created and truncated. The option Support per-file encoding must have been enabled before in Gitk\u0027s Preferences. This option is disabled by default. The same happens when Show origin of this line is used in the main window (regardless of whether Support per-file encoding is enabled or not). This vulnerability is fixed in 2.43.7, 2.44.4, 2.45.4, 2.46.4, 2.47.3, 2.48.2, 2.49.1, and 2.50.1.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:git-2.51.0-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:git-2.51.0-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:git-2.51.0-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:git-2.51.0-slfo.1.1_1.1.x86_64",
"SUSE Linux Micro 6.1:git-core-2.51.0-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:git-core-2.51.0-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:git-core-2.51.0-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:git-core-2.51.0-slfo.1.1_1.1.x86_64",
"SUSE Linux Micro 6.1:perl-Git-2.51.0-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:perl-Git-2.51.0-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:perl-Git-2.51.0-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:perl-Git-2.51.0-slfo.1.1_1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-27613",
"url": "https://www.suse.com/security/cve/CVE-2025-27613"
},
{
"category": "external",
"summary": "SUSE Bug 1245938 for CVE-2025-27613",
"url": "https://bugzilla.suse.com/1245938"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:git-2.51.0-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:git-2.51.0-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:git-2.51.0-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:git-2.51.0-slfo.1.1_1.1.x86_64",
"SUSE Linux Micro 6.1:git-core-2.51.0-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:git-core-2.51.0-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:git-core-2.51.0-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:git-core-2.51.0-slfo.1.1_1.1.x86_64",
"SUSE Linux Micro 6.1:perl-Git-2.51.0-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:perl-Git-2.51.0-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:perl-Git-2.51.0-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:perl-Git-2.51.0-slfo.1.1_1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:git-2.51.0-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:git-2.51.0-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:git-2.51.0-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:git-2.51.0-slfo.1.1_1.1.x86_64",
"SUSE Linux Micro 6.1:git-core-2.51.0-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:git-core-2.51.0-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:git-core-2.51.0-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:git-core-2.51.0-slfo.1.1_1.1.x86_64",
"SUSE Linux Micro 6.1:perl-Git-2.51.0-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:perl-Git-2.51.0-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:perl-Git-2.51.0-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:perl-Git-2.51.0-slfo.1.1_1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-10-09T14:25:15Z",
"details": "moderate"
}
],
"title": "CVE-2025-27613"
},
{
"cve": "CVE-2025-27614",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-27614"
}
],
"notes": [
{
"category": "general",
"text": "Gitk is a Tcl/Tk based Git history browser. Starting with 2.41.0, a Git repository can be crafted in such a way that with some social engineering a user who has cloned the repository can be tricked into running any script (e.g., Bourne shell, Perl, Python, ...) supplied by the attacker by invoking gitk filename, where filename has a particular structure. The script is run with the privileges of the user. This vulnerability is fixed in 2.43.7, 2.44.4, 2.45.4, 2.46.4, 2.47.3, 2.48.2, 2.49.1, and 2.50.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:git-2.51.0-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:git-2.51.0-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:git-2.51.0-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:git-2.51.0-slfo.1.1_1.1.x86_64",
"SUSE Linux Micro 6.1:git-core-2.51.0-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:git-core-2.51.0-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:git-core-2.51.0-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:git-core-2.51.0-slfo.1.1_1.1.x86_64",
"SUSE Linux Micro 6.1:perl-Git-2.51.0-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:perl-Git-2.51.0-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:perl-Git-2.51.0-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:perl-Git-2.51.0-slfo.1.1_1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-27614",
"url": "https://www.suse.com/security/cve/CVE-2025-27614"
},
{
"category": "external",
"summary": "SUSE Bug 1245939 for CVE-2025-27614",
"url": "https://bugzilla.suse.com/1245939"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:git-2.51.0-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:git-2.51.0-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:git-2.51.0-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:git-2.51.0-slfo.1.1_1.1.x86_64",
"SUSE Linux Micro 6.1:git-core-2.51.0-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:git-core-2.51.0-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:git-core-2.51.0-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:git-core-2.51.0-slfo.1.1_1.1.x86_64",
"SUSE Linux Micro 6.1:perl-Git-2.51.0-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:perl-Git-2.51.0-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:perl-Git-2.51.0-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:perl-Git-2.51.0-slfo.1.1_1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:git-2.51.0-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:git-2.51.0-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:git-2.51.0-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:git-2.51.0-slfo.1.1_1.1.x86_64",
"SUSE Linux Micro 6.1:git-core-2.51.0-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:git-core-2.51.0-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:git-core-2.51.0-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:git-core-2.51.0-slfo.1.1_1.1.x86_64",
"SUSE Linux Micro 6.1:perl-Git-2.51.0-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:perl-Git-2.51.0-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:perl-Git-2.51.0-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:perl-Git-2.51.0-slfo.1.1_1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-10-09T14:25:15Z",
"details": "important"
}
],
"title": "CVE-2025-27614"
},
{
"cve": "CVE-2025-46835",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-46835"
}
],
"notes": [
{
"category": "general",
"text": "Git GUI allows you to use the Git source control management tools via a GUI. When a user clones an untrusted repository and is tricked into editing a file located in a maliciously named directory in the repository, then Git GUI can create and overwrite files for which the user has write permission. This vulnerability is fixed in 2.43.7, 2.44.4, 2.45.4, 2.46.4, 2.47.3, 2.48.2, 2.49.1, and 2.50.1.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:git-2.51.0-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:git-2.51.0-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:git-2.51.0-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:git-2.51.0-slfo.1.1_1.1.x86_64",
"SUSE Linux Micro 6.1:git-core-2.51.0-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:git-core-2.51.0-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:git-core-2.51.0-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:git-core-2.51.0-slfo.1.1_1.1.x86_64",
"SUSE Linux Micro 6.1:perl-Git-2.51.0-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:perl-Git-2.51.0-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:perl-Git-2.51.0-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:perl-Git-2.51.0-slfo.1.1_1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-46835",
"url": "https://www.suse.com/security/cve/CVE-2025-46835"
},
{
"category": "external",
"summary": "SUSE Bug 1245942 for CVE-2025-46835",
"url": "https://bugzilla.suse.com/1245942"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:git-2.51.0-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:git-2.51.0-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:git-2.51.0-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:git-2.51.0-slfo.1.1_1.1.x86_64",
"SUSE Linux Micro 6.1:git-core-2.51.0-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:git-core-2.51.0-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:git-core-2.51.0-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:git-core-2.51.0-slfo.1.1_1.1.x86_64",
"SUSE Linux Micro 6.1:perl-Git-2.51.0-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:perl-Git-2.51.0-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:perl-Git-2.51.0-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:perl-Git-2.51.0-slfo.1.1_1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:git-2.51.0-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:git-2.51.0-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:git-2.51.0-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:git-2.51.0-slfo.1.1_1.1.x86_64",
"SUSE Linux Micro 6.1:git-core-2.51.0-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:git-core-2.51.0-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:git-core-2.51.0-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:git-core-2.51.0-slfo.1.1_1.1.x86_64",
"SUSE Linux Micro 6.1:perl-Git-2.51.0-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:perl-Git-2.51.0-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:perl-Git-2.51.0-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:perl-Git-2.51.0-slfo.1.1_1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-10-09T14:25:15Z",
"details": "moderate"
}
],
"title": "CVE-2025-46835"
},
{
"cve": "CVE-2025-48384",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-48384"
}
],
"notes": [
{
"category": "general",
"text": "Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full access to internals. When reading a config value, Git strips any trailing carriage return and line feed (CRLF). When writing a config entry, values with a trailing CR are not quoted, causing the CR to be lost when the config is later read. When initializing a submodule, if the submodule path contains a trailing CR, the altered path is read resulting in the submodule being checked out to an incorrect location. If a symlink exists that points the altered path to the submodule hooks directory, and the submodule contains an executable post-checkout hook, the script may be unintentionally executed after checkout. This vulnerability is fixed in v2.43.7, v2.44.4, v2.45.4, v2.46.4, v2.47.3, v2.48.2, v2.49.1, and v2.50.1.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:git-2.51.0-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:git-2.51.0-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:git-2.51.0-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:git-2.51.0-slfo.1.1_1.1.x86_64",
"SUSE Linux Micro 6.1:git-core-2.51.0-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:git-core-2.51.0-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:git-core-2.51.0-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:git-core-2.51.0-slfo.1.1_1.1.x86_64",
"SUSE Linux Micro 6.1:perl-Git-2.51.0-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:perl-Git-2.51.0-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:perl-Git-2.51.0-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:perl-Git-2.51.0-slfo.1.1_1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-48384",
"url": "https://www.suse.com/security/cve/CVE-2025-48384"
},
{
"category": "external",
"summary": "SUSE Bug 1245943 for CVE-2025-48384",
"url": "https://bugzilla.suse.com/1245943"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:git-2.51.0-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:git-2.51.0-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:git-2.51.0-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:git-2.51.0-slfo.1.1_1.1.x86_64",
"SUSE Linux Micro 6.1:git-core-2.51.0-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:git-core-2.51.0-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:git-core-2.51.0-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:git-core-2.51.0-slfo.1.1_1.1.x86_64",
"SUSE Linux Micro 6.1:perl-Git-2.51.0-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:perl-Git-2.51.0-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:perl-Git-2.51.0-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:perl-Git-2.51.0-slfo.1.1_1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:git-2.51.0-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:git-2.51.0-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:git-2.51.0-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:git-2.51.0-slfo.1.1_1.1.x86_64",
"SUSE Linux Micro 6.1:git-core-2.51.0-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:git-core-2.51.0-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:git-core-2.51.0-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:git-core-2.51.0-slfo.1.1_1.1.x86_64",
"SUSE Linux Micro 6.1:perl-Git-2.51.0-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:perl-Git-2.51.0-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:perl-Git-2.51.0-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:perl-Git-2.51.0-slfo.1.1_1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-10-09T14:25:15Z",
"details": "important"
}
],
"title": "CVE-2025-48384"
},
{
"cve": "CVE-2025-48385",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-48385"
}
],
"notes": [
{
"category": "general",
"text": "Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full access to internals. When cloning a repository Git knows to optionally fetch a bundle advertised by the remote server, which allows the server-side to offload parts of the clone to a CDN. The Git client does not perform sufficient validation of the advertised bundles, which allows the remote side to perform protocol injection. This protocol injection can cause the client to write the fetched bundle to a location controlled by the adversary. The fetched content is fully controlled by the server, which can in the worst case lead to arbitrary code execution. The use of bundle URIs is not enabled by default and can be controlled by the bundle.heuristic config option. Some cases of the vulnerability require that the adversary is in control of where a repository will be cloned to. This either requires social engineering or a recursive clone with submodules. These cases can thus be avoided by disabling recursive clones. This vulnerability is fixed in v2.43.7, v2.44.4, v2.45.4, v2.46.4, v2.47.3, v2.48.2, v2.49.1, and v2.50.1.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:git-2.51.0-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:git-2.51.0-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:git-2.51.0-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:git-2.51.0-slfo.1.1_1.1.x86_64",
"SUSE Linux Micro 6.1:git-core-2.51.0-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:git-core-2.51.0-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:git-core-2.51.0-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:git-core-2.51.0-slfo.1.1_1.1.x86_64",
"SUSE Linux Micro 6.1:perl-Git-2.51.0-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:perl-Git-2.51.0-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:perl-Git-2.51.0-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:perl-Git-2.51.0-slfo.1.1_1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-48385",
"url": "https://www.suse.com/security/cve/CVE-2025-48385"
},
{
"category": "external",
"summary": "SUSE Bug 1245946 for CVE-2025-48385",
"url": "https://bugzilla.suse.com/1245946"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:git-2.51.0-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:git-2.51.0-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:git-2.51.0-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:git-2.51.0-slfo.1.1_1.1.x86_64",
"SUSE Linux Micro 6.1:git-core-2.51.0-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:git-core-2.51.0-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:git-core-2.51.0-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:git-core-2.51.0-slfo.1.1_1.1.x86_64",
"SUSE Linux Micro 6.1:perl-Git-2.51.0-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:perl-Git-2.51.0-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:perl-Git-2.51.0-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:perl-Git-2.51.0-slfo.1.1_1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:git-2.51.0-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:git-2.51.0-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:git-2.51.0-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:git-2.51.0-slfo.1.1_1.1.x86_64",
"SUSE Linux Micro 6.1:git-core-2.51.0-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:git-core-2.51.0-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:git-core-2.51.0-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:git-core-2.51.0-slfo.1.1_1.1.x86_64",
"SUSE Linux Micro 6.1:perl-Git-2.51.0-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:perl-Git-2.51.0-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:perl-Git-2.51.0-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:perl-Git-2.51.0-slfo.1.1_1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-10-09T14:25:15Z",
"details": "important"
}
],
"title": "CVE-2025-48385"
},
{
"cve": "CVE-2025-48386",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-48386"
}
],
"notes": [
{
"category": "general",
"text": "Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full access to internals. The wincred credential helper uses a static buffer (target) as a unique key for storing and comparing against internal storage. This credential helper does not properly bounds check the available space remaining in the buffer before appending to it with wcsncat(), leading to potential buffer overflows. This vulnerability is fixed in v2.43.7, v2.44.4, v2.45.4, v2.46.4, v2.47.3, v2.48.2, v2.49.1, and v2.50.1.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:git-2.51.0-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:git-2.51.0-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:git-2.51.0-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:git-2.51.0-slfo.1.1_1.1.x86_64",
"SUSE Linux Micro 6.1:git-core-2.51.0-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:git-core-2.51.0-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:git-core-2.51.0-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:git-core-2.51.0-slfo.1.1_1.1.x86_64",
"SUSE Linux Micro 6.1:perl-Git-2.51.0-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:perl-Git-2.51.0-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:perl-Git-2.51.0-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:perl-Git-2.51.0-slfo.1.1_1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-48386",
"url": "https://www.suse.com/security/cve/CVE-2025-48386"
},
{
"category": "external",
"summary": "SUSE Bug 1245947 for CVE-2025-48386",
"url": "https://bugzilla.suse.com/1245947"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:git-2.51.0-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:git-2.51.0-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:git-2.51.0-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:git-2.51.0-slfo.1.1_1.1.x86_64",
"SUSE Linux Micro 6.1:git-core-2.51.0-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:git-core-2.51.0-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:git-core-2.51.0-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:git-core-2.51.0-slfo.1.1_1.1.x86_64",
"SUSE Linux Micro 6.1:perl-Git-2.51.0-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:perl-Git-2.51.0-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:perl-Git-2.51.0-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:perl-Git-2.51.0-slfo.1.1_1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:git-2.51.0-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:git-2.51.0-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:git-2.51.0-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:git-2.51.0-slfo.1.1_1.1.x86_64",
"SUSE Linux Micro 6.1:git-core-2.51.0-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:git-core-2.51.0-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:git-core-2.51.0-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:git-core-2.51.0-slfo.1.1_1.1.x86_64",
"SUSE Linux Micro 6.1:perl-Git-2.51.0-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:perl-Git-2.51.0-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:perl-Git-2.51.0-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:perl-Git-2.51.0-slfo.1.1_1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-10-09T14:25:15Z",
"details": "moderate"
}
],
"title": "CVE-2025-48386"
}
]
}
suse-su-2025:20721-1
Vulnerability from csaf_suse
Published
2025-09-22 09:07
Modified
2025-09-22 09:07
Summary
Security update for git
Notes
Title of the patch
Security update for git
Description of the patch
This update for git fixes the following issues:
- Update to 2.51.0
- UI, Workflows & Features
- Userdiff patterns for the R language have been added.
- Documentation for "git send-email" has been updated with a
bit more credential helper and OAuth information.
- "git cat-file --batch" learns to understand %(objectmode)
atom to allow the caller to tell missing objects (due to
repository corruption) and submodules (whose commit objects
are OK to be missing) apart.
- "git diff --no-index dirA dirB" can limit the comparison with
pathspec at the end of the command line, just like normal
"git diff".
- "git subtree" (in contrib/) learned to grok GPG signing its
commits.
- "git whatchanged" that is longer to type than "git log --raw"
which is its modern rough equivalent has outlived its
usefulness more than 10 years ago. Plan to deprecate and
remove it.
- An interchange format for stash entries is defined, and
subcommand of "git stash" to import/export has been added.
- "git merge/pull" has been taught the "--compact-summary"
option to use the compact-summary format, intead of diffstat,
when showing the summary of the incoming changes.
- "git imap-send" has been broken for a long time, which has
been resurrected and then taught to talk OAuth2.0 etc.
- Some error messages from "git imap-send" has been updated.
- When "git daemon" sees a signal while attempting to accept()
a new client, instead of retrying, it skipped it by mistake,
which has been corrected.
- The reftable ref backend has matured enough; Git 3.0 will
make it the default format in a newly created repositories by
default.
- "netrc" credential helper has been improved to understand
textual service names (like smtp) in addition to the numeric
port numbers (like 25).
- Lift the limitation to use changed-path filter in "git log"
so that it can be used for a pathspec with multiple literal
paths.
- Clean up the way how signature on commit objects are exported
to and imported from fast-import stream.
- Remove unsupported, unused, and unsupportable old option from
"git log".
- Document recently added "git imap-send --list" with an
example.
- "git pull" learned to pay attention to pull.autostash
configuration variable, which overrides
rebase/merge.autostash.
- "git for-each-ref" learns "--start-after" option to help
applications that want to page its output.
- "git switch" and "git restore" are declared to be no longer
experimental.
- "git -c alias.foo=bar foo -h baz" reported "'foo' is aliased
to 'bar'" and then went on to run "git foo -h baz", which was
unexpected. Tighten the rule so that alias expansion is
reported only when "-h" is the sole option.
- Performance, Internal Implementation, Development Support etc.
- "git pack-objects" learned to find delta bases from blobs at
the same path, using the --path-walk API.
- CodingGuidelines update.
- Add settings for Solaris 10 & 11.
- Meson-based build/test framework now understands TAP output
generated by our tests.
- "Do not explicitly initialize to zero" rule has been
clarified in the CodingGuidelines document.
- A test helper "test_seq" function learned the "-f <fmt>"
option, which allowed us to simplify a lot of test scripts.
- A lot of stale stuff has been removed from the contrib/
hierarchy.
- "git push" and "git fetch" are taught to update refs in
batches to gain performance.
- Some code paths in "git prune" used to ignore the passed-in
repository object and used the `the_repository` singleton
instance instead, which has been corrected.
- Update ".clang-format" and ".editorconfig" to match our style
guide a bit better.
- "make coccicheck" succeeds even when spatch made suggestions,
which has been updated to fail in such a case.
- Code clean-up around object access API.
- Define .precision to more canned parse-options type to avoid
bugs coming from using a variable with a wrong type to
capture the parsed values.
- Flipping the default hash function to SHA-256 at Git 3.0
boundary is planned.
- Declare weather-balloon we raised for "bool" type 18 months
ago a success and officially allow using the type in our
codebase.
- GIT_TEST_INSTALLED was not honored in the recent topic
related to SHA256 hashes, which has been corrected.
- The pop_most_recent_commit() function can have quite
expensive worst case performance characteristics, which has
been optimized by using prio-queue data structure.
- Move structure definition from unrelated header file to where
it belongs.
- To help our developers, document what C99 language features
are being considered for adoption, in addition to what past
experiments have already decided.
- The reftable unit tests are now ported to the "clar" unit
testing framework.
- Redefine where the multi-pack-index sits in the object
subsystem, which recently was restructured to allow multiple
backends that support a single object source that belongs to
one repository. A MIDX does span multiple "object sources".
- Reduce implicit assumption and dependence on the_repository
in the object-file subsystem.
- Fixes since v2.50 Unless otherwise noted, all the changes in
2.50.X maintenance track, including security updates, are
included in this release.
- A memory-leak in an error code path has been plugged.
- Some leftover references to documentation source files that
no longer exist, due to recent ".txt" -> ".adoc" renaming,
have been corrected.
- "git stash -p <pathspec>" improvements.
- "git send-email" incremented its internal message counter
when a message was edited, which made logic that treats the
first message specially misbehave, which has been corrected.
- "git stash" recorded a wrong branch name when submodules are
present in the current checkout, which has been corrected.
- When asking to apply mailmap to both author and committer
field while showing a commit object, the field that appears
later was not correctly parsed and replaced, which has been
corrected.
- "git maintenance" lacked the care "git gc" had to avoid
holding onto the repository lock for too long during packing
refs, which has been remedied.
- Avoid regexp_constraint and instead use comparison_constraint
when listing functions to exclude from application of
coccinelle rules, as spatch can be built with different
regexp engine X-<.
- Updating submodules from the upstream did not work well when
submodule's HEAD is detached, which has been improved.
- Remove unnecessary check from "git daemon" code. (merge
0c856224d2 cb/daemon-fd-check-fix later to maint).
- Use of sysctl() system call to learn the total RAM size used
on BSDs has been corrected.
- Drop FreeBSD 4 support and declare that we support only
FreeBSD 12 or later, which has memmem() supported.
- A diff-filter with negative-only specification like "git log
--diff-filter=d" did not trigger correctly, which has been
fixed.
- A failure to open the index file for writing due to
conflicting access did not state what went wrong, which has
been corrected.
- Tempfile removal fix in the codepath to sign commits with SSH
keys.
- Code and test clean-up around string-list API.
- "git apply -N" should start from the current index and
register only new files, but it instead started from an empty
index, which has been corrected.
- Leakfix with a new and a bit invasive test on pack-bitmap
files.
- "git fetch --prune" used to be O(n^2) expensive when there
are many refs, which has been corrected.
- When a ref creation at refs/heads/foo/bar fails, the files
backend now removes refs/heads/foo/ if the directory is
otherwise not used.
- "pack-objects" has been taught to avoid pointing into objects
in cruft packs from midx.
- "git remote" now detects remote names that overlap with each
other (e.g., remote nickname "outer" and "outer/inner" are
used at the same time), as it will lead to overlapping
remote-tracking branches.
- The gpg.program configuration variable, which names a
pathname to the (custom) GPG compatible program, can now be
spelled with ~tilde expansion.
- Our <sane-ctype.h> header file relied on that the
system-supplied <ctype.h> header is not later included, which
would override our macro definitions, but "amazon linux"
broke this assumption. Fix this by preemptively including
<ctype.h> near the beginning of <sane-ctype.h> ourselves.
(merge 9d3b33125f ps/sane-ctype-workaround later to maint).
- Clean-up compat/bswap.h mess. (merge f4ac32c03a
ss/compat-bswap-revamp later to maint).
- Meson-based build did not handle libexecdir setting
correctly, which has been corrected. (merge 056dbe8612
rj/meson-libexecdir-fix later to maint).
- Document that we do not require "real" name when signing your
patches off. (merge 1f0fed312a
bc/contribution-under-non-real-names later to maint).
- "git commit" that concludes a conflicted merge failed to
notice and remove existing comment added automatically (like
"# Conflicts:") when the core.commentstring is set to 'auto'.
(merge 92b7c7c9f5 ac/auto-comment-char-fix later to maint).
- "git rebase -i" with bogus rebase.instructionFormat
configuration failed to produce the todo file after recording
the state files, leading to confused "git status"; this has
been corrected. (merge ade14bffd7
ow/rebase-verify-insn-fmt-before-initializing-state later to
maint).
- A few file descriptors left unclosed upon program completion
in a few test helper programs are now closed. (merge
0f1b33815b hl/test-helper-fd-close later to maint).
- Interactive prompt code did not correctly strip CRLF from the
end of line on Windows. (merge 711a20827b js/prompt-crlf-fix
later to maint).
- The config API had a set of convenience wrapper functions
that implicitly use the_repository instance; they have been
removed and inlined at the calling sites.
- "git add/etc -p" now honor the diff.context configuration
variable, and also they learn to honor the -U<n> command-line
option. (merge 2b3ae04011 lm/add-p-context later to maint).
- The case where a new submodule takes a path where there used
to be a completely different subproject is now dealt with a
bit better than before. (merge 5ed8c5b465
kj/renamed-submodule later to maint).
- The deflate codepath in "git archive --format=zip" had a
longstanding bug coming from misuse of zlib API, which has
been corrected.
- Update to 2.50.1:
* CVE-2025-27613: Fixed arbitrary writable file creation and
truncation in Gitk (bsc#1245938)
* CVE-2025-27614: Fixed arbitrary script execution via repo
clonation in gitk (bsc#1245939)
* CVE-2025-46835: Fixed untrusted repository cloning leading
to arbitrary writable file creation in Git GUI (bsc#1245942)
* CVE-2025-48384: Fixed CRLF transforming (bsc#1245943)
* CVE-2025-48385: Fixed arbitrary code execution due to protocol
injection (bsc#1245946)
* CVE-2025-48386: Fixed buffer overflow in static buffer (bsc#1245947)
- Update to 2.48.1:
* CVE-2024-50349: Fixed password leak (bsc#1235600)
* CVE-2024-52006: Fixed Carriage Returns via the credential
protocol to credential helpers (bsc#1235601)
- Update to 2.48.0:
* Reference consistency checks: git refs verify
* Reflogs can now be migrated with git refs migrate
* git is free of memory leaks as covered by the test suite
* Performance improvements
- Update to 2.47.1:
* Use after free and double freeing at the end in
"git log -L... -p" had been identified and fixed.
* "git maintenance start" crashed due to an uninitialized
variable reference, which has been corrected.
* Fail gracefully instead of crashing when attempting to write
the contents of a corrupt in-core index as a tree object.
* A "git fetch" from the superproject going down to a submodule
used a wrong remote when the default remote names are set
differently between them.
* The "gitk" project tree has been synchronized again
- Update to 2.47.0:
* A few descriptions in "git show-ref -h" have been clarified.
* A 'P' command to "git add -p" that passes the patch hunk to the
pager has been added.
* "git grep -W" omits blank lines that follow the found function at
the end of the file, just like it omits blank lines before the next
function.
* The value of http.proxy can have "path" at the end for a socks
proxy that listens to a unix-domain socket, but we started to
discard it when we taught proxy auth code path to use the
credential helpers, which has been corrected.
* The code paths to compact multiple reftable files have been updated
to correctly deal with multiple compaction triggering at the same
time.
* Support to specify ref backend for submodules has been enhanced.
* "git svn" has been taught about svn:global-ignores property
recent versions of Subversion has.
* The default object hash and ref backend format used to be settable
only with explicit command line option to "git init" and
environment variables, but now they can be configured in the user's
global and system wide configuration.
* "git send-email" learned "--translate-aliases" option that reads
addresses from the standard input and emits the result of applying
aliases on them to the standard output.
* 'git for-each-ref' learned a new "--format" atom to find the branch
that the history leading to a given commit "%(is-base:<commit>)" is
likely based on.
* The command line prompt support used to be littered with bash-isms,
which has been corrected to work with more shells.
* Support for the RUNTIME_PREFIX feature has been added to z/OS port.
* "git send-email" learned "--mailmap" option to allow rewriting the
recipient addresses.
* "git mergetool" learned to use VSCode as a merge backend.
* "git pack-redundant" has been marked for removal in Git 3.0.
* One-line messages to "die" and other helper functions will get LF
added by these helper functions, but many existing messages had an
unnecessary LF at the end, which have been corrected.
* The "scalar clone" command learned the "--no-tags" option.
* The environment GIT_ADVICE has been intentionally kept undocumented
to discourage its use by interactive users. Add documentation to
help tool writers.
* "git apply --3way" learned to take "--ours" and other options.
- Update to version 2.46.2:
* Revert the "git patch-id" change that went into 2.46.1,
as it seems to have got a regression reported (I haven't verified,
but it is better to keep a known breakage than adding an unintended
regression).
* In a few corner cases "git diff --exit-code" failed to report
"changes" (e.g., renamed without any content change), which has
been corrected.
* The interpret-trailers command failed to recognise the end of the
message when the commit log ends in an incomplete line.
- Update to version 2.46.1;
* "git checkout --ours" (no other arguments) complained that the
option is incompatible with branch switching, which is technically
correct, but found confusing by some users. It now says that the
user needs to give pathspec to specify what paths to checkout.
* It has been documented that we avoid "VAR=VAL shell_func" and why.
* "git add -p" by users with diff.suppressBlankEmpty set to true
failed to parse the patch that represents an unmodified empty line
with an empty line (not a line with a single space on it), which
has been corrected.
* "git rebase --help" referred to "offset" (the difference between
the location a change was taken from and the change gets replaced)
incorrectly and called it "fuzz", which has been corrected.
* "git notes add -m '' --allow-empty" and friends that take prepared
data to create notes should not invoke an editor, but it started
doing so since Git 2.42, which has been corrected.
* An expensive operation to prepare tracing was done in re-encoding
code path even when the tracing was not requested, which has been
corrected.
* Perforce tests have been updated.
* The credential helper to talk to OSX keychain sometimes sent
garbage bytes after the username, which has been corrected.
* A recent update broke "git ls-remote" used outside a repository,
which has been corrected.
* "git config --value=foo --fixed-value section.key newvalue" barfed
when the existing value in the configuration file used the
valueless true syntax, which has been corrected.
* "git reflog expire" failed to honor annotated tags when computing
reachable commits.
* A flakey test and incorrect calls to strtoX() functions have been
fixed.
* Follow-up on 2.45.1 regression fix.
* "git rev-list ... | git diff-tree -p --remerge-diff --stdin" should
behave more or less like "git log -p --remerge-diff" but instead it
crashed, forgetting to prepare a temporary object store needed.
* The patch parser in "git patch-id" has been tightened to avoid
getting confused by lines that look like a patch header in the log
message.
* "git bundle unbundle" outside a repository triggered a BUG()
unnecessarily, which has been corrected.
* The code forgot to discard unnecessary in-core commit buffer data
for commits that "git log --skip=<number>" traversed but omitted
from the output, which has been corrected.
* "git verify-pack" and "git index-pack" started dying outside a
repository, which has been corrected.
* A corner case bug in "git stash" was fixed.
- Change less requirement to path to allow for use with BusyBox
- Update to 2.46.0
UI, Workflows & Features
* The "--rfc" option of "git format-patch" learned to take an
optional string value to be used in place of "RFC" to tweak the
"[PATCH]" on the subject header.
* The credential helper protocol, together with the HTTP layer, have
been enhanced to support authentication schemes different from
username & password pair, like Bearer and NTLM.
* Command line completion script (in contrib/) learned to complete
"git symbolic-ref" a bit better (you need to enable plumbing
commands to be completed with GIT_COMPLETION_SHOW_ALL_COMMANDS).
* When the user responds to a prompt given by "git add -p" with an
unsupported command, list of available commands were given, which
was too much if the user knew what they wanted to type but merely
made a typo. Now the user gets a much shorter error message.
* The color parsing code learned to handle 12-bit RGB colors, spelled
as "#RGB" (in addition to "#RRGGBB" that is already supported).
* The operation mode options (like "--get") the "git config" command
uses have been deprecated and replaced with subcommands (like "git
config get").
* "git tag" learned the "--trailer" option to futz with the trailers
in the same way as "git commit" does.
* A new global "--no-advice" option can be used to disable all advice
messages, which is meant to be used only in scripts.
* Updates to symbolic refs can now be made as a part of ref
transaction.
* The trailer API has been reshuffled a bit.
* Terminology to call various ref-like things are getting
straightened out.
* The command line completion script (in contrib/) has been adjusted
to the recent update to "git config" that adopted subcommand based
UI.
* The knobs to tweak how reftable files are written have been made
available as configuration variables.
* When "git push" notices that the commit at the tip of the ref on
the other side it is about to overwrite does not exist locally, it
used to first try fetching it if the local repository is a partial
clone. The command has been taught not to do so and immediately
fail instead.
* The promisor.quiet configuration knob can be set to true to make
lazy fetching from promisor remotes silent.
* The inter/range-diff output has been moved to the end of the patch
when format-patch adds it to a single patch, instead of writing it
before the patch text, to be consistent with what is done for a
cover letter for a multi-patch series.
* A new command has been added to migrate a repository that uses the
files backend for its ref storage to use the reftable backend, with
limitations.
* "git diff --exit-code --ext-diff" learned to take the exit status
of the external diff driver into account when deciding the exit
status of the overall "git diff" invocation when configured to do
so.
* "git update-ref --stdin" learned to handle transactional updates of
symbolic-refs.
* "git format-patch --interdiff" for multi-patch series learned to
turn on cover letters automatically (unless told never to enable
cover letter with "--no-cover-letter" and such).
* The "--heads" option of "ls-remote" and "show-ref" has been been
deprecated; "--branches" replaces "--heads".
* For over a year, setting add.interactive.useBuiltin configuration
variable did nothing but giving a "this does not do anything"
warning. The warning has been removed.
* The http transport can now be told to send request with
authentication material without first getting a 401 response.
* A handful of entries are added to the GitFAQ document.
* "git var GIT_SHELL_PATH" should report the path to the shell used
to spawn external commands, but it didn't do so on Windows, which
has been corrected.
Performance, Internal Implementation, Development Support etc.
* Advertise "git contacts", a tool for newcomers to find people to
ask review for their patches, a bit more in our developer
documentation.
* In addition to building the objects needed, try to link the objects
that are used in fuzzer tests, to make sure at least they build
without bitrot, in Linux CI runs.
* Code to write out reftable has seen some optimization and
simplification.
* Tests to ensure interoperability between reftable written by jgit
and our code have been added and enabled in CI.
* The singleton index_state instance "the_index" has been eliminated
by always instantiating "the_repository" and replacing references
to "the_index" with references to its .index member.
* Git-GUI has a new maintainer, Johannes Sixt.
* The "test-tool" has been taught to run testsuite tests in parallel,
bypassing the need to use the "prove" tool.
* The "whitespace check" task that was enabled for GitHub Actions CI
has been ported to GitLab CI.
* The refs API lost functions that implicitly assumes to work on the
primary ref_store by forcing the callers to pass a ref_store as an
argument.
* Code clean-up to reduce inter-function communication inside
builtin/config.c done via the use of global variables.
* The pack bitmap code saw some clean-up to prepare for a follow-up topic.
* Preliminary code clean-up for "git send-email".
* The default "creation-factor" used by "git format-patch" has been
raised to make it more aggressively find matching commits.
* Before discovering the repository details, We used to assume SHA-1
as the "default" hash function, which has been corrected. Hopefully
this will smoke out codepaths that rely on such an unwarranted
assumptions.
* The project decision making policy has been documented.
* The strcmp-offset tests have been rewritten using the unit test
framework.
* "git add -p" learned to complain when an answer with more than one
letter is given to a prompt that expects a single letter answer.
* The alias-expanded command lines are logged to the trace output.
* A new test was added to ensure git commands that are designed to
run outside repositories do work.
* A few tests in reftable library have been rewritten using the
unit test framework.
* A pair of test helpers that essentially are unit tests on hash
algorithms have been rewritten using the unit-tests framework.
* A test helper that essentially is unit tests on the "decorate"
logic has been rewritten using the unit-tests framework.
* Many memory leaks in the sparse-checkout code paths have been
plugged.
* "make check-docs" noticed problems and reported to its output but
failed to signal its findings with its exit status, which has been
corrected.
* Building with "-Werror -Wwrite-strings" is now supported.
* To help developers, the build procedure now allows builders to use
CFLAGS_APPEND to specify additional CFLAGS.
* "oidtree" tests were rewritten to use the unit test framework.
* The structure of the document that records longer-term project
decisions to deprecate/remove/update various behaviour has been
outlined.
* The pseudo-merge reachability bitmap to help more efficient storage
of the reachability bitmap in a repository with too many refs has
been added.
* When "git merge" sees that the index cannot be refreshed (e.g. due
to another process doing the same in the background), it died but
after writing MERGE_HEAD etc. files, which was useless for the
purpose to recover from the failure.
* The output from "git cat-file --batch-check" and "--batch-command
(info)" should not be unbuffered, for which some tests have been
added.
* A CPP macro USE_THE_REPOSITORY_VARIABLE is introduced to help
transition the codebase to rely less on the availability of the
singleton the_repository instance.
* "git version --build-options" reports the version information of
OpenSSL and other libraries (if used) in the build.
* Memory ownership rules for the in-core representation of
remote.*.url configuration values have been straightened out, which
resulted in a few leak fixes and code clarification.
* When bundleURI interface fetches multiple bundles, Git failed to
take full advantage of all bundles and ended up slurping duplicated
objects, which has been corrected.
* The code to deal with modified paths that are out-of-cone in a
sparsely checked out working tree has been optimized.
* An existing test of oidmap API has been rewritten with the
unit-test framework.
* The "ort" merge backend saw one bugfix for a crash that happens
when inner merge gets killed, and assorted code clean-ups.
* A new warning message is issued when a command has to expand a
sparse index to handle working tree cruft that are outside of the
sparse checkout.
* The test framework learned to take the test body not as a single
string but as a here-document.
* "git push '' HEAD:there" used to hit a BUG(); it has been corrected
to die with "fatal: bad repository ''".
* What happens when http.cookieFile gets the special value "" has
been clarified in the documentation.
Fixes
* "git rebase --signoff" used to forget that it needs to add a
sign-off to the resulting commit when told to continue after a
conflict stops its operation.
* The procedure to build multi-pack-index got confused by the
replace-refs mechanism, which has been corrected by disabling the
latter.
* The "-k" and "--rfc" options of "format-patch" will now error out
when used together, as one tells us not to add anything to the
title of the commit, and the other one tells us to add "RFC" in
addition to "PATCH".
* "git stash -S" did not handle binary files correctly, which has
been corrected.
* A scheduled "git maintenance" job is expected to work on all
repositories it knows about, but it stopped at the first one that
errored out. Now it keeps going.
* zsh can pretend to be a normal shell pretty well except for some
glitches that we tickle in some of our scripts. Work them around
so that "vimdiff" and our test suite works well enough with it.
* Command line completion support for zsh (in contrib/) has been
updated to stop exposing internal state to end-user shell
interaction.
* Tests that try to corrupt in-repository files in chunked format did
not work well on macOS due to its broken "mv", which has been
worked around.
* The maximum size of attribute files is enforced more consistently.
* Unbreak CI jobs so that we do not attempt to use Python 2 that has
been removed from the platform.
* Git 2.43 started using the tree of HEAD as the source of attributes
in a bare repository, which has severe performance implications.
For now, revert the change, without ripping out a more explicit
support for the attr.tree configuration variable.
* The "--exit-code" option of "git diff" command learned to work with
the "--ext-diff" option.
* Windows CI running in GitHub Actions started complaining about the
order of arguments given to calloc(); the imported regex code uses
the wrong order almost consistently, which has been corrected.
* Expose "name conflict" error when a ref creation fails due to D/F
conflict in the ref namespace, to improve an error message given by
"git fetch".
(merge 9339fca23e it/refs-name-conflict later to maint).
* The SubmittingPatches document now refers folks to manpages
translation project.
* The documentation for "git diff --name-only" has been clarified
that it is about showing the names in the post-image tree.
* The credential helper that talks with osx keychain learned to avoid
storing back the authentication material it just got received from
the keychain.
(merge e1ab45b2da kn/osxkeychain-skip-idempotent-store later to maint).
* The chainlint script (invoked during "make test") did nothing when
it failed to detect the number of available CPUs. It now falls
back to 1 CPU to avoid the problem.
* Revert overly aggressive "layered defence" that went into 2.45.1
and friends, which broke "git-lfs", "git-annex", and other use
cases, so that we can rebuild necessary counterparts in the open.
* "git init" in an already created directory, when the user
configuration has includeif.onbranch, started to fail recently,
which has been corrected.
* Memory leaks in "git mv" has been plugged.
* The safe.directory configuration knob has been updated to
optionally allow leading path matches.
* An overly large ".gitignore" files are now rejected silently.
* Upon expiration event, the credential subsystem forgot to clear
in-core authentication material other than password (whose support
was added recently), which has been corrected.
* Fix for an embarrassing typo that prevented Python2 tests from running
anywhere.
* Varargs functions that are unannotated as printf-like or execl-like
have been annotated as such.
* "git am" has a safety feature to prevent it from starting a new
session when there already is a session going. It reliably
triggers when a mbox is given on the command line, but it has to
rely on the tty-ness of the standard input. Add an explicit way to
opt out of this safety with a command line option.
(merge 62c71ace44 jk/am-retry later to maint).
* A leak in "git imap-send" that somehow escapes LSan has been
plugged.
* Setting core.abbrev too early before the repository set-up
(typically in "git clone") caused segfault, which as been
corrected.
* When the user adds to "git rebase -i" instruction to "pick" a merge
commit, the error experience is not pleasant. Such an error is now
caught earlier in the process that parses the todo list.
* We forgot to normalize the result of getcwd() to NFC on macOS where
all other paths are normalized, which has been corrected. This still
does not address the case where core.precomposeUnicode configuration
is not defined globally.
* Earlier we stopped using the tree of HEAD as the default source of
attributes in a bare repository, but failed to document it. This
has been corrected.
* "git update-server-info" and "git commit-graph --write" have been
updated to use the tempfile API to avoid leaving cruft after
failing.
* An unused extern declaration for mingw has been removed to prevent
it from causing build failure.
* A helper function shared between two tests had a copy-paste bug,
which has been corrected.
* "git fetch-pack -k -k" without passing "--lock-pack" (which we
never do ourselves) did not work at all, which has been corrected.
* CI job to build minimum fuzzers learned to pass NO_CURL=NoThanks to
the build procedure, as its build environment does not offer, or
the rest of the build needs, anything cURL.
(merge 4e66b5a990 jc/fuzz-sans-curl later to maint).
* "git diff --no-ext-diff" when diff.external is configured ignored
the "--color-moved" option.
(merge 0f4b0d4cf0 rs/diff-color-moved-w-no-ext-diff-fix later to maint).
* "git archive --add-virtual-file=<path>:<contents>" never paid
attention to the --prefix=<prefix> option but the documentation
said it would. The documentation has been corrected.
(merge 72c282098d jc/archive-prefix-with-add-virtual-file later to maint).
* When GIT_PAGER failed to spawn, depending on the code path taken,
we failed immediately (correct) or just spew the payload to the
standard output (incorrect). The code now always fail immediately
when GIT_PAGER fails.
(merge 78f0a5d187 rj/pager-die-upon-exec-failure later to maint).
* date parser updates to be more careful about underflowing epoch
based timestamp.
(merge 9d69789770 db/date-underflow-fix later to maint).
* The Bloom filter used for path limited history traversal was broken
on systems whose "char" is unsigned; update the implementation and
bump the format version to 2.
(merge 9c8a9ec787 tb/path-filter-fix later to maint).
* Typofix.
(merge 231cf7370e as/pathspec-h-typofix later to maint).
* Code clean-up.
(merge 4b837f821e rs/simplify-submodule-helper-super-prefix-invocation later to maint).
* "git describe --dirty --broken" forgot to refresh the index before
seeing if there is any chang, ("git describe --dirty" correctly did
so), which has been corrected.
(merge b8ae42e292 as/describe-broken-refresh-index-fix later to maint).
* Test suite has been taught not to unnecessarily rely on DNS failing
a bogus external name.
(merge 407cdbd271 jk/tests-without-dns later to maint).
* GitWeb update to use committer date consistently in rss/atom feeds.
(merge cf6ead095b am/gitweb-feed-use-committer-date later to maint).
* Custom control structures we invented more recently have been
taught to the clang-format file.
(merge 1457dff9be rs/clang-format-updates later to maint).
* Developer build procedure fix.
(merge df32729866 tb/dev-build-pedantic-fix later to maint).
* "git push" that pushes only deletion gave an unnecessary and
harmless error message when push negotiation is configured, which
has been corrected.
(merge 4d8ee0317f jc/disable-push-nego-for-deletion later to maint).
* Address-looking strings found on the trailer are now placed on the
Cc: list after running through sanitize_address by "git send-email".
(merge c852531f45 cb/send-email-sanitize-trailer-addresses later to maint).
* Tests that use GIT_TEST_SANITIZE_LEAK_LOG feature got their exit
status inverted, which has been corrected.
(merge 8c1d6691bc rj/test-sanitize-leak-log-fix later to maint).
* The http.cookieFile and http.saveCookies configuration variables
have a few values that need to be avoided, which are now ignored
with warning messages.
(merge 4f5822076f jc/http-cookiefile later to maint).
* Repacking a repository with multi-pack index started making stupid
pack selections in Git 2.45, which has been corrected.
(merge 8fb6d11fad ds/midx-write-repack-fix later to maint).
* Fix documentation mark-up regression in 2.45.
(merge 6474da0aa4 ja/doc-markup-updates-fix later to maint).
* Work around asciidoctor's css that renders `monospace` material
in the SYNOPSIS section of manual pages as block elements.
(merge d44ce6ddd5 js/doc-markup-updates-fix later to maint).
- CVE-2024-24577: Fixed arbitrary code execution due to heap corruption
in git_index_add (bsc#1219660)
- Update to 2.45.2:
* Revert "defense in depth" fixes from 2.45.1 broke 'git lfs' and
'git annex'
- remove dependency on /usr/bin/python3 using
%python3_fix_shebang_path macro, [bsc#1212476]
Patchnames
SUSE-SLE-Micro-6.0-470
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "critical"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for git",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for git fixes the following issues:\n\n- Update to 2.51.0\n \n - UI, Workflows \u0026 Features\n - Userdiff patterns for the R language have been added.\n - Documentation for \"git send-email\" has been updated with a\n bit more credential helper and OAuth information.\n - \"git cat-file --batch\" learns to understand %(objectmode)\n atom to allow the caller to tell missing objects (due to\n repository corruption) and submodules (whose commit objects\n are OK to be missing) apart.\n - \"git diff --no-index dirA dirB\" can limit the comparison with\n pathspec at the end of the command line, just like normal\n \"git diff\".\n - \"git subtree\" (in contrib/) learned to grok GPG signing its\n commits.\n - \"git whatchanged\" that is longer to type than \"git log --raw\"\n which is its modern rough equivalent has outlived its\n usefulness more than 10 years ago. Plan to deprecate and\n remove it.\n - An interchange format for stash entries is defined, and\n subcommand of \"git stash\" to import/export has been added.\n - \"git merge/pull\" has been taught the \"--compact-summary\"\n option to use the compact-summary format, intead of diffstat,\n when showing the summary of the incoming changes.\n - \"git imap-send\" has been broken for a long time, which has\n been resurrected and then taught to talk OAuth2.0 etc.\n - Some error messages from \"git imap-send\" has been updated.\n - When \"git daemon\" sees a signal while attempting to accept()\n a new client, instead of retrying, it skipped it by mistake,\n which has been corrected.\n - The reftable ref backend has matured enough; Git 3.0 will\n make it the default format in a newly created repositories by\n default.\n - \"netrc\" credential helper has been improved to understand\n textual service names (like smtp) in addition to the numeric\n port numbers (like 25).\n - Lift the limitation to use changed-path filter in \"git log\"\n so that it can be used for a pathspec with multiple literal\n paths.\n - Clean up the way how signature on commit objects are exported\n to and imported from fast-import stream.\n - Remove unsupported, unused, and unsupportable old option from\n \"git log\".\n - Document recently added \"git imap-send --list\" with an\n example.\n - \"git pull\" learned to pay attention to pull.autostash\n configuration variable, which overrides\n rebase/merge.autostash.\n - \"git for-each-ref\" learns \"--start-after\" option to help\n applications that want to page its output.\n - \"git switch\" and \"git restore\" are declared to be no longer\n experimental.\n - \"git -c alias.foo=bar foo -h baz\" reported \"\u0027foo\u0027 is aliased\n to \u0027bar\u0027\" and then went on to run \"git foo -h baz\", which was\n unexpected. Tighten the rule so that alias expansion is\n reported only when \"-h\" is the sole option.\n - Performance, Internal Implementation, Development Support etc.\n - \"git pack-objects\" learned to find delta bases from blobs at\n the same path, using the --path-walk API.\n - CodingGuidelines update.\n - Add settings for Solaris 10 \u0026 11.\n - Meson-based build/test framework now understands TAP output\n generated by our tests.\n - \"Do not explicitly initialize to zero\" rule has been\n clarified in the CodingGuidelines document.\n - A test helper \"test_seq\" function learned the \"-f \u003cfmt\u003e\"\n option, which allowed us to simplify a lot of test scripts.\n - A lot of stale stuff has been removed from the contrib/\n hierarchy.\n - \"git push\" and \"git fetch\" are taught to update refs in\n batches to gain performance.\n - Some code paths in \"git prune\" used to ignore the passed-in\n repository object and used the `the_repository` singleton\n instance instead, which has been corrected.\n - Update \".clang-format\" and \".editorconfig\" to match our style\n guide a bit better.\n - \"make coccicheck\" succeeds even when spatch made suggestions,\n which has been updated to fail in such a case.\n - Code clean-up around object access API.\n - Define .precision to more canned parse-options type to avoid\n bugs coming from using a variable with a wrong type to\n capture the parsed values.\n - Flipping the default hash function to SHA-256 at Git 3.0\n boundary is planned.\n - Declare weather-balloon we raised for \"bool\" type 18 months\n ago a success and officially allow using the type in our\n codebase.\n - GIT_TEST_INSTALLED was not honored in the recent topic\n related to SHA256 hashes, which has been corrected.\n - The pop_most_recent_commit() function can have quite\n expensive worst case performance characteristics, which has\n been optimized by using prio-queue data structure.\n - Move structure definition from unrelated header file to where\n it belongs.\n - To help our developers, document what C99 language features\n are being considered for adoption, in addition to what past\n experiments have already decided.\n - The reftable unit tests are now ported to the \"clar\" unit\n testing framework.\n - Redefine where the multi-pack-index sits in the object\n subsystem, which recently was restructured to allow multiple\n backends that support a single object source that belongs to\n one repository. A MIDX does span multiple \"object sources\".\n - Reduce implicit assumption and dependence on the_repository\n in the object-file subsystem.\n\n - Fixes since v2.50 Unless otherwise noted, all the changes in\n 2.50.X maintenance track, including security updates, are\n included in this release.\n - A memory-leak in an error code path has been plugged.\n - Some leftover references to documentation source files that\n no longer exist, due to recent \".txt\" -\u003e \".adoc\" renaming,\n have been corrected.\n - \"git stash -p \u003cpathspec\u003e\" improvements. \n - \"git send-email\" incremented its internal message counter\n when a message was edited, which made logic that treats the\n first message specially misbehave, which has been corrected.\n - \"git stash\" recorded a wrong branch name when submodules are\n present in the current checkout, which has been corrected.\n - When asking to apply mailmap to both author and committer\n field while showing a commit object, the field that appears\n later was not correctly parsed and replaced, which has been\n corrected.\n - \"git maintenance\" lacked the care \"git gc\" had to avoid\n holding onto the repository lock for too long during packing\n refs, which has been remedied.\n - Avoid regexp_constraint and instead use comparison_constraint\n when listing functions to exclude from application of\n coccinelle rules, as spatch can be built with different\n regexp engine X-\u003c.\n - Updating submodules from the upstream did not work well when\n submodule\u0027s HEAD is detached, which has been improved. \n - Remove unnecessary check from \"git daemon\" code. (merge\n 0c856224d2 cb/daemon-fd-check-fix later to maint).\n - Use of sysctl() system call to learn the total RAM size used\n on BSDs has been corrected.\n - Drop FreeBSD 4 support and declare that we support only\n FreeBSD 12 or later, which has memmem() supported.\n - A diff-filter with negative-only specification like \"git log\n --diff-filter=d\" did not trigger correctly, which has been\n fixed.\n - A failure to open the index file for writing due to\n conflicting access did not state what went wrong, which has\n been corrected.\n - Tempfile removal fix in the codepath to sign commits with SSH\n keys.\n - Code and test clean-up around string-list API.\n - \"git apply -N\" should start from the current index and\n register only new files, but it instead started from an empty\n index, which has been corrected.\n - Leakfix with a new and a bit invasive test on pack-bitmap\n files.\n - \"git fetch --prune\" used to be O(n^2) expensive when there\n are many refs, which has been corrected.\n - When a ref creation at refs/heads/foo/bar fails, the files\n backend now removes refs/heads/foo/ if the directory is\n otherwise not used.\n - \"pack-objects\" has been taught to avoid pointing into objects\n in cruft packs from midx.\n - \"git remote\" now detects remote names that overlap with each\n other (e.g., remote nickname \"outer\" and \"outer/inner\" are\n used at the same time), as it will lead to overlapping\n remote-tracking branches.\n - The gpg.program configuration variable, which names a\n pathname to the (custom) GPG compatible program, can now be\n spelled with ~tilde expansion.\n - Our \u003csane-ctype.h\u003e header file relied on that the\n system-supplied \u003cctype.h\u003e header is not later included, which\n would override our macro definitions, but \"amazon linux\"\n broke this assumption. Fix this by preemptively including\n \u003cctype.h\u003e near the beginning of \u003csane-ctype.h\u003e ourselves.\n (merge 9d3b33125f ps/sane-ctype-workaround later to maint).\n - Clean-up compat/bswap.h mess. (merge f4ac32c03a\n ss/compat-bswap-revamp later to maint).\n - Meson-based build did not handle libexecdir setting\n correctly, which has been corrected. (merge 056dbe8612\n rj/meson-libexecdir-fix later to maint).\n - Document that we do not require \"real\" name when signing your\n patches off. (merge 1f0fed312a\n bc/contribution-under-non-real-names later to maint).\n - \"git commit\" that concludes a conflicted merge failed to\n notice and remove existing comment added automatically (like\n \"# Conflicts:\") when the core.commentstring is set to \u0027auto\u0027.\n (merge 92b7c7c9f5 ac/auto-comment-char-fix later to maint).\n - \"git rebase -i\" with bogus rebase.instructionFormat\n configuration failed to produce the todo file after recording\n the state files, leading to confused \"git status\"; this has\n been corrected. (merge ade14bffd7\n ow/rebase-verify-insn-fmt-before-initializing-state later to\n maint).\n - A few file descriptors left unclosed upon program completion\n in a few test helper programs are now closed. (merge\n 0f1b33815b hl/test-helper-fd-close later to maint).\n - Interactive prompt code did not correctly strip CRLF from the\n end of line on Windows. (merge 711a20827b js/prompt-crlf-fix\n later to maint).\n - The config API had a set of convenience wrapper functions\n that implicitly use the_repository instance; they have been\n removed and inlined at the calling sites.\n - \"git add/etc -p\" now honor the diff.context configuration\n variable, and also they learn to honor the -U\u003cn\u003e command-line\n option. (merge 2b3ae04011 lm/add-p-context later to maint).\n - The case where a new submodule takes a path where there used\n to be a completely different subproject is now dealt with a\n bit better than before. (merge 5ed8c5b465\n kj/renamed-submodule later to maint).\n - The deflate codepath in \"git archive --format=zip\" had a\n longstanding bug coming from misuse of zlib API, which has\n been corrected.\n\n\n- Update to 2.50.1:\n \n * CVE-2025-27613: Fixed arbitrary writable file creation and \n truncation in Gitk (bsc#1245938)\n * CVE-2025-27614: Fixed arbitrary script execution via repo \n clonation in gitk (bsc#1245939)\n * CVE-2025-46835: Fixed untrusted repository cloning leading \n to arbitrary writable file creation in Git GUI (bsc#1245942)\n * CVE-2025-48384: Fixed CRLF transforming (bsc#1245943)\n * CVE-2025-48385: Fixed arbitrary code execution due to protocol \n injection (bsc#1245946)\n * CVE-2025-48386: Fixed buffer overflow in static buffer (bsc#1245947)\n\n- Update to 2.48.1:\n \n * CVE-2024-50349: Fixed password leak (bsc#1235600)\n * CVE-2024-52006: Fixed Carriage Returns via the credential \n protocol to credential helpers (bsc#1235601)\n\n- Update to 2.48.0:\n\n * Reference consistency checks: git refs verify\n * Reflogs can now be migrated with git refs migrate\n * git is free of memory leaks as covered by the test suite\n * Performance improvements\n\n- Update to 2.47.1:\n\n * Use after free and double freeing at the end in\n \"git log -L... -p\" had been identified and fixed.\n * \"git maintenance start\" crashed due to an uninitialized\n variable reference, which has been corrected.\n * Fail gracefully instead of crashing when attempting to write\n the contents of a corrupt in-core index as a tree object.\n * A \"git fetch\" from the superproject going down to a submodule\n used a wrong remote when the default remote names are set\n differently between them.\n * The \"gitk\" project tree has been synchronized again\n\n- Update to 2.47.0:\n \n * A few descriptions in \"git show-ref -h\" have been clarified.\n * A \u0027P\u0027 command to \"git add -p\" that passes the patch hunk to the\n pager has been added.\n * \"git grep -W\" omits blank lines that follow the found function at\n the end of the file, just like it omits blank lines before the next\n function.\n * The value of http.proxy can have \"path\" at the end for a socks\n proxy that listens to a unix-domain socket, but we started to\n discard it when we taught proxy auth code path to use the\n credential helpers, which has been corrected.\n * The code paths to compact multiple reftable files have been updated\n to correctly deal with multiple compaction triggering at the same\n time.\n * Support to specify ref backend for submodules has been enhanced.\n * \"git svn\" has been taught about svn:global-ignores property\n recent versions of Subversion has.\n * The default object hash and ref backend format used to be settable\n only with explicit command line option to \"git init\" and\n environment variables, but now they can be configured in the user\u0027s\n global and system wide configuration.\n * \"git send-email\" learned \"--translate-aliases\" option that reads\n addresses from the standard input and emits the result of applying\n aliases on them to the standard output.\n * \u0027git for-each-ref\u0027 learned a new \"--format\" atom to find the branch\n that the history leading to a given commit \"%(is-base:\u003ccommit\u003e)\" is\n likely based on.\n * The command line prompt support used to be littered with bash-isms,\n which has been corrected to work with more shells.\n * Support for the RUNTIME_PREFIX feature has been added to z/OS port.\n * \"git send-email\" learned \"--mailmap\" option to allow rewriting the\n recipient addresses.\n * \"git mergetool\" learned to use VSCode as a merge backend.\n * \"git pack-redundant\" has been marked for removal in Git 3.0.\n * One-line messages to \"die\" and other helper functions will get LF\n added by these helper functions, but many existing messages had an\n unnecessary LF at the end, which have been corrected.\n * The \"scalar clone\" command learned the \"--no-tags\" option.\n * The environment GIT_ADVICE has been intentionally kept undocumented\n to discourage its use by interactive users. Add documentation to\n help tool writers.\n * \"git apply --3way\" learned to take \"--ours\" and other options.\n\n- Update to version 2.46.2:\n \n * Revert the \"git patch-id\" change that went into 2.46.1,\n as it seems to have got a regression reported (I haven\u0027t verified,\n but it is better to keep a known breakage than adding an unintended\n regression).\n * In a few corner cases \"git diff --exit-code\" failed to report\n \"changes\" (e.g., renamed without any content change), which has\n been corrected.\n * The interpret-trailers command failed to recognise the end of the\n message when the commit log ends in an incomplete line.\n\n- Update to version 2.46.1;\n \n * \"git checkout --ours\" (no other arguments) complained that the\n option is incompatible with branch switching, which is technically\n correct, but found confusing by some users. It now says that the\n user needs to give pathspec to specify what paths to checkout.\n * It has been documented that we avoid \"VAR=VAL shell_func\" and why.\n * \"git add -p\" by users with diff.suppressBlankEmpty set to true\n failed to parse the patch that represents an unmodified empty line\n with an empty line (not a line with a single space on it), which\n has been corrected.\n * \"git rebase --help\" referred to \"offset\" (the difference between\n the location a change was taken from and the change gets replaced)\n incorrectly and called it \"fuzz\", which has been corrected.\n * \"git notes add -m \u0027\u0027 --allow-empty\" and friends that take prepared\n data to create notes should not invoke an editor, but it started\n doing so since Git 2.42, which has been corrected.\n * An expensive operation to prepare tracing was done in re-encoding\n code path even when the tracing was not requested, which has been\n corrected.\n * Perforce tests have been updated.\n * The credential helper to talk to OSX keychain sometimes sent\n garbage bytes after the username, which has been corrected.\n * A recent update broke \"git ls-remote\" used outside a repository,\n which has been corrected.\n * \"git config --value=foo --fixed-value section.key newvalue\" barfed\n when the existing value in the configuration file used the\n valueless true syntax, which has been corrected.\n * \"git reflog expire\" failed to honor annotated tags when computing\n reachable commits.\n * A flakey test and incorrect calls to strtoX() functions have been\n fixed.\n * Follow-up on 2.45.1 regression fix.\n * \"git rev-list ... | git diff-tree -p --remerge-diff --stdin\" should\n behave more or less like \"git log -p --remerge-diff\" but instead it\n crashed, forgetting to prepare a temporary object store needed.\n * The patch parser in \"git patch-id\" has been tightened to avoid\n getting confused by lines that look like a patch header in the log\n message.\n * \"git bundle unbundle\" outside a repository triggered a BUG()\n unnecessarily, which has been corrected.\n * The code forgot to discard unnecessary in-core commit buffer data\n for commits that \"git log --skip=\u003cnumber\u003e\" traversed but omitted\n from the output, which has been corrected.\n * \"git verify-pack\" and \"git index-pack\" started dying outside a\n repository, which has been corrected.\n * A corner case bug in \"git stash\" was fixed.\n\n- Change less requirement to path to allow for use with BusyBox\n\n- Update to 2.46.0\n \n UI, Workflows \u0026 Features\n * The \"--rfc\" option of \"git format-patch\" learned to take an\n optional string value to be used in place of \"RFC\" to tweak the\n \"[PATCH]\" on the subject header.\n * The credential helper protocol, together with the HTTP layer, have\n been enhanced to support authentication schemes different from\n username \u0026 password pair, like Bearer and NTLM.\n * Command line completion script (in contrib/) learned to complete\n \"git symbolic-ref\" a bit better (you need to enable plumbing\n commands to be completed with GIT_COMPLETION_SHOW_ALL_COMMANDS).\n * When the user responds to a prompt given by \"git add -p\" with an\n unsupported command, list of available commands were given, which\n was too much if the user knew what they wanted to type but merely\n made a typo. Now the user gets a much shorter error message.\n * The color parsing code learned to handle 12-bit RGB colors, spelled\n as \"#RGB\" (in addition to \"#RRGGBB\" that is already supported).\n * The operation mode options (like \"--get\") the \"git config\" command\n uses have been deprecated and replaced with subcommands (like \"git\n config get\").\n * \"git tag\" learned the \"--trailer\" option to futz with the trailers\n in the same way as \"git commit\" does.\n * A new global \"--no-advice\" option can be used to disable all advice\n messages, which is meant to be used only in scripts.\n * Updates to symbolic refs can now be made as a part of ref\n transaction.\n * The trailer API has been reshuffled a bit.\n * Terminology to call various ref-like things are getting\n straightened out.\n * The command line completion script (in contrib/) has been adjusted\n to the recent update to \"git config\" that adopted subcommand based\n UI.\n * The knobs to tweak how reftable files are written have been made\n available as configuration variables.\n * When \"git push\" notices that the commit at the tip of the ref on\n the other side it is about to overwrite does not exist locally, it\n used to first try fetching it if the local repository is a partial\n clone. The command has been taught not to do so and immediately\n fail instead.\n * The promisor.quiet configuration knob can be set to true to make\n lazy fetching from promisor remotes silent.\n * The inter/range-diff output has been moved to the end of the patch\n when format-patch adds it to a single patch, instead of writing it\n before the patch text, to be consistent with what is done for a\n cover letter for a multi-patch series.\n * A new command has been added to migrate a repository that uses the\n files backend for its ref storage to use the reftable backend, with\n limitations.\n * \"git diff --exit-code --ext-diff\" learned to take the exit status\n of the external diff driver into account when deciding the exit\n status of the overall \"git diff\" invocation when configured to do\n so.\n * \"git update-ref --stdin\" learned to handle transactional updates of\n symbolic-refs.\n * \"git format-patch --interdiff\" for multi-patch series learned to\n turn on cover letters automatically (unless told never to enable\n cover letter with \"--no-cover-letter\" and such).\n * The \"--heads\" option of \"ls-remote\" and \"show-ref\" has been been\n deprecated; \"--branches\" replaces \"--heads\".\n * For over a year, setting add.interactive.useBuiltin configuration\n variable did nothing but giving a \"this does not do anything\"\n warning. The warning has been removed.\n * The http transport can now be told to send request with\n authentication material without first getting a 401 response.\n * A handful of entries are added to the GitFAQ document.\n * \"git var GIT_SHELL_PATH\" should report the path to the shell used\n to spawn external commands, but it didn\u0027t do so on Windows, which\n has been corrected.\n Performance, Internal Implementation, Development Support etc.\n * Advertise \"git contacts\", a tool for newcomers to find people to\n ask review for their patches, a bit more in our developer\n documentation.\n * In addition to building the objects needed, try to link the objects\n that are used in fuzzer tests, to make sure at least they build\n without bitrot, in Linux CI runs.\n * Code to write out reftable has seen some optimization and\n simplification.\n * Tests to ensure interoperability between reftable written by jgit\n and our code have been added and enabled in CI.\n * The singleton index_state instance \"the_index\" has been eliminated\n by always instantiating \"the_repository\" and replacing references\n to \"the_index\" with references to its .index member.\n * Git-GUI has a new maintainer, Johannes Sixt.\n * The \"test-tool\" has been taught to run testsuite tests in parallel,\n bypassing the need to use the \"prove\" tool.\n * The \"whitespace check\" task that was enabled for GitHub Actions CI\n has been ported to GitLab CI.\n * The refs API lost functions that implicitly assumes to work on the\n primary ref_store by forcing the callers to pass a ref_store as an\n argument.\n * Code clean-up to reduce inter-function communication inside\n builtin/config.c done via the use of global variables.\n * The pack bitmap code saw some clean-up to prepare for a follow-up topic.\n * Preliminary code clean-up for \"git send-email\".\n * The default \"creation-factor\" used by \"git format-patch\" has been\n raised to make it more aggressively find matching commits.\n * Before discovering the repository details, We used to assume SHA-1\n as the \"default\" hash function, which has been corrected. Hopefully\n this will smoke out codepaths that rely on such an unwarranted\n assumptions.\n * The project decision making policy has been documented.\n * The strcmp-offset tests have been rewritten using the unit test\n framework.\n * \"git add -p\" learned to complain when an answer with more than one\n letter is given to a prompt that expects a single letter answer.\n * The alias-expanded command lines are logged to the trace output.\n * A new test was added to ensure git commands that are designed to\n run outside repositories do work.\n * A few tests in reftable library have been rewritten using the\n unit test framework.\n * A pair of test helpers that essentially are unit tests on hash\n algorithms have been rewritten using the unit-tests framework.\n * A test helper that essentially is unit tests on the \"decorate\"\n logic has been rewritten using the unit-tests framework.\n * Many memory leaks in the sparse-checkout code paths have been\n plugged.\n * \"make check-docs\" noticed problems and reported to its output but\n failed to signal its findings with its exit status, which has been\n corrected.\n * Building with \"-Werror -Wwrite-strings\" is now supported.\n * To help developers, the build procedure now allows builders to use\n CFLAGS_APPEND to specify additional CFLAGS.\n * \"oidtree\" tests were rewritten to use the unit test framework.\n * The structure of the document that records longer-term project\n decisions to deprecate/remove/update various behaviour has been\n outlined.\n * The pseudo-merge reachability bitmap to help more efficient storage\n of the reachability bitmap in a repository with too many refs has\n been added.\n * When \"git merge\" sees that the index cannot be refreshed (e.g. due\n to another process doing the same in the background), it died but\n after writing MERGE_HEAD etc. files, which was useless for the\n purpose to recover from the failure.\n * The output from \"git cat-file --batch-check\" and \"--batch-command\n (info)\" should not be unbuffered, for which some tests have been\n added.\n * A CPP macro USE_THE_REPOSITORY_VARIABLE is introduced to help\n transition the codebase to rely less on the availability of the\n singleton the_repository instance.\n * \"git version --build-options\" reports the version information of\n OpenSSL and other libraries (if used) in the build.\n * Memory ownership rules for the in-core representation of\n remote.*.url configuration values have been straightened out, which\n resulted in a few leak fixes and code clarification.\n * When bundleURI interface fetches multiple bundles, Git failed to\n take full advantage of all bundles and ended up slurping duplicated\n objects, which has been corrected.\n * The code to deal with modified paths that are out-of-cone in a\n sparsely checked out working tree has been optimized.\n * An existing test of oidmap API has been rewritten with the\n unit-test framework.\n * The \"ort\" merge backend saw one bugfix for a crash that happens\n when inner merge gets killed, and assorted code clean-ups.\n * A new warning message is issued when a command has to expand a\n sparse index to handle working tree cruft that are outside of the\n sparse checkout.\n * The test framework learned to take the test body not as a single\n string but as a here-document.\n * \"git push \u0027\u0027 HEAD:there\" used to hit a BUG(); it has been corrected\n to die with \"fatal: bad repository \u0027\u0027\".\n * What happens when http.cookieFile gets the special value \"\" has\n been clarified in the documentation.\n Fixes\n * \"git rebase --signoff\" used to forget that it needs to add a\n sign-off to the resulting commit when told to continue after a\n conflict stops its operation.\n * The procedure to build multi-pack-index got confused by the\n replace-refs mechanism, which has been corrected by disabling the\n latter.\n * The \"-k\" and \"--rfc\" options of \"format-patch\" will now error out\n when used together, as one tells us not to add anything to the\n title of the commit, and the other one tells us to add \"RFC\" in\n addition to \"PATCH\".\n * \"git stash -S\" did not handle binary files correctly, which has\n been corrected.\n * A scheduled \"git maintenance\" job is expected to work on all\n repositories it knows about, but it stopped at the first one that\n errored out. Now it keeps going.\n * zsh can pretend to be a normal shell pretty well except for some\n glitches that we tickle in some of our scripts. Work them around\n so that \"vimdiff\" and our test suite works well enough with it.\n * Command line completion support for zsh (in contrib/) has been\n updated to stop exposing internal state to end-user shell\n interaction.\n * Tests that try to corrupt in-repository files in chunked format did\n not work well on macOS due to its broken \"mv\", which has been\n worked around.\n * The maximum size of attribute files is enforced more consistently.\n * Unbreak CI jobs so that we do not attempt to use Python 2 that has\n been removed from the platform.\n * Git 2.43 started using the tree of HEAD as the source of attributes\n in a bare repository, which has severe performance implications.\n For now, revert the change, without ripping out a more explicit\n support for the attr.tree configuration variable.\n * The \"--exit-code\" option of \"git diff\" command learned to work with\n the \"--ext-diff\" option.\n * Windows CI running in GitHub Actions started complaining about the\n order of arguments given to calloc(); the imported regex code uses\n the wrong order almost consistently, which has been corrected.\n * Expose \"name conflict\" error when a ref creation fails due to D/F\n conflict in the ref namespace, to improve an error message given by\n \"git fetch\".\n (merge 9339fca23e it/refs-name-conflict later to maint).\n * The SubmittingPatches document now refers folks to manpages\n translation project.\n * The documentation for \"git diff --name-only\" has been clarified\n that it is about showing the names in the post-image tree.\n * The credential helper that talks with osx keychain learned to avoid\n storing back the authentication material it just got received from\n the keychain.\n (merge e1ab45b2da kn/osxkeychain-skip-idempotent-store later to maint).\n * The chainlint script (invoked during \"make test\") did nothing when\n it failed to detect the number of available CPUs. It now falls\n back to 1 CPU to avoid the problem.\n * Revert overly aggressive \"layered defence\" that went into 2.45.1\n and friends, which broke \"git-lfs\", \"git-annex\", and other use\n cases, so that we can rebuild necessary counterparts in the open.\n * \"git init\" in an already created directory, when the user\n configuration has includeif.onbranch, started to fail recently,\n which has been corrected.\n * Memory leaks in \"git mv\" has been plugged.\n * The safe.directory configuration knob has been updated to\n optionally allow leading path matches.\n * An overly large \".gitignore\" files are now rejected silently.\n * Upon expiration event, the credential subsystem forgot to clear\n in-core authentication material other than password (whose support\n was added recently), which has been corrected.\n * Fix for an embarrassing typo that prevented Python2 tests from running\n anywhere.\n * Varargs functions that are unannotated as printf-like or execl-like\n have been annotated as such.\n * \"git am\" has a safety feature to prevent it from starting a new\n session when there already is a session going. It reliably\n triggers when a mbox is given on the command line, but it has to\n rely on the tty-ness of the standard input. Add an explicit way to\n opt out of this safety with a command line option.\n (merge 62c71ace44 jk/am-retry later to maint).\n * A leak in \"git imap-send\" that somehow escapes LSan has been\n plugged.\n * Setting core.abbrev too early before the repository set-up\n (typically in \"git clone\") caused segfault, which as been\n corrected.\n * When the user adds to \"git rebase -i\" instruction to \"pick\" a merge\n commit, the error experience is not pleasant. Such an error is now\n caught earlier in the process that parses the todo list.\n * We forgot to normalize the result of getcwd() to NFC on macOS where\n all other paths are normalized, which has been corrected. This still\n does not address the case where core.precomposeUnicode configuration\n is not defined globally.\n * Earlier we stopped using the tree of HEAD as the default source of\n attributes in a bare repository, but failed to document it. This\n has been corrected.\n * \"git update-server-info\" and \"git commit-graph --write\" have been\n updated to use the tempfile API to avoid leaving cruft after\n failing.\n * An unused extern declaration for mingw has been removed to prevent\n it from causing build failure.\n * A helper function shared between two tests had a copy-paste bug,\n which has been corrected.\n * \"git fetch-pack -k -k\" without passing \"--lock-pack\" (which we\n never do ourselves) did not work at all, which has been corrected.\n * CI job to build minimum fuzzers learned to pass NO_CURL=NoThanks to\n the build procedure, as its build environment does not offer, or\n the rest of the build needs, anything cURL.\n (merge 4e66b5a990 jc/fuzz-sans-curl later to maint).\n * \"git diff --no-ext-diff\" when diff.external is configured ignored\n the \"--color-moved\" option.\n (merge 0f4b0d4cf0 rs/diff-color-moved-w-no-ext-diff-fix later to maint).\n * \"git archive --add-virtual-file=\u003cpath\u003e:\u003ccontents\u003e\" never paid\n attention to the --prefix=\u003cprefix\u003e option but the documentation\n said it would. The documentation has been corrected.\n (merge 72c282098d jc/archive-prefix-with-add-virtual-file later to maint).\n * When GIT_PAGER failed to spawn, depending on the code path taken,\n we failed immediately (correct) or just spew the payload to the\n standard output (incorrect). The code now always fail immediately\n when GIT_PAGER fails.\n (merge 78f0a5d187 rj/pager-die-upon-exec-failure later to maint).\n * date parser updates to be more careful about underflowing epoch\n based timestamp.\n (merge 9d69789770 db/date-underflow-fix later to maint).\n * The Bloom filter used for path limited history traversal was broken\n on systems whose \"char\" is unsigned; update the implementation and\n bump the format version to 2.\n (merge 9c8a9ec787 tb/path-filter-fix later to maint).\n * Typofix.\n (merge 231cf7370e as/pathspec-h-typofix later to maint).\n * Code clean-up.\n (merge 4b837f821e rs/simplify-submodule-helper-super-prefix-invocation later to maint).\n * \"git describe --dirty --broken\" forgot to refresh the index before\n seeing if there is any chang, (\"git describe --dirty\" correctly did\n so), which has been corrected.\n (merge b8ae42e292 as/describe-broken-refresh-index-fix later to maint).\n * Test suite has been taught not to unnecessarily rely on DNS failing\n a bogus external name.\n (merge 407cdbd271 jk/tests-without-dns later to maint).\n * GitWeb update to use committer date consistently in rss/atom feeds.\n (merge cf6ead095b am/gitweb-feed-use-committer-date later to maint).\n * Custom control structures we invented more recently have been\n taught to the clang-format file.\n (merge 1457dff9be rs/clang-format-updates later to maint).\n * Developer build procedure fix.\n (merge df32729866 tb/dev-build-pedantic-fix later to maint).\n * \"git push\" that pushes only deletion gave an unnecessary and\n harmless error message when push negotiation is configured, which\n has been corrected.\n (merge 4d8ee0317f jc/disable-push-nego-for-deletion later to maint).\n * Address-looking strings found on the trailer are now placed on the\n Cc: list after running through sanitize_address by \"git send-email\".\n (merge c852531f45 cb/send-email-sanitize-trailer-addresses later to maint).\n * Tests that use GIT_TEST_SANITIZE_LEAK_LOG feature got their exit\n status inverted, which has been corrected.\n (merge 8c1d6691bc rj/test-sanitize-leak-log-fix later to maint).\n * The http.cookieFile and http.saveCookies configuration variables\n have a few values that need to be avoided, which are now ignored\n with warning messages.\n (merge 4f5822076f jc/http-cookiefile later to maint).\n * Repacking a repository with multi-pack index started making stupid\n pack selections in Git 2.45, which has been corrected.\n (merge 8fb6d11fad ds/midx-write-repack-fix later to maint).\n * Fix documentation mark-up regression in 2.45.\n (merge 6474da0aa4 ja/doc-markup-updates-fix later to maint).\n * Work around asciidoctor\u0027s css that renders `monospace` material\n in the SYNOPSIS section of manual pages as block elements.\n (merge d44ce6ddd5 js/doc-markup-updates-fix later to maint).\n\n- CVE-2024-24577: Fixed arbitrary code execution due to heap corruption\n in git_index_add (bsc#1219660)\n\n- Update to 2.45.2:\n \n * Revert \"defense in depth\" fixes from 2.45.1 broke \u0027git lfs\u0027 and\n \u0027git annex\u0027\n\n- remove dependency on /usr/bin/python3 using\n %python3_fix_shebang_path macro, [bsc#1212476]\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-SLE-Micro-6.0-470",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2025_20721-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2025:20721-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-202520721-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2025:20721-1",
"url": "https://lists.suse.com/pipermail/sle-updates/2025-September/041929.html"
},
{
"category": "self",
"summary": "SUSE Bug 1212476",
"url": "https://bugzilla.suse.com/1212476"
},
{
"category": "self",
"summary": "SUSE Bug 1219660",
"url": "https://bugzilla.suse.com/1219660"
},
{
"category": "self",
"summary": "SUSE Bug 1235600",
"url": "https://bugzilla.suse.com/1235600"
},
{
"category": "self",
"summary": "SUSE Bug 1235601",
"url": "https://bugzilla.suse.com/1235601"
},
{
"category": "self",
"summary": "SUSE Bug 1239989",
"url": "https://bugzilla.suse.com/1239989"
},
{
"category": "self",
"summary": "SUSE Bug 1245938",
"url": "https://bugzilla.suse.com/1245938"
},
{
"category": "self",
"summary": "SUSE Bug 1245939",
"url": "https://bugzilla.suse.com/1245939"
},
{
"category": "self",
"summary": "SUSE Bug 1245942",
"url": "https://bugzilla.suse.com/1245942"
},
{
"category": "self",
"summary": "SUSE Bug 1245943",
"url": "https://bugzilla.suse.com/1245943"
},
{
"category": "self",
"summary": "SUSE Bug 1245946",
"url": "https://bugzilla.suse.com/1245946"
},
{
"category": "self",
"summary": "SUSE Bug 1245947",
"url": "https://bugzilla.suse.com/1245947"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-24577 page",
"url": "https://www.suse.com/security/cve/CVE-2024-24577/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-50349 page",
"url": "https://www.suse.com/security/cve/CVE-2024-50349/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-52006 page",
"url": "https://www.suse.com/security/cve/CVE-2024-52006/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-27613 page",
"url": "https://www.suse.com/security/cve/CVE-2025-27613/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-27614 page",
"url": "https://www.suse.com/security/cve/CVE-2025-27614/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-46334 page",
"url": "https://www.suse.com/security/cve/CVE-2025-46334/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-46835 page",
"url": "https://www.suse.com/security/cve/CVE-2025-46835/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-48384 page",
"url": "https://www.suse.com/security/cve/CVE-2025-48384/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-48385 page",
"url": "https://www.suse.com/security/cve/CVE-2025-48385/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-48386 page",
"url": "https://www.suse.com/security/cve/CVE-2025-48386/"
}
],
"title": "Security update for git",
"tracking": {
"current_release_date": "2025-09-22T09:07:57Z",
"generator": {
"date": "2025-09-22T09:07:57Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2025:20721-1",
"initial_release_date": "2025-09-22T09:07:57Z",
"revision_history": [
{
"date": "2025-09-22T09:07:57Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "git-2.51.0-1.1.aarch64",
"product": {
"name": "git-2.51.0-1.1.aarch64",
"product_id": "git-2.51.0-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-core-2.51.0-1.1.aarch64",
"product": {
"name": "git-core-2.51.0-1.1.aarch64",
"product_id": "git-core-2.51.0-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "perl-Git-2.51.0-1.1.aarch64",
"product": {
"name": "perl-Git-2.51.0-1.1.aarch64",
"product_id": "perl-Git-2.51.0-1.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "git-2.51.0-1.1.s390x",
"product": {
"name": "git-2.51.0-1.1.s390x",
"product_id": "git-2.51.0-1.1.s390x"
}
},
{
"category": "product_version",
"name": "git-core-2.51.0-1.1.s390x",
"product": {
"name": "git-core-2.51.0-1.1.s390x",
"product_id": "git-core-2.51.0-1.1.s390x"
}
},
{
"category": "product_version",
"name": "perl-Git-2.51.0-1.1.s390x",
"product": {
"name": "perl-Git-2.51.0-1.1.s390x",
"product_id": "perl-Git-2.51.0-1.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "git-2.51.0-1.1.x86_64",
"product": {
"name": "git-2.51.0-1.1.x86_64",
"product_id": "git-2.51.0-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-core-2.51.0-1.1.x86_64",
"product": {
"name": "git-core-2.51.0-1.1.x86_64",
"product_id": "git-core-2.51.0-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "perl-Git-2.51.0-1.1.x86_64",
"product": {
"name": "perl-Git-2.51.0-1.1.x86_64",
"product_id": "perl-Git-2.51.0-1.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Micro 6.0",
"product": {
"name": "SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sl-micro:6.0"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.51.0-1.1.aarch64 as component of SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0:git-2.51.0-1.1.aarch64"
},
"product_reference": "git-2.51.0-1.1.aarch64",
"relates_to_product_reference": "SUSE Linux Micro 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.51.0-1.1.s390x as component of SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0:git-2.51.0-1.1.s390x"
},
"product_reference": "git-2.51.0-1.1.s390x",
"relates_to_product_reference": "SUSE Linux Micro 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.51.0-1.1.x86_64 as component of SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0:git-2.51.0-1.1.x86_64"
},
"product_reference": "git-2.51.0-1.1.x86_64",
"relates_to_product_reference": "SUSE Linux Micro 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.51.0-1.1.aarch64 as component of SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0:git-core-2.51.0-1.1.aarch64"
},
"product_reference": "git-core-2.51.0-1.1.aarch64",
"relates_to_product_reference": "SUSE Linux Micro 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.51.0-1.1.s390x as component of SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0:git-core-2.51.0-1.1.s390x"
},
"product_reference": "git-core-2.51.0-1.1.s390x",
"relates_to_product_reference": "SUSE Linux Micro 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.51.0-1.1.x86_64 as component of SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0:git-core-2.51.0-1.1.x86_64"
},
"product_reference": "git-core-2.51.0-1.1.x86_64",
"relates_to_product_reference": "SUSE Linux Micro 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.51.0-1.1.aarch64 as component of SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0:perl-Git-2.51.0-1.1.aarch64"
},
"product_reference": "perl-Git-2.51.0-1.1.aarch64",
"relates_to_product_reference": "SUSE Linux Micro 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.51.0-1.1.s390x as component of SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0:perl-Git-2.51.0-1.1.s390x"
},
"product_reference": "perl-Git-2.51.0-1.1.s390x",
"relates_to_product_reference": "SUSE Linux Micro 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.51.0-1.1.x86_64 as component of SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0:perl-Git-2.51.0-1.1.x86_64"
},
"product_reference": "perl-Git-2.51.0-1.1.x86_64",
"relates_to_product_reference": "SUSE Linux Micro 6.0"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-24577",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-24577"
}
],
"notes": [
{
"category": "general",
"text": "libgit2 is a portable C implementation of the Git core methods provided as a linkable library with a solid API, allowing to build Git functionality into your application. Using well-crafted inputs to `git_index_add` can cause heap corruption that could be leveraged for arbitrary code execution. There is an issue in the `has_dir_name` function in `src/libgit2/index.c`, which frees an entry that should not be freed. The freed entry is later used and overwritten with potentially bad actor-controlled data leading to controlled heap corruption. Depending on the application that uses libgit2, this could lead to arbitrary code execution. This issue has been patched in version 1.6.5 and 1.7.2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:git-2.51.0-1.1.aarch64",
"SUSE Linux Micro 6.0:git-2.51.0-1.1.s390x",
"SUSE Linux Micro 6.0:git-2.51.0-1.1.x86_64",
"SUSE Linux Micro 6.0:git-core-2.51.0-1.1.aarch64",
"SUSE Linux Micro 6.0:git-core-2.51.0-1.1.s390x",
"SUSE Linux Micro 6.0:git-core-2.51.0-1.1.x86_64",
"SUSE Linux Micro 6.0:perl-Git-2.51.0-1.1.aarch64",
"SUSE Linux Micro 6.0:perl-Git-2.51.0-1.1.s390x",
"SUSE Linux Micro 6.0:perl-Git-2.51.0-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-24577",
"url": "https://www.suse.com/security/cve/CVE-2024-24577"
},
{
"category": "external",
"summary": "SUSE Bug 1219660 for CVE-2024-24577",
"url": "https://bugzilla.suse.com/1219660"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:git-2.51.0-1.1.aarch64",
"SUSE Linux Micro 6.0:git-2.51.0-1.1.s390x",
"SUSE Linux Micro 6.0:git-2.51.0-1.1.x86_64",
"SUSE Linux Micro 6.0:git-core-2.51.0-1.1.aarch64",
"SUSE Linux Micro 6.0:git-core-2.51.0-1.1.s390x",
"SUSE Linux Micro 6.0:git-core-2.51.0-1.1.x86_64",
"SUSE Linux Micro 6.0:perl-Git-2.51.0-1.1.aarch64",
"SUSE Linux Micro 6.0:perl-Git-2.51.0-1.1.s390x",
"SUSE Linux Micro 6.0:perl-Git-2.51.0-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.6,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:git-2.51.0-1.1.aarch64",
"SUSE Linux Micro 6.0:git-2.51.0-1.1.s390x",
"SUSE Linux Micro 6.0:git-2.51.0-1.1.x86_64",
"SUSE Linux Micro 6.0:git-core-2.51.0-1.1.aarch64",
"SUSE Linux Micro 6.0:git-core-2.51.0-1.1.s390x",
"SUSE Linux Micro 6.0:git-core-2.51.0-1.1.x86_64",
"SUSE Linux Micro 6.0:perl-Git-2.51.0-1.1.aarch64",
"SUSE Linux Micro 6.0:perl-Git-2.51.0-1.1.s390x",
"SUSE Linux Micro 6.0:perl-Git-2.51.0-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-09-22T09:07:57Z",
"details": "important"
}
],
"title": "CVE-2024-24577"
},
{
"cve": "CVE-2024-50349",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-50349"
}
],
"notes": [
{
"category": "general",
"text": "Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full access to internals. When Git asks for credentials via a terminal prompt (i.e. without using any credential helper), it prints out the host name for which the user is expected to provide a username and/or a password. At this stage, any URL-encoded parts have been decoded already, and are printed verbatim. This allows attackers to craft URLs that contain ANSI escape sequences that the terminal interpret to confuse users e.g. into providing passwords for trusted Git hosting sites when in fact they are then sent to untrusted sites that are under the attacker\u0027s control. This issue has been patch via commits `7725b81` and `c903985` which are included in release versions v2.48.1, v2.47.2, v2.46.3, v2.45.3, v2.44.3, v2.43.6, v2.42.4, v2.41.3, and v2.40.4. Users are advised to upgrade. Users unable to upgrade should avoid cloning from untrusted URLs, especially recursive clones.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:git-2.51.0-1.1.aarch64",
"SUSE Linux Micro 6.0:git-2.51.0-1.1.s390x",
"SUSE Linux Micro 6.0:git-2.51.0-1.1.x86_64",
"SUSE Linux Micro 6.0:git-core-2.51.0-1.1.aarch64",
"SUSE Linux Micro 6.0:git-core-2.51.0-1.1.s390x",
"SUSE Linux Micro 6.0:git-core-2.51.0-1.1.x86_64",
"SUSE Linux Micro 6.0:perl-Git-2.51.0-1.1.aarch64",
"SUSE Linux Micro 6.0:perl-Git-2.51.0-1.1.s390x",
"SUSE Linux Micro 6.0:perl-Git-2.51.0-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-50349",
"url": "https://www.suse.com/security/cve/CVE-2024-50349"
},
{
"category": "external",
"summary": "SUSE Bug 1235600 for CVE-2024-50349",
"url": "https://bugzilla.suse.com/1235600"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:git-2.51.0-1.1.aarch64",
"SUSE Linux Micro 6.0:git-2.51.0-1.1.s390x",
"SUSE Linux Micro 6.0:git-2.51.0-1.1.x86_64",
"SUSE Linux Micro 6.0:git-core-2.51.0-1.1.aarch64",
"SUSE Linux Micro 6.0:git-core-2.51.0-1.1.s390x",
"SUSE Linux Micro 6.0:git-core-2.51.0-1.1.x86_64",
"SUSE Linux Micro 6.0:perl-Git-2.51.0-1.1.aarch64",
"SUSE Linux Micro 6.0:perl-Git-2.51.0-1.1.s390x",
"SUSE Linux Micro 6.0:perl-Git-2.51.0-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.1,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:git-2.51.0-1.1.aarch64",
"SUSE Linux Micro 6.0:git-2.51.0-1.1.s390x",
"SUSE Linux Micro 6.0:git-2.51.0-1.1.x86_64",
"SUSE Linux Micro 6.0:git-core-2.51.0-1.1.aarch64",
"SUSE Linux Micro 6.0:git-core-2.51.0-1.1.s390x",
"SUSE Linux Micro 6.0:git-core-2.51.0-1.1.x86_64",
"SUSE Linux Micro 6.0:perl-Git-2.51.0-1.1.aarch64",
"SUSE Linux Micro 6.0:perl-Git-2.51.0-1.1.s390x",
"SUSE Linux Micro 6.0:perl-Git-2.51.0-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-09-22T09:07:57Z",
"details": "moderate"
}
],
"title": "CVE-2024-50349"
},
{
"cve": "CVE-2024-52006",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-52006"
}
],
"notes": [
{
"category": "general",
"text": "Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full access to internals. Git defines a line-based protocol that is used to exchange information between Git and Git credential helpers. Some ecosystems (most notably, .NET and node.js) interpret single Carriage Return characters as newlines, which renders the protections against CVE-2020-5260 incomplete for credential helpers that treat Carriage Returns in this way. This issue has been addressed in commit `b01b9b8` which is included in release versions v2.48.1, v2.47.2, v2.46.3, v2.45.3, v2.44.3, v2.43.6, v2.42.4, v2.41.3, and v2.40.4. Users are advised to upgrade. Users unable to upgrade should avoid cloning from untrusted URLs, especially recursive clones.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:git-2.51.0-1.1.aarch64",
"SUSE Linux Micro 6.0:git-2.51.0-1.1.s390x",
"SUSE Linux Micro 6.0:git-2.51.0-1.1.x86_64",
"SUSE Linux Micro 6.0:git-core-2.51.0-1.1.aarch64",
"SUSE Linux Micro 6.0:git-core-2.51.0-1.1.s390x",
"SUSE Linux Micro 6.0:git-core-2.51.0-1.1.x86_64",
"SUSE Linux Micro 6.0:perl-Git-2.51.0-1.1.aarch64",
"SUSE Linux Micro 6.0:perl-Git-2.51.0-1.1.s390x",
"SUSE Linux Micro 6.0:perl-Git-2.51.0-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-52006",
"url": "https://www.suse.com/security/cve/CVE-2024-52006"
},
{
"category": "external",
"summary": "SUSE Bug 1235601 for CVE-2024-52006",
"url": "https://bugzilla.suse.com/1235601"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:git-2.51.0-1.1.aarch64",
"SUSE Linux Micro 6.0:git-2.51.0-1.1.s390x",
"SUSE Linux Micro 6.0:git-2.51.0-1.1.x86_64",
"SUSE Linux Micro 6.0:git-core-2.51.0-1.1.aarch64",
"SUSE Linux Micro 6.0:git-core-2.51.0-1.1.s390x",
"SUSE Linux Micro 6.0:git-core-2.51.0-1.1.x86_64",
"SUSE Linux Micro 6.0:perl-Git-2.51.0-1.1.aarch64",
"SUSE Linux Micro 6.0:perl-Git-2.51.0-1.1.s390x",
"SUSE Linux Micro 6.0:perl-Git-2.51.0-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:git-2.51.0-1.1.aarch64",
"SUSE Linux Micro 6.0:git-2.51.0-1.1.s390x",
"SUSE Linux Micro 6.0:git-2.51.0-1.1.x86_64",
"SUSE Linux Micro 6.0:git-core-2.51.0-1.1.aarch64",
"SUSE Linux Micro 6.0:git-core-2.51.0-1.1.s390x",
"SUSE Linux Micro 6.0:git-core-2.51.0-1.1.x86_64",
"SUSE Linux Micro 6.0:perl-Git-2.51.0-1.1.aarch64",
"SUSE Linux Micro 6.0:perl-Git-2.51.0-1.1.s390x",
"SUSE Linux Micro 6.0:perl-Git-2.51.0-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-09-22T09:07:57Z",
"details": "moderate"
}
],
"title": "CVE-2024-52006"
},
{
"cve": "CVE-2025-27613",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-27613"
}
],
"notes": [
{
"category": "general",
"text": "Gitk is a Tcl/Tk based Git history browser. Starting with 1.7.0, when a user clones an untrusted repository and runs gitk without additional command arguments, files for which the user has write permission can be created and truncated. The option Support per-file encoding must have been enabled before in Gitk\u0027s Preferences. This option is disabled by default. The same happens when Show origin of this line is used in the main window (regardless of whether Support per-file encoding is enabled or not). This vulnerability is fixed in 2.43.7, 2.44.4, 2.45.4, 2.46.4, 2.47.3, 2.48.2, 2.49.1, and 2.50.1.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:git-2.51.0-1.1.aarch64",
"SUSE Linux Micro 6.0:git-2.51.0-1.1.s390x",
"SUSE Linux Micro 6.0:git-2.51.0-1.1.x86_64",
"SUSE Linux Micro 6.0:git-core-2.51.0-1.1.aarch64",
"SUSE Linux Micro 6.0:git-core-2.51.0-1.1.s390x",
"SUSE Linux Micro 6.0:git-core-2.51.0-1.1.x86_64",
"SUSE Linux Micro 6.0:perl-Git-2.51.0-1.1.aarch64",
"SUSE Linux Micro 6.0:perl-Git-2.51.0-1.1.s390x",
"SUSE Linux Micro 6.0:perl-Git-2.51.0-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-27613",
"url": "https://www.suse.com/security/cve/CVE-2025-27613"
},
{
"category": "external",
"summary": "SUSE Bug 1245938 for CVE-2025-27613",
"url": "https://bugzilla.suse.com/1245938"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:git-2.51.0-1.1.aarch64",
"SUSE Linux Micro 6.0:git-2.51.0-1.1.s390x",
"SUSE Linux Micro 6.0:git-2.51.0-1.1.x86_64",
"SUSE Linux Micro 6.0:git-core-2.51.0-1.1.aarch64",
"SUSE Linux Micro 6.0:git-core-2.51.0-1.1.s390x",
"SUSE Linux Micro 6.0:git-core-2.51.0-1.1.x86_64",
"SUSE Linux Micro 6.0:perl-Git-2.51.0-1.1.aarch64",
"SUSE Linux Micro 6.0:perl-Git-2.51.0-1.1.s390x",
"SUSE Linux Micro 6.0:perl-Git-2.51.0-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:git-2.51.0-1.1.aarch64",
"SUSE Linux Micro 6.0:git-2.51.0-1.1.s390x",
"SUSE Linux Micro 6.0:git-2.51.0-1.1.x86_64",
"SUSE Linux Micro 6.0:git-core-2.51.0-1.1.aarch64",
"SUSE Linux Micro 6.0:git-core-2.51.0-1.1.s390x",
"SUSE Linux Micro 6.0:git-core-2.51.0-1.1.x86_64",
"SUSE Linux Micro 6.0:perl-Git-2.51.0-1.1.aarch64",
"SUSE Linux Micro 6.0:perl-Git-2.51.0-1.1.s390x",
"SUSE Linux Micro 6.0:perl-Git-2.51.0-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-09-22T09:07:57Z",
"details": "moderate"
}
],
"title": "CVE-2025-27613"
},
{
"cve": "CVE-2025-27614",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-27614"
}
],
"notes": [
{
"category": "general",
"text": "Gitk is a Tcl/Tk based Git history browser. Starting with 2.41.0, a Git repository can be crafted in such a way that with some social engineering a user who has cloned the repository can be tricked into running any script (e.g., Bourne shell, Perl, Python, ...) supplied by the attacker by invoking gitk filename, where filename has a particular structure. The script is run with the privileges of the user. This vulnerability is fixed in 2.43.7, 2.44.4, 2.45.4, 2.46.4, 2.47.3, 2.48.2, 2.49.1, and 2.50.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:git-2.51.0-1.1.aarch64",
"SUSE Linux Micro 6.0:git-2.51.0-1.1.s390x",
"SUSE Linux Micro 6.0:git-2.51.0-1.1.x86_64",
"SUSE Linux Micro 6.0:git-core-2.51.0-1.1.aarch64",
"SUSE Linux Micro 6.0:git-core-2.51.0-1.1.s390x",
"SUSE Linux Micro 6.0:git-core-2.51.0-1.1.x86_64",
"SUSE Linux Micro 6.0:perl-Git-2.51.0-1.1.aarch64",
"SUSE Linux Micro 6.0:perl-Git-2.51.0-1.1.s390x",
"SUSE Linux Micro 6.0:perl-Git-2.51.0-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-27614",
"url": "https://www.suse.com/security/cve/CVE-2025-27614"
},
{
"category": "external",
"summary": "SUSE Bug 1245939 for CVE-2025-27614",
"url": "https://bugzilla.suse.com/1245939"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:git-2.51.0-1.1.aarch64",
"SUSE Linux Micro 6.0:git-2.51.0-1.1.s390x",
"SUSE Linux Micro 6.0:git-2.51.0-1.1.x86_64",
"SUSE Linux Micro 6.0:git-core-2.51.0-1.1.aarch64",
"SUSE Linux Micro 6.0:git-core-2.51.0-1.1.s390x",
"SUSE Linux Micro 6.0:git-core-2.51.0-1.1.x86_64",
"SUSE Linux Micro 6.0:perl-Git-2.51.0-1.1.aarch64",
"SUSE Linux Micro 6.0:perl-Git-2.51.0-1.1.s390x",
"SUSE Linux Micro 6.0:perl-Git-2.51.0-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:git-2.51.0-1.1.aarch64",
"SUSE Linux Micro 6.0:git-2.51.0-1.1.s390x",
"SUSE Linux Micro 6.0:git-2.51.0-1.1.x86_64",
"SUSE Linux Micro 6.0:git-core-2.51.0-1.1.aarch64",
"SUSE Linux Micro 6.0:git-core-2.51.0-1.1.s390x",
"SUSE Linux Micro 6.0:git-core-2.51.0-1.1.x86_64",
"SUSE Linux Micro 6.0:perl-Git-2.51.0-1.1.aarch64",
"SUSE Linux Micro 6.0:perl-Git-2.51.0-1.1.s390x",
"SUSE Linux Micro 6.0:perl-Git-2.51.0-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-09-22T09:07:57Z",
"details": "important"
}
],
"title": "CVE-2025-27614"
},
{
"cve": "CVE-2025-46334",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-46334"
}
],
"notes": [
{
"category": "general",
"text": "Git GUI allows you to use the Git source control management tools via a GUI. A malicious repository can ship versions of sh.exe or typical textconv filter programs such as astextplain. Due to the unfortunate design of Tcl on Windows, the search path when looking for an executable always includes the current directory. The mentioned programs are invoked when the user selects Git Bash or Browse Files from the menu. This vulnerability is fixed in 2.43.7, 2.44.4, 2.45.4, 2.46.4, 2.47.3, 2.48.2, 2.49.1, and 2.50.1.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:git-2.51.0-1.1.aarch64",
"SUSE Linux Micro 6.0:git-2.51.0-1.1.s390x",
"SUSE Linux Micro 6.0:git-2.51.0-1.1.x86_64",
"SUSE Linux Micro 6.0:git-core-2.51.0-1.1.aarch64",
"SUSE Linux Micro 6.0:git-core-2.51.0-1.1.s390x",
"SUSE Linux Micro 6.0:git-core-2.51.0-1.1.x86_64",
"SUSE Linux Micro 6.0:perl-Git-2.51.0-1.1.aarch64",
"SUSE Linux Micro 6.0:perl-Git-2.51.0-1.1.s390x",
"SUSE Linux Micro 6.0:perl-Git-2.51.0-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-46334",
"url": "https://www.suse.com/security/cve/CVE-2025-46334"
},
{
"category": "external",
"summary": "SUSE Bug 1245940 for CVE-2025-46334",
"url": "https://bugzilla.suse.com/1245940"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:git-2.51.0-1.1.aarch64",
"SUSE Linux Micro 6.0:git-2.51.0-1.1.s390x",
"SUSE Linux Micro 6.0:git-2.51.0-1.1.x86_64",
"SUSE Linux Micro 6.0:git-core-2.51.0-1.1.aarch64",
"SUSE Linux Micro 6.0:git-core-2.51.0-1.1.s390x",
"SUSE Linux Micro 6.0:git-core-2.51.0-1.1.x86_64",
"SUSE Linux Micro 6.0:perl-Git-2.51.0-1.1.aarch64",
"SUSE Linux Micro 6.0:perl-Git-2.51.0-1.1.s390x",
"SUSE Linux Micro 6.0:perl-Git-2.51.0-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-09-22T09:07:57Z",
"details": "important"
}
],
"title": "CVE-2025-46334"
},
{
"cve": "CVE-2025-46835",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-46835"
}
],
"notes": [
{
"category": "general",
"text": "Git GUI allows you to use the Git source control management tools via a GUI. When a user clones an untrusted repository and is tricked into editing a file located in a maliciously named directory in the repository, then Git GUI can create and overwrite files for which the user has write permission. This vulnerability is fixed in 2.43.7, 2.44.4, 2.45.4, 2.46.4, 2.47.3, 2.48.2, 2.49.1, and 2.50.1.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:git-2.51.0-1.1.aarch64",
"SUSE Linux Micro 6.0:git-2.51.0-1.1.s390x",
"SUSE Linux Micro 6.0:git-2.51.0-1.1.x86_64",
"SUSE Linux Micro 6.0:git-core-2.51.0-1.1.aarch64",
"SUSE Linux Micro 6.0:git-core-2.51.0-1.1.s390x",
"SUSE Linux Micro 6.0:git-core-2.51.0-1.1.x86_64",
"SUSE Linux Micro 6.0:perl-Git-2.51.0-1.1.aarch64",
"SUSE Linux Micro 6.0:perl-Git-2.51.0-1.1.s390x",
"SUSE Linux Micro 6.0:perl-Git-2.51.0-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-46835",
"url": "https://www.suse.com/security/cve/CVE-2025-46835"
},
{
"category": "external",
"summary": "SUSE Bug 1245942 for CVE-2025-46835",
"url": "https://bugzilla.suse.com/1245942"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:git-2.51.0-1.1.aarch64",
"SUSE Linux Micro 6.0:git-2.51.0-1.1.s390x",
"SUSE Linux Micro 6.0:git-2.51.0-1.1.x86_64",
"SUSE Linux Micro 6.0:git-core-2.51.0-1.1.aarch64",
"SUSE Linux Micro 6.0:git-core-2.51.0-1.1.s390x",
"SUSE Linux Micro 6.0:git-core-2.51.0-1.1.x86_64",
"SUSE Linux Micro 6.0:perl-Git-2.51.0-1.1.aarch64",
"SUSE Linux Micro 6.0:perl-Git-2.51.0-1.1.s390x",
"SUSE Linux Micro 6.0:perl-Git-2.51.0-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:git-2.51.0-1.1.aarch64",
"SUSE Linux Micro 6.0:git-2.51.0-1.1.s390x",
"SUSE Linux Micro 6.0:git-2.51.0-1.1.x86_64",
"SUSE Linux Micro 6.0:git-core-2.51.0-1.1.aarch64",
"SUSE Linux Micro 6.0:git-core-2.51.0-1.1.s390x",
"SUSE Linux Micro 6.0:git-core-2.51.0-1.1.x86_64",
"SUSE Linux Micro 6.0:perl-Git-2.51.0-1.1.aarch64",
"SUSE Linux Micro 6.0:perl-Git-2.51.0-1.1.s390x",
"SUSE Linux Micro 6.0:perl-Git-2.51.0-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-09-22T09:07:57Z",
"details": "moderate"
}
],
"title": "CVE-2025-46835"
},
{
"cve": "CVE-2025-48384",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-48384"
}
],
"notes": [
{
"category": "general",
"text": "Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full access to internals. When reading a config value, Git strips any trailing carriage return and line feed (CRLF). When writing a config entry, values with a trailing CR are not quoted, causing the CR to be lost when the config is later read. When initializing a submodule, if the submodule path contains a trailing CR, the altered path is read resulting in the submodule being checked out to an incorrect location. If a symlink exists that points the altered path to the submodule hooks directory, and the submodule contains an executable post-checkout hook, the script may be unintentionally executed after checkout. This vulnerability is fixed in v2.43.7, v2.44.4, v2.45.4, v2.46.4, v2.47.3, v2.48.2, v2.49.1, and v2.50.1.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:git-2.51.0-1.1.aarch64",
"SUSE Linux Micro 6.0:git-2.51.0-1.1.s390x",
"SUSE Linux Micro 6.0:git-2.51.0-1.1.x86_64",
"SUSE Linux Micro 6.0:git-core-2.51.0-1.1.aarch64",
"SUSE Linux Micro 6.0:git-core-2.51.0-1.1.s390x",
"SUSE Linux Micro 6.0:git-core-2.51.0-1.1.x86_64",
"SUSE Linux Micro 6.0:perl-Git-2.51.0-1.1.aarch64",
"SUSE Linux Micro 6.0:perl-Git-2.51.0-1.1.s390x",
"SUSE Linux Micro 6.0:perl-Git-2.51.0-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-48384",
"url": "https://www.suse.com/security/cve/CVE-2025-48384"
},
{
"category": "external",
"summary": "SUSE Bug 1245943 for CVE-2025-48384",
"url": "https://bugzilla.suse.com/1245943"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:git-2.51.0-1.1.aarch64",
"SUSE Linux Micro 6.0:git-2.51.0-1.1.s390x",
"SUSE Linux Micro 6.0:git-2.51.0-1.1.x86_64",
"SUSE Linux Micro 6.0:git-core-2.51.0-1.1.aarch64",
"SUSE Linux Micro 6.0:git-core-2.51.0-1.1.s390x",
"SUSE Linux Micro 6.0:git-core-2.51.0-1.1.x86_64",
"SUSE Linux Micro 6.0:perl-Git-2.51.0-1.1.aarch64",
"SUSE Linux Micro 6.0:perl-Git-2.51.0-1.1.s390x",
"SUSE Linux Micro 6.0:perl-Git-2.51.0-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:git-2.51.0-1.1.aarch64",
"SUSE Linux Micro 6.0:git-2.51.0-1.1.s390x",
"SUSE Linux Micro 6.0:git-2.51.0-1.1.x86_64",
"SUSE Linux Micro 6.0:git-core-2.51.0-1.1.aarch64",
"SUSE Linux Micro 6.0:git-core-2.51.0-1.1.s390x",
"SUSE Linux Micro 6.0:git-core-2.51.0-1.1.x86_64",
"SUSE Linux Micro 6.0:perl-Git-2.51.0-1.1.aarch64",
"SUSE Linux Micro 6.0:perl-Git-2.51.0-1.1.s390x",
"SUSE Linux Micro 6.0:perl-Git-2.51.0-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-09-22T09:07:57Z",
"details": "important"
}
],
"title": "CVE-2025-48384"
},
{
"cve": "CVE-2025-48385",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-48385"
}
],
"notes": [
{
"category": "general",
"text": "Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full access to internals. When cloning a repository Git knows to optionally fetch a bundle advertised by the remote server, which allows the server-side to offload parts of the clone to a CDN. The Git client does not perform sufficient validation of the advertised bundles, which allows the remote side to perform protocol injection. This protocol injection can cause the client to write the fetched bundle to a location controlled by the adversary. The fetched content is fully controlled by the server, which can in the worst case lead to arbitrary code execution. The use of bundle URIs is not enabled by default and can be controlled by the bundle.heuristic config option. Some cases of the vulnerability require that the adversary is in control of where a repository will be cloned to. This either requires social engineering or a recursive clone with submodules. These cases can thus be avoided by disabling recursive clones. This vulnerability is fixed in v2.43.7, v2.44.4, v2.45.4, v2.46.4, v2.47.3, v2.48.2, v2.49.1, and v2.50.1.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:git-2.51.0-1.1.aarch64",
"SUSE Linux Micro 6.0:git-2.51.0-1.1.s390x",
"SUSE Linux Micro 6.0:git-2.51.0-1.1.x86_64",
"SUSE Linux Micro 6.0:git-core-2.51.0-1.1.aarch64",
"SUSE Linux Micro 6.0:git-core-2.51.0-1.1.s390x",
"SUSE Linux Micro 6.0:git-core-2.51.0-1.1.x86_64",
"SUSE Linux Micro 6.0:perl-Git-2.51.0-1.1.aarch64",
"SUSE Linux Micro 6.0:perl-Git-2.51.0-1.1.s390x",
"SUSE Linux Micro 6.0:perl-Git-2.51.0-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-48385",
"url": "https://www.suse.com/security/cve/CVE-2025-48385"
},
{
"category": "external",
"summary": "SUSE Bug 1245946 for CVE-2025-48385",
"url": "https://bugzilla.suse.com/1245946"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:git-2.51.0-1.1.aarch64",
"SUSE Linux Micro 6.0:git-2.51.0-1.1.s390x",
"SUSE Linux Micro 6.0:git-2.51.0-1.1.x86_64",
"SUSE Linux Micro 6.0:git-core-2.51.0-1.1.aarch64",
"SUSE Linux Micro 6.0:git-core-2.51.0-1.1.s390x",
"SUSE Linux Micro 6.0:git-core-2.51.0-1.1.x86_64",
"SUSE Linux Micro 6.0:perl-Git-2.51.0-1.1.aarch64",
"SUSE Linux Micro 6.0:perl-Git-2.51.0-1.1.s390x",
"SUSE Linux Micro 6.0:perl-Git-2.51.0-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:git-2.51.0-1.1.aarch64",
"SUSE Linux Micro 6.0:git-2.51.0-1.1.s390x",
"SUSE Linux Micro 6.0:git-2.51.0-1.1.x86_64",
"SUSE Linux Micro 6.0:git-core-2.51.0-1.1.aarch64",
"SUSE Linux Micro 6.0:git-core-2.51.0-1.1.s390x",
"SUSE Linux Micro 6.0:git-core-2.51.0-1.1.x86_64",
"SUSE Linux Micro 6.0:perl-Git-2.51.0-1.1.aarch64",
"SUSE Linux Micro 6.0:perl-Git-2.51.0-1.1.s390x",
"SUSE Linux Micro 6.0:perl-Git-2.51.0-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-09-22T09:07:57Z",
"details": "important"
}
],
"title": "CVE-2025-48385"
},
{
"cve": "CVE-2025-48386",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-48386"
}
],
"notes": [
{
"category": "general",
"text": "Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full access to internals. The wincred credential helper uses a static buffer (target) as a unique key for storing and comparing against internal storage. This credential helper does not properly bounds check the available space remaining in the buffer before appending to it with wcsncat(), leading to potential buffer overflows. This vulnerability is fixed in v2.43.7, v2.44.4, v2.45.4, v2.46.4, v2.47.3, v2.48.2, v2.49.1, and v2.50.1.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:git-2.51.0-1.1.aarch64",
"SUSE Linux Micro 6.0:git-2.51.0-1.1.s390x",
"SUSE Linux Micro 6.0:git-2.51.0-1.1.x86_64",
"SUSE Linux Micro 6.0:git-core-2.51.0-1.1.aarch64",
"SUSE Linux Micro 6.0:git-core-2.51.0-1.1.s390x",
"SUSE Linux Micro 6.0:git-core-2.51.0-1.1.x86_64",
"SUSE Linux Micro 6.0:perl-Git-2.51.0-1.1.aarch64",
"SUSE Linux Micro 6.0:perl-Git-2.51.0-1.1.s390x",
"SUSE Linux Micro 6.0:perl-Git-2.51.0-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-48386",
"url": "https://www.suse.com/security/cve/CVE-2025-48386"
},
{
"category": "external",
"summary": "SUSE Bug 1245947 for CVE-2025-48386",
"url": "https://bugzilla.suse.com/1245947"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:git-2.51.0-1.1.aarch64",
"SUSE Linux Micro 6.0:git-2.51.0-1.1.s390x",
"SUSE Linux Micro 6.0:git-2.51.0-1.1.x86_64",
"SUSE Linux Micro 6.0:git-core-2.51.0-1.1.aarch64",
"SUSE Linux Micro 6.0:git-core-2.51.0-1.1.s390x",
"SUSE Linux Micro 6.0:git-core-2.51.0-1.1.x86_64",
"SUSE Linux Micro 6.0:perl-Git-2.51.0-1.1.aarch64",
"SUSE Linux Micro 6.0:perl-Git-2.51.0-1.1.s390x",
"SUSE Linux Micro 6.0:perl-Git-2.51.0-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:git-2.51.0-1.1.aarch64",
"SUSE Linux Micro 6.0:git-2.51.0-1.1.s390x",
"SUSE Linux Micro 6.0:git-2.51.0-1.1.x86_64",
"SUSE Linux Micro 6.0:git-core-2.51.0-1.1.aarch64",
"SUSE Linux Micro 6.0:git-core-2.51.0-1.1.s390x",
"SUSE Linux Micro 6.0:git-core-2.51.0-1.1.x86_64",
"SUSE Linux Micro 6.0:perl-Git-2.51.0-1.1.aarch64",
"SUSE Linux Micro 6.0:perl-Git-2.51.0-1.1.s390x",
"SUSE Linux Micro 6.0:perl-Git-2.51.0-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-09-22T09:07:57Z",
"details": "moderate"
}
],
"title": "CVE-2025-48386"
}
]
}
suse-su-2025:03012-1
Vulnerability from csaf_suse
Published
2025-08-29 00:07
Modified
2025-08-29 00:07
Summary
security update for git, git-lfs, obs-scm-bridge, python-PyYAML
Notes
Title of the patch
security update for git, git-lfs, obs-scm-bridge, python-PyYAML
Description of the patch
This update for git, git-lfs, obs-scm-bridge, python-PyYAML fixes the following issues:
git was updated from version 2.43.0 to 2.51.0 (bsc#1243197):
- Security issues fixed:
* CVE-2025-27613 Fixed arbitrary writable file creation and truncation in Gitk(bsc#1245938)
* CVE-2025-27614 Fixed arbitrary script execution via repository clonation in gitk(bsc#1245939)
* CVE-2025-46835 Fixed arbitrary writable file creation in Git GUI when untrusted repository is cloned (bsc#1245942)
* CVE-2025-48384 Fixed the unintentional execution of a script after checkout due to CRLF transforming (bsc#1245943)
* CVE-2025-48385 Fixed arbitrary code execution due to protocol injection via fetching advertised bundle(bsc#1245946)
- Other changes and bugs fixed:
- Other changes and bugs fixed:
* Added SHA256 support (bsc#1243197)
* Git moved to /usr/libexec/git/git and updated AppArmor profile
accordingly (bsc#1218588)
* gitweb AppArmor profile: allow reading etc/gitweb-common.conf (bsc#1218664)
* Do not replace apparmor configuration (bsc#1216545)
* Fixed the Python version required (bsc#1212476)
- Version Updates Release Notes:
* https://raw.githubusercontent.com/git/git/master/Documentation/RelNotes/2.51.0.adoc
* https://raw.githubusercontent.com/git/git/master/Documentation/RelNotes/2.50.1.adoc
* https://raw.githubusercontent.com/git/git/master/Documentation/RelNotes/2.50.0.adoc
* https://raw.githubusercontent.com/git/git/master/Documentation/RelNotes/2.49.0.adoc
* https://raw.githubusercontent.com/git/git/master/Documentation/RelNotes/2.48.1.adoc
* https://raw.githubusercontent.com/git/git/master/Documentation/RelNotes/2.48.0.adoc
* https://raw.githubusercontent.com/git/git/master/Documentation/RelNotes/2.47.1.adoc
* https://raw.githubusercontent.com/git/git/master/Documentation/RelNotes/2.47.0.adoc
* https://raw.githubusercontent.com/git/git/master/Documentation/RelNotes/2.46.2.adoc
* https://raw.githubusercontent.com/git/git/master/Documentation/RelNotes/2.46.1.adoc
* https://raw.githubusercontent.com/git/git/master/Documentation/RelNotes/2.46.0.adoc
* https://raw.githubusercontent.com/git/git/master/Documentation/RelNotes/2.45.3.adoc
* https://raw.githubusercontent.com/git/git/master/Documentation/RelNotes/2.45.2.adoc
* https://raw.githubusercontent.com/git/git/master/Documentation/RelNotes/2.45.1.adoc
* https://raw.githubusercontent.com/git/git/master/Documentation/RelNotes/2.45.0.adoc
* https://raw.githubusercontent.com/git/git/master/Documentation/RelNotes/2.44.0.adoc
* https://raw.githubusercontent.com/git/git/master/Documentation/RelNotes/2.43.3.adoc
* https://raw.githubusercontent.com/git/git/master/Documentation/RelNotes/2.43.2.adoc
* https://raw.githubusercontent.com/git/git/master/Documentation/RelNotes/2.43.1.adoc
git-lfs is included in version 3.7.0.
python-PyYAML was updated from version 6.0.1 to 6.0.2:
- Added support for Cython 3.x and Python 3.13
obs-scm-bridge was updated from version 0.5.4 to 0.7.4:
- New Features and Improvements:
* Manifest File Support: Support has been added for a `_manifest file`, which serves as a successor to the `_subdirs`
file.
* Control Over Git Information: A new noobsinfo query parameter was added to hide git information in source and binary
files.
* Enhanced Submodule Handling: The system now records the configured branch of submodules and stays on that branch
during checkout.
* Git SHA Tracking: In project mode, the tool now uses git SHA sums instead of md5sum to track package sources.
* SSH URL Support: ssh:// SCM URLs can now be used.
* Improved Error Messages: Error reporting for invalid files within package subdirectories has been improved.
* Standardized Config Location: In project mode, the _config file is now always located in the top-level directory,
even when using subdirs.
* Reduced Unnecessary Changes: In project mode, unnecessary modifications to the package meta URL are now avoided.
* Limit Asset Handling: A new mechanism has been introduced to limit how assets are handled.
* Branch Information Export: The trackingbranch is now exported to scmsync.obsinfo.
- Bugs fixed:
* Syntax Fix: A syntax issue was corrected.
* Git Submodule Parsing: The .gitsubmodule parser was fixed to correctly handle files that contain a mix of spaces and
tabs.
Patchnames
SUSE-2025-3012,SUSE-SLE-Module-Basesystem-15-SP6-2025-3012,SUSE-SLE-Module-Basesystem-15-SP7-2025-3012,SUSE-SLE-Module-Development-Tools-15-SP6-2025-3012,SUSE-SLE-Module-Development-Tools-15-SP7-2025-3012,SUSE-SLE-Module-Python3-15-SP6-2025-3012,SUSE-SLE-Module-Python3-15-SP7-2025-3012,openSUSE-SLE-15.6-2025-3012
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "security update for git, git-lfs, obs-scm-bridge, python-PyYAML",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for git, git-lfs, obs-scm-bridge, python-PyYAML fixes the following issues:\n\ngit was updated from version 2.43.0 to 2.51.0 (bsc#1243197):\n\n- Security issues fixed:\n\n * CVE-2025-27613 Fixed arbitrary writable file creation and truncation in Gitk(bsc#1245938)\n * CVE-2025-27614 Fixed arbitrary script execution via repository clonation in gitk(bsc#1245939)\n * CVE-2025-46835 Fixed arbitrary writable file creation in Git GUI when untrusted repository is cloned (bsc#1245942)\n * CVE-2025-48384 Fixed the unintentional execution of a script after checkout due to CRLF transforming (bsc#1245943)\n * CVE-2025-48385 Fixed arbitrary code execution due to protocol injection via fetching advertised bundle(bsc#1245946)\n\n- Other changes and bugs fixed:\n \n- Other changes and bugs fixed:\n \n * Added SHA256 support (bsc#1243197)\n * Git moved to /usr/libexec/git/git and updated AppArmor profile\n accordingly (bsc#1218588)\n * gitweb AppArmor profile: allow reading etc/gitweb-common.conf (bsc#1218664)\n * Do not replace apparmor configuration (bsc#1216545)\n * Fixed the Python version required (bsc#1212476)\n \n- Version Updates Release Notes:\n\n * https://raw.githubusercontent.com/git/git/master/Documentation/RelNotes/2.51.0.adoc\n * https://raw.githubusercontent.com/git/git/master/Documentation/RelNotes/2.50.1.adoc\n * https://raw.githubusercontent.com/git/git/master/Documentation/RelNotes/2.50.0.adoc\n * https://raw.githubusercontent.com/git/git/master/Documentation/RelNotes/2.49.0.adoc\n * https://raw.githubusercontent.com/git/git/master/Documentation/RelNotes/2.48.1.adoc\n * https://raw.githubusercontent.com/git/git/master/Documentation/RelNotes/2.48.0.adoc\n * https://raw.githubusercontent.com/git/git/master/Documentation/RelNotes/2.47.1.adoc\n * https://raw.githubusercontent.com/git/git/master/Documentation/RelNotes/2.47.0.adoc\n * https://raw.githubusercontent.com/git/git/master/Documentation/RelNotes/2.46.2.adoc\n * https://raw.githubusercontent.com/git/git/master/Documentation/RelNotes/2.46.1.adoc\n * https://raw.githubusercontent.com/git/git/master/Documentation/RelNotes/2.46.0.adoc\n * https://raw.githubusercontent.com/git/git/master/Documentation/RelNotes/2.45.3.adoc\n * https://raw.githubusercontent.com/git/git/master/Documentation/RelNotes/2.45.2.adoc\n * https://raw.githubusercontent.com/git/git/master/Documentation/RelNotes/2.45.1.adoc\n * https://raw.githubusercontent.com/git/git/master/Documentation/RelNotes/2.45.0.adoc\n * https://raw.githubusercontent.com/git/git/master/Documentation/RelNotes/2.44.0.adoc\n * https://raw.githubusercontent.com/git/git/master/Documentation/RelNotes/2.43.3.adoc\n * https://raw.githubusercontent.com/git/git/master/Documentation/RelNotes/2.43.2.adoc\n * https://raw.githubusercontent.com/git/git/master/Documentation/RelNotes/2.43.1.adoc\n\ngit-lfs is included in version 3.7.0.\n\npython-PyYAML was updated from version 6.0.1 to 6.0.2:\n\n- Added support for Cython 3.x and Python 3.13\n\nobs-scm-bridge was updated from version 0.5.4 to 0.7.4:\n\n- New Features and Improvements:\n\n * Manifest File Support: Support has been added for a `_manifest file`, which serves as a successor to the `_subdirs`\n file.\n * Control Over Git Information: A new noobsinfo query parameter was added to hide git information in source and binary\n files.\n * Enhanced Submodule Handling: The system now records the configured branch of submodules and stays on that branch\n during checkout.\n * Git SHA Tracking: In project mode, the tool now uses git SHA sums instead of md5sum to track package sources.\n * SSH URL Support: ssh:// SCM URLs can now be used.\n * Improved Error Messages: Error reporting for invalid files within package subdirectories has been improved.\n * Standardized Config Location: In project mode, the _config file is now always located in the top-level directory,\n even when using subdirs.\n * Reduced Unnecessary Changes: In project mode, unnecessary modifications to the package meta URL are now avoided.\n * Limit Asset Handling: A new mechanism has been introduced to limit how assets are handled.\n * Branch Information Export: The trackingbranch is now exported to scmsync.obsinfo.\n\n- Bugs fixed:\n\n * Syntax Fix: A syntax issue was corrected.\n * Git Submodule Parsing: The .gitsubmodule parser was fixed to correctly handle files that contain a mix of spaces and\n tabs.\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2025-3012,SUSE-SLE-Module-Basesystem-15-SP6-2025-3012,SUSE-SLE-Module-Basesystem-15-SP7-2025-3012,SUSE-SLE-Module-Development-Tools-15-SP6-2025-3012,SUSE-SLE-Module-Development-Tools-15-SP7-2025-3012,SUSE-SLE-Module-Python3-15-SP6-2025-3012,SUSE-SLE-Module-Python3-15-SP7-2025-3012,openSUSE-SLE-15.6-2025-3012",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2025_03012-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2025:03012-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-202503012-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2025:03012-1",
"url": "https://lists.suse.com/pipermail/sle-updates/2025-August/041415.html"
},
{
"category": "self",
"summary": "SUSE Bug 1212476",
"url": "https://bugzilla.suse.com/1212476"
},
{
"category": "self",
"summary": "SUSE Bug 1216545",
"url": "https://bugzilla.suse.com/1216545"
},
{
"category": "self",
"summary": "SUSE Bug 1218588",
"url": "https://bugzilla.suse.com/1218588"
},
{
"category": "self",
"summary": "SUSE Bug 1218664",
"url": "https://bugzilla.suse.com/1218664"
},
{
"category": "self",
"summary": "SUSE Bug 1243197",
"url": "https://bugzilla.suse.com/1243197"
},
{
"category": "self",
"summary": "SUSE Bug 1245938",
"url": "https://bugzilla.suse.com/1245938"
},
{
"category": "self",
"summary": "SUSE Bug 1245939",
"url": "https://bugzilla.suse.com/1245939"
},
{
"category": "self",
"summary": "SUSE Bug 1245942",
"url": "https://bugzilla.suse.com/1245942"
},
{
"category": "self",
"summary": "SUSE Bug 1245943",
"url": "https://bugzilla.suse.com/1245943"
},
{
"category": "self",
"summary": "SUSE Bug 1245946",
"url": "https://bugzilla.suse.com/1245946"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-27613 page",
"url": "https://www.suse.com/security/cve/CVE-2025-27613/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-27614 page",
"url": "https://www.suse.com/security/cve/CVE-2025-27614/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-46835 page",
"url": "https://www.suse.com/security/cve/CVE-2025-46835/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-48384 page",
"url": "https://www.suse.com/security/cve/CVE-2025-48384/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-48385 page",
"url": "https://www.suse.com/security/cve/CVE-2025-48385/"
}
],
"title": "security update for git, git-lfs, obs-scm-bridge, python-PyYAML",
"tracking": {
"current_release_date": "2025-08-29T00:07:40Z",
"generator": {
"date": "2025-08-29T00:07:40Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2025:03012-1",
"initial_release_date": "2025-08-29T00:07:40Z",
"revision_history": [
{
"date": "2025-08-29T00:07:40Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "git-2.51.0-150600.3.12.1.aarch64",
"product": {
"name": "git-2.51.0-150600.3.12.1.aarch64",
"product_id": "git-2.51.0-150600.3.12.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-arch-2.51.0-150600.3.12.1.aarch64",
"product": {
"name": "git-arch-2.51.0-150600.3.12.1.aarch64",
"product_id": "git-arch-2.51.0-150600.3.12.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-core-2.51.0-150600.3.12.1.aarch64",
"product": {
"name": "git-core-2.51.0-150600.3.12.1.aarch64",
"product_id": "git-core-2.51.0-150600.3.12.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-2.51.0-150600.3.12.1.aarch64",
"product": {
"name": "git-credential-libsecret-2.51.0-150600.3.12.1.aarch64",
"product_id": "git-credential-libsecret-2.51.0-150600.3.12.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-cvs-2.51.0-150600.3.12.1.aarch64",
"product": {
"name": "git-cvs-2.51.0-150600.3.12.1.aarch64",
"product_id": "git-cvs-2.51.0-150600.3.12.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-daemon-2.51.0-150600.3.12.1.aarch64",
"product": {
"name": "git-daemon-2.51.0-150600.3.12.1.aarch64",
"product_id": "git-daemon-2.51.0-150600.3.12.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-email-2.51.0-150600.3.12.1.aarch64",
"product": {
"name": "git-email-2.51.0-150600.3.12.1.aarch64",
"product_id": "git-email-2.51.0-150600.3.12.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-gui-2.51.0-150600.3.12.1.aarch64",
"product": {
"name": "git-gui-2.51.0-150600.3.12.1.aarch64",
"product_id": "git-gui-2.51.0-150600.3.12.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-lfs-3.7.0-150600.13.3.1.aarch64",
"product": {
"name": "git-lfs-3.7.0-150600.13.3.1.aarch64",
"product_id": "git-lfs-3.7.0-150600.13.3.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-p4-2.51.0-150600.3.12.1.aarch64",
"product": {
"name": "git-p4-2.51.0-150600.3.12.1.aarch64",
"product_id": "git-p4-2.51.0-150600.3.12.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-svn-2.51.0-150600.3.12.1.aarch64",
"product": {
"name": "git-svn-2.51.0-150600.3.12.1.aarch64",
"product_id": "git-svn-2.51.0-150600.3.12.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-web-2.51.0-150600.3.12.1.aarch64",
"product": {
"name": "git-web-2.51.0-150600.3.12.1.aarch64",
"product_id": "git-web-2.51.0-150600.3.12.1.aarch64"
}
},
{
"category": "product_version",
"name": "gitk-2.51.0-150600.3.12.1.aarch64",
"product": {
"name": "gitk-2.51.0-150600.3.12.1.aarch64",
"product_id": "gitk-2.51.0-150600.3.12.1.aarch64"
}
},
{
"category": "product_version",
"name": "perl-Git-2.51.0-150600.3.12.1.aarch64",
"product": {
"name": "perl-Git-2.51.0-150600.3.12.1.aarch64",
"product_id": "perl-Git-2.51.0-150600.3.12.1.aarch64"
}
},
{
"category": "product_version",
"name": "python311-PyYAML-6.0.2-150600.10.3.1.aarch64",
"product": {
"name": "python311-PyYAML-6.0.2-150600.10.3.1.aarch64",
"product_id": "python311-PyYAML-6.0.2-150600.10.3.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "git-2.51.0-150600.3.12.1.i586",
"product": {
"name": "git-2.51.0-150600.3.12.1.i586",
"product_id": "git-2.51.0-150600.3.12.1.i586"
}
},
{
"category": "product_version",
"name": "git-arch-2.51.0-150600.3.12.1.i586",
"product": {
"name": "git-arch-2.51.0-150600.3.12.1.i586",
"product_id": "git-arch-2.51.0-150600.3.12.1.i586"
}
},
{
"category": "product_version",
"name": "git-core-2.51.0-150600.3.12.1.i586",
"product": {
"name": "git-core-2.51.0-150600.3.12.1.i586",
"product_id": "git-core-2.51.0-150600.3.12.1.i586"
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-2.51.0-150600.3.12.1.i586",
"product": {
"name": "git-credential-libsecret-2.51.0-150600.3.12.1.i586",
"product_id": "git-credential-libsecret-2.51.0-150600.3.12.1.i586"
}
},
{
"category": "product_version",
"name": "git-cvs-2.51.0-150600.3.12.1.i586",
"product": {
"name": "git-cvs-2.51.0-150600.3.12.1.i586",
"product_id": "git-cvs-2.51.0-150600.3.12.1.i586"
}
},
{
"category": "product_version",
"name": "git-daemon-2.51.0-150600.3.12.1.i586",
"product": {
"name": "git-daemon-2.51.0-150600.3.12.1.i586",
"product_id": "git-daemon-2.51.0-150600.3.12.1.i586"
}
},
{
"category": "product_version",
"name": "git-email-2.51.0-150600.3.12.1.i586",
"product": {
"name": "git-email-2.51.0-150600.3.12.1.i586",
"product_id": "git-email-2.51.0-150600.3.12.1.i586"
}
},
{
"category": "product_version",
"name": "git-gui-2.51.0-150600.3.12.1.i586",
"product": {
"name": "git-gui-2.51.0-150600.3.12.1.i586",
"product_id": "git-gui-2.51.0-150600.3.12.1.i586"
}
},
{
"category": "product_version",
"name": "git-lfs-3.7.0-150600.13.3.1.i586",
"product": {
"name": "git-lfs-3.7.0-150600.13.3.1.i586",
"product_id": "git-lfs-3.7.0-150600.13.3.1.i586"
}
},
{
"category": "product_version",
"name": "git-p4-2.51.0-150600.3.12.1.i586",
"product": {
"name": "git-p4-2.51.0-150600.3.12.1.i586",
"product_id": "git-p4-2.51.0-150600.3.12.1.i586"
}
},
{
"category": "product_version",
"name": "git-svn-2.51.0-150600.3.12.1.i586",
"product": {
"name": "git-svn-2.51.0-150600.3.12.1.i586",
"product_id": "git-svn-2.51.0-150600.3.12.1.i586"
}
},
{
"category": "product_version",
"name": "git-web-2.51.0-150600.3.12.1.i586",
"product": {
"name": "git-web-2.51.0-150600.3.12.1.i586",
"product_id": "git-web-2.51.0-150600.3.12.1.i586"
}
},
{
"category": "product_version",
"name": "gitk-2.51.0-150600.3.12.1.i586",
"product": {
"name": "gitk-2.51.0-150600.3.12.1.i586",
"product_id": "gitk-2.51.0-150600.3.12.1.i586"
}
},
{
"category": "product_version",
"name": "perl-Git-2.51.0-150600.3.12.1.i586",
"product": {
"name": "perl-Git-2.51.0-150600.3.12.1.i586",
"product_id": "perl-Git-2.51.0-150600.3.12.1.i586"
}
},
{
"category": "product_version",
"name": "python311-PyYAML-6.0.2-150600.10.3.1.i586",
"product": {
"name": "python311-PyYAML-6.0.2-150600.10.3.1.i586",
"product_id": "python311-PyYAML-6.0.2-150600.10.3.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "git-doc-2.51.0-150600.3.12.1.noarch",
"product": {
"name": "git-doc-2.51.0-150600.3.12.1.noarch",
"product_id": "git-doc-2.51.0-150600.3.12.1.noarch"
}
},
{
"category": "product_version",
"name": "obs-scm-bridge-0.7.4-150600.14.4.1.noarch",
"product": {
"name": "obs-scm-bridge-0.7.4-150600.14.4.1.noarch",
"product_id": "obs-scm-bridge-0.7.4-150600.14.4.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "git-2.51.0-150600.3.12.1.ppc64le",
"product": {
"name": "git-2.51.0-150600.3.12.1.ppc64le",
"product_id": "git-2.51.0-150600.3.12.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-arch-2.51.0-150600.3.12.1.ppc64le",
"product": {
"name": "git-arch-2.51.0-150600.3.12.1.ppc64le",
"product_id": "git-arch-2.51.0-150600.3.12.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-core-2.51.0-150600.3.12.1.ppc64le",
"product": {
"name": "git-core-2.51.0-150600.3.12.1.ppc64le",
"product_id": "git-core-2.51.0-150600.3.12.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-2.51.0-150600.3.12.1.ppc64le",
"product": {
"name": "git-credential-libsecret-2.51.0-150600.3.12.1.ppc64le",
"product_id": "git-credential-libsecret-2.51.0-150600.3.12.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-cvs-2.51.0-150600.3.12.1.ppc64le",
"product": {
"name": "git-cvs-2.51.0-150600.3.12.1.ppc64le",
"product_id": "git-cvs-2.51.0-150600.3.12.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-daemon-2.51.0-150600.3.12.1.ppc64le",
"product": {
"name": "git-daemon-2.51.0-150600.3.12.1.ppc64le",
"product_id": "git-daemon-2.51.0-150600.3.12.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-email-2.51.0-150600.3.12.1.ppc64le",
"product": {
"name": "git-email-2.51.0-150600.3.12.1.ppc64le",
"product_id": "git-email-2.51.0-150600.3.12.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-gui-2.51.0-150600.3.12.1.ppc64le",
"product": {
"name": "git-gui-2.51.0-150600.3.12.1.ppc64le",
"product_id": "git-gui-2.51.0-150600.3.12.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-lfs-3.7.0-150600.13.3.1.ppc64le",
"product": {
"name": "git-lfs-3.7.0-150600.13.3.1.ppc64le",
"product_id": "git-lfs-3.7.0-150600.13.3.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-p4-2.51.0-150600.3.12.1.ppc64le",
"product": {
"name": "git-p4-2.51.0-150600.3.12.1.ppc64le",
"product_id": "git-p4-2.51.0-150600.3.12.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-svn-2.51.0-150600.3.12.1.ppc64le",
"product": {
"name": "git-svn-2.51.0-150600.3.12.1.ppc64le",
"product_id": "git-svn-2.51.0-150600.3.12.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-web-2.51.0-150600.3.12.1.ppc64le",
"product": {
"name": "git-web-2.51.0-150600.3.12.1.ppc64le",
"product_id": "git-web-2.51.0-150600.3.12.1.ppc64le"
}
},
{
"category": "product_version",
"name": "gitk-2.51.0-150600.3.12.1.ppc64le",
"product": {
"name": "gitk-2.51.0-150600.3.12.1.ppc64le",
"product_id": "gitk-2.51.0-150600.3.12.1.ppc64le"
}
},
{
"category": "product_version",
"name": "perl-Git-2.51.0-150600.3.12.1.ppc64le",
"product": {
"name": "perl-Git-2.51.0-150600.3.12.1.ppc64le",
"product_id": "perl-Git-2.51.0-150600.3.12.1.ppc64le"
}
},
{
"category": "product_version",
"name": "python311-PyYAML-6.0.2-150600.10.3.1.ppc64le",
"product": {
"name": "python311-PyYAML-6.0.2-150600.10.3.1.ppc64le",
"product_id": "python311-PyYAML-6.0.2-150600.10.3.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "git-2.51.0-150600.3.12.1.s390x",
"product": {
"name": "git-2.51.0-150600.3.12.1.s390x",
"product_id": "git-2.51.0-150600.3.12.1.s390x"
}
},
{
"category": "product_version",
"name": "git-arch-2.51.0-150600.3.12.1.s390x",
"product": {
"name": "git-arch-2.51.0-150600.3.12.1.s390x",
"product_id": "git-arch-2.51.0-150600.3.12.1.s390x"
}
},
{
"category": "product_version",
"name": "git-core-2.51.0-150600.3.12.1.s390x",
"product": {
"name": "git-core-2.51.0-150600.3.12.1.s390x",
"product_id": "git-core-2.51.0-150600.3.12.1.s390x"
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-2.51.0-150600.3.12.1.s390x",
"product": {
"name": "git-credential-libsecret-2.51.0-150600.3.12.1.s390x",
"product_id": "git-credential-libsecret-2.51.0-150600.3.12.1.s390x"
}
},
{
"category": "product_version",
"name": "git-cvs-2.51.0-150600.3.12.1.s390x",
"product": {
"name": "git-cvs-2.51.0-150600.3.12.1.s390x",
"product_id": "git-cvs-2.51.0-150600.3.12.1.s390x"
}
},
{
"category": "product_version",
"name": "git-daemon-2.51.0-150600.3.12.1.s390x",
"product": {
"name": "git-daemon-2.51.0-150600.3.12.1.s390x",
"product_id": "git-daemon-2.51.0-150600.3.12.1.s390x"
}
},
{
"category": "product_version",
"name": "git-email-2.51.0-150600.3.12.1.s390x",
"product": {
"name": "git-email-2.51.0-150600.3.12.1.s390x",
"product_id": "git-email-2.51.0-150600.3.12.1.s390x"
}
},
{
"category": "product_version",
"name": "git-gui-2.51.0-150600.3.12.1.s390x",
"product": {
"name": "git-gui-2.51.0-150600.3.12.1.s390x",
"product_id": "git-gui-2.51.0-150600.3.12.1.s390x"
}
},
{
"category": "product_version",
"name": "git-lfs-3.7.0-150600.13.3.1.s390x",
"product": {
"name": "git-lfs-3.7.0-150600.13.3.1.s390x",
"product_id": "git-lfs-3.7.0-150600.13.3.1.s390x"
}
},
{
"category": "product_version",
"name": "git-p4-2.51.0-150600.3.12.1.s390x",
"product": {
"name": "git-p4-2.51.0-150600.3.12.1.s390x",
"product_id": "git-p4-2.51.0-150600.3.12.1.s390x"
}
},
{
"category": "product_version",
"name": "git-svn-2.51.0-150600.3.12.1.s390x",
"product": {
"name": "git-svn-2.51.0-150600.3.12.1.s390x",
"product_id": "git-svn-2.51.0-150600.3.12.1.s390x"
}
},
{
"category": "product_version",
"name": "git-web-2.51.0-150600.3.12.1.s390x",
"product": {
"name": "git-web-2.51.0-150600.3.12.1.s390x",
"product_id": "git-web-2.51.0-150600.3.12.1.s390x"
}
},
{
"category": "product_version",
"name": "gitk-2.51.0-150600.3.12.1.s390x",
"product": {
"name": "gitk-2.51.0-150600.3.12.1.s390x",
"product_id": "gitk-2.51.0-150600.3.12.1.s390x"
}
},
{
"category": "product_version",
"name": "perl-Git-2.51.0-150600.3.12.1.s390x",
"product": {
"name": "perl-Git-2.51.0-150600.3.12.1.s390x",
"product_id": "perl-Git-2.51.0-150600.3.12.1.s390x"
}
},
{
"category": "product_version",
"name": "python311-PyYAML-6.0.2-150600.10.3.1.s390x",
"product": {
"name": "python311-PyYAML-6.0.2-150600.10.3.1.s390x",
"product_id": "python311-PyYAML-6.0.2-150600.10.3.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "git-2.51.0-150600.3.12.1.x86_64",
"product": {
"name": "git-2.51.0-150600.3.12.1.x86_64",
"product_id": "git-2.51.0-150600.3.12.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-arch-2.51.0-150600.3.12.1.x86_64",
"product": {
"name": "git-arch-2.51.0-150600.3.12.1.x86_64",
"product_id": "git-arch-2.51.0-150600.3.12.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-core-2.51.0-150600.3.12.1.x86_64",
"product": {
"name": "git-core-2.51.0-150600.3.12.1.x86_64",
"product_id": "git-core-2.51.0-150600.3.12.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-2.51.0-150600.3.12.1.x86_64",
"product": {
"name": "git-credential-libsecret-2.51.0-150600.3.12.1.x86_64",
"product_id": "git-credential-libsecret-2.51.0-150600.3.12.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-cvs-2.51.0-150600.3.12.1.x86_64",
"product": {
"name": "git-cvs-2.51.0-150600.3.12.1.x86_64",
"product_id": "git-cvs-2.51.0-150600.3.12.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-daemon-2.51.0-150600.3.12.1.x86_64",
"product": {
"name": "git-daemon-2.51.0-150600.3.12.1.x86_64",
"product_id": "git-daemon-2.51.0-150600.3.12.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-email-2.51.0-150600.3.12.1.x86_64",
"product": {
"name": "git-email-2.51.0-150600.3.12.1.x86_64",
"product_id": "git-email-2.51.0-150600.3.12.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-gui-2.51.0-150600.3.12.1.x86_64",
"product": {
"name": "git-gui-2.51.0-150600.3.12.1.x86_64",
"product_id": "git-gui-2.51.0-150600.3.12.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-lfs-3.7.0-150600.13.3.1.x86_64",
"product": {
"name": "git-lfs-3.7.0-150600.13.3.1.x86_64",
"product_id": "git-lfs-3.7.0-150600.13.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-p4-2.51.0-150600.3.12.1.x86_64",
"product": {
"name": "git-p4-2.51.0-150600.3.12.1.x86_64",
"product_id": "git-p4-2.51.0-150600.3.12.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-svn-2.51.0-150600.3.12.1.x86_64",
"product": {
"name": "git-svn-2.51.0-150600.3.12.1.x86_64",
"product_id": "git-svn-2.51.0-150600.3.12.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-web-2.51.0-150600.3.12.1.x86_64",
"product": {
"name": "git-web-2.51.0-150600.3.12.1.x86_64",
"product_id": "git-web-2.51.0-150600.3.12.1.x86_64"
}
},
{
"category": "product_version",
"name": "gitk-2.51.0-150600.3.12.1.x86_64",
"product": {
"name": "gitk-2.51.0-150600.3.12.1.x86_64",
"product_id": "gitk-2.51.0-150600.3.12.1.x86_64"
}
},
{
"category": "product_version",
"name": "perl-Git-2.51.0-150600.3.12.1.x86_64",
"product": {
"name": "perl-Git-2.51.0-150600.3.12.1.x86_64",
"product_id": "perl-Git-2.51.0-150600.3.12.1.x86_64"
}
},
{
"category": "product_version",
"name": "python311-PyYAML-6.0.2-150600.10.3.1.x86_64",
"product": {
"name": "python311-PyYAML-6.0.2-150600.10.3.1.x86_64",
"product_id": "python311-PyYAML-6.0.2-150600.10.3.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product": {
"name": "SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-basesystem:15:sp6"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product": {
"name": "SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-basesystem:15:sp7"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product": {
"name": "SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-development-tools:15:sp6"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product": {
"name": "SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-development-tools:15:sp7"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Python 3 15 SP6",
"product": {
"name": "SUSE Linux Enterprise Module for Python 3 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Python 3 15 SP6",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-python3:15:sp6"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Python 3 15 SP7",
"product": {
"name": "SUSE Linux Enterprise Module for Python 3 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Python 3 15 SP7",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-python3:15:sp7"
}
}
},
{
"category": "product_name",
"name": "openSUSE Leap 15.6",
"product": {
"name": "openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap:15.6"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.51.0-150600.3.12.1.aarch64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.51.0-150600.3.12.1.aarch64"
},
"product_reference": "git-core-2.51.0-150600.3.12.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.51.0-150600.3.12.1.ppc64le as component of SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.51.0-150600.3.12.1.ppc64le"
},
"product_reference": "git-core-2.51.0-150600.3.12.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.51.0-150600.3.12.1.s390x as component of SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.51.0-150600.3.12.1.s390x"
},
"product_reference": "git-core-2.51.0-150600.3.12.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.51.0-150600.3.12.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.51.0-150600.3.12.1.x86_64"
},
"product_reference": "git-core-2.51.0-150600.3.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.51.0-150600.3.12.1.aarch64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7:git-core-2.51.0-150600.3.12.1.aarch64"
},
"product_reference": "git-core-2.51.0-150600.3.12.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.51.0-150600.3.12.1.ppc64le as component of SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7:git-core-2.51.0-150600.3.12.1.ppc64le"
},
"product_reference": "git-core-2.51.0-150600.3.12.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.51.0-150600.3.12.1.s390x as component of SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7:git-core-2.51.0-150600.3.12.1.s390x"
},
"product_reference": "git-core-2.51.0-150600.3.12.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.51.0-150600.3.12.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7:git-core-2.51.0-150600.3.12.1.x86_64"
},
"product_reference": "git-core-2.51.0-150600.3.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.51.0-150600.3.12.1.aarch64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.51.0-150600.3.12.1.aarch64"
},
"product_reference": "git-2.51.0-150600.3.12.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.51.0-150600.3.12.1.ppc64le as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.51.0-150600.3.12.1.ppc64le"
},
"product_reference": "git-2.51.0-150600.3.12.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.51.0-150600.3.12.1.s390x as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.51.0-150600.3.12.1.s390x"
},
"product_reference": "git-2.51.0-150600.3.12.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.51.0-150600.3.12.1.x86_64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.51.0-150600.3.12.1.x86_64"
},
"product_reference": "git-2.51.0-150600.3.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-arch-2.51.0-150600.3.12.1.aarch64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.51.0-150600.3.12.1.aarch64"
},
"product_reference": "git-arch-2.51.0-150600.3.12.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-arch-2.51.0-150600.3.12.1.ppc64le as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.51.0-150600.3.12.1.ppc64le"
},
"product_reference": "git-arch-2.51.0-150600.3.12.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-arch-2.51.0-150600.3.12.1.s390x as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.51.0-150600.3.12.1.s390x"
},
"product_reference": "git-arch-2.51.0-150600.3.12.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-arch-2.51.0-150600.3.12.1.x86_64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.51.0-150600.3.12.1.x86_64"
},
"product_reference": "git-arch-2.51.0-150600.3.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.51.0-150600.3.12.1.aarch64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.51.0-150600.3.12.1.aarch64"
},
"product_reference": "git-cvs-2.51.0-150600.3.12.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.51.0-150600.3.12.1.ppc64le as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.51.0-150600.3.12.1.ppc64le"
},
"product_reference": "git-cvs-2.51.0-150600.3.12.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.51.0-150600.3.12.1.s390x as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.51.0-150600.3.12.1.s390x"
},
"product_reference": "git-cvs-2.51.0-150600.3.12.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.51.0-150600.3.12.1.x86_64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.51.0-150600.3.12.1.x86_64"
},
"product_reference": "git-cvs-2.51.0-150600.3.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.51.0-150600.3.12.1.aarch64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.51.0-150600.3.12.1.aarch64"
},
"product_reference": "git-daemon-2.51.0-150600.3.12.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.51.0-150600.3.12.1.ppc64le as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.51.0-150600.3.12.1.ppc64le"
},
"product_reference": "git-daemon-2.51.0-150600.3.12.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.51.0-150600.3.12.1.s390x as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.51.0-150600.3.12.1.s390x"
},
"product_reference": "git-daemon-2.51.0-150600.3.12.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.51.0-150600.3.12.1.x86_64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.51.0-150600.3.12.1.x86_64"
},
"product_reference": "git-daemon-2.51.0-150600.3.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-doc-2.51.0-150600.3.12.1.noarch as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:git-doc-2.51.0-150600.3.12.1.noarch"
},
"product_reference": "git-doc-2.51.0-150600.3.12.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.51.0-150600.3.12.1.aarch64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.51.0-150600.3.12.1.aarch64"
},
"product_reference": "git-email-2.51.0-150600.3.12.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.51.0-150600.3.12.1.ppc64le as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.51.0-150600.3.12.1.ppc64le"
},
"product_reference": "git-email-2.51.0-150600.3.12.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.51.0-150600.3.12.1.s390x as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.51.0-150600.3.12.1.s390x"
},
"product_reference": "git-email-2.51.0-150600.3.12.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.51.0-150600.3.12.1.x86_64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.51.0-150600.3.12.1.x86_64"
},
"product_reference": "git-email-2.51.0-150600.3.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.51.0-150600.3.12.1.aarch64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.51.0-150600.3.12.1.aarch64"
},
"product_reference": "git-gui-2.51.0-150600.3.12.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.51.0-150600.3.12.1.ppc64le as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.51.0-150600.3.12.1.ppc64le"
},
"product_reference": "git-gui-2.51.0-150600.3.12.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.51.0-150600.3.12.1.s390x as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.51.0-150600.3.12.1.s390x"
},
"product_reference": "git-gui-2.51.0-150600.3.12.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.51.0-150600.3.12.1.x86_64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.51.0-150600.3.12.1.x86_64"
},
"product_reference": "git-gui-2.51.0-150600.3.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-lfs-3.7.0-150600.13.3.1.aarch64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:git-lfs-3.7.0-150600.13.3.1.aarch64"
},
"product_reference": "git-lfs-3.7.0-150600.13.3.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-lfs-3.7.0-150600.13.3.1.ppc64le as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:git-lfs-3.7.0-150600.13.3.1.ppc64le"
},
"product_reference": "git-lfs-3.7.0-150600.13.3.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-lfs-3.7.0-150600.13.3.1.s390x as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:git-lfs-3.7.0-150600.13.3.1.s390x"
},
"product_reference": "git-lfs-3.7.0-150600.13.3.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-lfs-3.7.0-150600.13.3.1.x86_64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:git-lfs-3.7.0-150600.13.3.1.x86_64"
},
"product_reference": "git-lfs-3.7.0-150600.13.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.51.0-150600.3.12.1.aarch64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.51.0-150600.3.12.1.aarch64"
},
"product_reference": "git-svn-2.51.0-150600.3.12.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.51.0-150600.3.12.1.ppc64le as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.51.0-150600.3.12.1.ppc64le"
},
"product_reference": "git-svn-2.51.0-150600.3.12.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.51.0-150600.3.12.1.s390x as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.51.0-150600.3.12.1.s390x"
},
"product_reference": "git-svn-2.51.0-150600.3.12.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.51.0-150600.3.12.1.x86_64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.51.0-150600.3.12.1.x86_64"
},
"product_reference": "git-svn-2.51.0-150600.3.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.51.0-150600.3.12.1.aarch64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.51.0-150600.3.12.1.aarch64"
},
"product_reference": "git-web-2.51.0-150600.3.12.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.51.0-150600.3.12.1.ppc64le as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.51.0-150600.3.12.1.ppc64le"
},
"product_reference": "git-web-2.51.0-150600.3.12.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.51.0-150600.3.12.1.s390x as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.51.0-150600.3.12.1.s390x"
},
"product_reference": "git-web-2.51.0-150600.3.12.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.51.0-150600.3.12.1.x86_64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.51.0-150600.3.12.1.x86_64"
},
"product_reference": "git-web-2.51.0-150600.3.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.51.0-150600.3.12.1.aarch64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.51.0-150600.3.12.1.aarch64"
},
"product_reference": "gitk-2.51.0-150600.3.12.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.51.0-150600.3.12.1.ppc64le as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.51.0-150600.3.12.1.ppc64le"
},
"product_reference": "gitk-2.51.0-150600.3.12.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.51.0-150600.3.12.1.s390x as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.51.0-150600.3.12.1.s390x"
},
"product_reference": "gitk-2.51.0-150600.3.12.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.51.0-150600.3.12.1.x86_64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.51.0-150600.3.12.1.x86_64"
},
"product_reference": "gitk-2.51.0-150600.3.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "obs-scm-bridge-0.7.4-150600.14.4.1.noarch as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:obs-scm-bridge-0.7.4-150600.14.4.1.noarch"
},
"product_reference": "obs-scm-bridge-0.7.4-150600.14.4.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.51.0-150600.3.12.1.aarch64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.51.0-150600.3.12.1.aarch64"
},
"product_reference": "perl-Git-2.51.0-150600.3.12.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.51.0-150600.3.12.1.ppc64le as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.51.0-150600.3.12.1.ppc64le"
},
"product_reference": "perl-Git-2.51.0-150600.3.12.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.51.0-150600.3.12.1.s390x as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.51.0-150600.3.12.1.s390x"
},
"product_reference": "perl-Git-2.51.0-150600.3.12.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.51.0-150600.3.12.1.x86_64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.51.0-150600.3.12.1.x86_64"
},
"product_reference": "perl-Git-2.51.0-150600.3.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.51.0-150600.3.12.1.aarch64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:git-2.51.0-150600.3.12.1.aarch64"
},
"product_reference": "git-2.51.0-150600.3.12.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.51.0-150600.3.12.1.ppc64le as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:git-2.51.0-150600.3.12.1.ppc64le"
},
"product_reference": "git-2.51.0-150600.3.12.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.51.0-150600.3.12.1.s390x as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:git-2.51.0-150600.3.12.1.s390x"
},
"product_reference": "git-2.51.0-150600.3.12.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.51.0-150600.3.12.1.x86_64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:git-2.51.0-150600.3.12.1.x86_64"
},
"product_reference": "git-2.51.0-150600.3.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-arch-2.51.0-150600.3.12.1.aarch64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:git-arch-2.51.0-150600.3.12.1.aarch64"
},
"product_reference": "git-arch-2.51.0-150600.3.12.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-arch-2.51.0-150600.3.12.1.ppc64le as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:git-arch-2.51.0-150600.3.12.1.ppc64le"
},
"product_reference": "git-arch-2.51.0-150600.3.12.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-arch-2.51.0-150600.3.12.1.s390x as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:git-arch-2.51.0-150600.3.12.1.s390x"
},
"product_reference": "git-arch-2.51.0-150600.3.12.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-arch-2.51.0-150600.3.12.1.x86_64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:git-arch-2.51.0-150600.3.12.1.x86_64"
},
"product_reference": "git-arch-2.51.0-150600.3.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.51.0-150600.3.12.1.aarch64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:git-cvs-2.51.0-150600.3.12.1.aarch64"
},
"product_reference": "git-cvs-2.51.0-150600.3.12.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.51.0-150600.3.12.1.ppc64le as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:git-cvs-2.51.0-150600.3.12.1.ppc64le"
},
"product_reference": "git-cvs-2.51.0-150600.3.12.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.51.0-150600.3.12.1.s390x as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:git-cvs-2.51.0-150600.3.12.1.s390x"
},
"product_reference": "git-cvs-2.51.0-150600.3.12.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.51.0-150600.3.12.1.x86_64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:git-cvs-2.51.0-150600.3.12.1.x86_64"
},
"product_reference": "git-cvs-2.51.0-150600.3.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.51.0-150600.3.12.1.aarch64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:git-daemon-2.51.0-150600.3.12.1.aarch64"
},
"product_reference": "git-daemon-2.51.0-150600.3.12.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.51.0-150600.3.12.1.ppc64le as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:git-daemon-2.51.0-150600.3.12.1.ppc64le"
},
"product_reference": "git-daemon-2.51.0-150600.3.12.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.51.0-150600.3.12.1.s390x as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:git-daemon-2.51.0-150600.3.12.1.s390x"
},
"product_reference": "git-daemon-2.51.0-150600.3.12.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.51.0-150600.3.12.1.x86_64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:git-daemon-2.51.0-150600.3.12.1.x86_64"
},
"product_reference": "git-daemon-2.51.0-150600.3.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-doc-2.51.0-150600.3.12.1.noarch as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:git-doc-2.51.0-150600.3.12.1.noarch"
},
"product_reference": "git-doc-2.51.0-150600.3.12.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.51.0-150600.3.12.1.aarch64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:git-email-2.51.0-150600.3.12.1.aarch64"
},
"product_reference": "git-email-2.51.0-150600.3.12.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.51.0-150600.3.12.1.ppc64le as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:git-email-2.51.0-150600.3.12.1.ppc64le"
},
"product_reference": "git-email-2.51.0-150600.3.12.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.51.0-150600.3.12.1.s390x as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:git-email-2.51.0-150600.3.12.1.s390x"
},
"product_reference": "git-email-2.51.0-150600.3.12.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.51.0-150600.3.12.1.x86_64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:git-email-2.51.0-150600.3.12.1.x86_64"
},
"product_reference": "git-email-2.51.0-150600.3.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.51.0-150600.3.12.1.aarch64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:git-gui-2.51.0-150600.3.12.1.aarch64"
},
"product_reference": "git-gui-2.51.0-150600.3.12.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.51.0-150600.3.12.1.ppc64le as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:git-gui-2.51.0-150600.3.12.1.ppc64le"
},
"product_reference": "git-gui-2.51.0-150600.3.12.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.51.0-150600.3.12.1.s390x as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:git-gui-2.51.0-150600.3.12.1.s390x"
},
"product_reference": "git-gui-2.51.0-150600.3.12.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.51.0-150600.3.12.1.x86_64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:git-gui-2.51.0-150600.3.12.1.x86_64"
},
"product_reference": "git-gui-2.51.0-150600.3.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-lfs-3.7.0-150600.13.3.1.aarch64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:git-lfs-3.7.0-150600.13.3.1.aarch64"
},
"product_reference": "git-lfs-3.7.0-150600.13.3.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-lfs-3.7.0-150600.13.3.1.ppc64le as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:git-lfs-3.7.0-150600.13.3.1.ppc64le"
},
"product_reference": "git-lfs-3.7.0-150600.13.3.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-lfs-3.7.0-150600.13.3.1.s390x as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:git-lfs-3.7.0-150600.13.3.1.s390x"
},
"product_reference": "git-lfs-3.7.0-150600.13.3.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-lfs-3.7.0-150600.13.3.1.x86_64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:git-lfs-3.7.0-150600.13.3.1.x86_64"
},
"product_reference": "git-lfs-3.7.0-150600.13.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.51.0-150600.3.12.1.aarch64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:git-svn-2.51.0-150600.3.12.1.aarch64"
},
"product_reference": "git-svn-2.51.0-150600.3.12.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.51.0-150600.3.12.1.ppc64le as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:git-svn-2.51.0-150600.3.12.1.ppc64le"
},
"product_reference": "git-svn-2.51.0-150600.3.12.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.51.0-150600.3.12.1.s390x as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:git-svn-2.51.0-150600.3.12.1.s390x"
},
"product_reference": "git-svn-2.51.0-150600.3.12.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.51.0-150600.3.12.1.x86_64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:git-svn-2.51.0-150600.3.12.1.x86_64"
},
"product_reference": "git-svn-2.51.0-150600.3.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.51.0-150600.3.12.1.aarch64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:git-web-2.51.0-150600.3.12.1.aarch64"
},
"product_reference": "git-web-2.51.0-150600.3.12.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.51.0-150600.3.12.1.ppc64le as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:git-web-2.51.0-150600.3.12.1.ppc64le"
},
"product_reference": "git-web-2.51.0-150600.3.12.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.51.0-150600.3.12.1.s390x as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:git-web-2.51.0-150600.3.12.1.s390x"
},
"product_reference": "git-web-2.51.0-150600.3.12.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.51.0-150600.3.12.1.x86_64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:git-web-2.51.0-150600.3.12.1.x86_64"
},
"product_reference": "git-web-2.51.0-150600.3.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.51.0-150600.3.12.1.aarch64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:gitk-2.51.0-150600.3.12.1.aarch64"
},
"product_reference": "gitk-2.51.0-150600.3.12.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.51.0-150600.3.12.1.ppc64le as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:gitk-2.51.0-150600.3.12.1.ppc64le"
},
"product_reference": "gitk-2.51.0-150600.3.12.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.51.0-150600.3.12.1.s390x as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:gitk-2.51.0-150600.3.12.1.s390x"
},
"product_reference": "gitk-2.51.0-150600.3.12.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.51.0-150600.3.12.1.x86_64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:gitk-2.51.0-150600.3.12.1.x86_64"
},
"product_reference": "gitk-2.51.0-150600.3.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "obs-scm-bridge-0.7.4-150600.14.4.1.noarch as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:obs-scm-bridge-0.7.4-150600.14.4.1.noarch"
},
"product_reference": "obs-scm-bridge-0.7.4-150600.14.4.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.51.0-150600.3.12.1.aarch64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:perl-Git-2.51.0-150600.3.12.1.aarch64"
},
"product_reference": "perl-Git-2.51.0-150600.3.12.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.51.0-150600.3.12.1.ppc64le as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:perl-Git-2.51.0-150600.3.12.1.ppc64le"
},
"product_reference": "perl-Git-2.51.0-150600.3.12.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.51.0-150600.3.12.1.s390x as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:perl-Git-2.51.0-150600.3.12.1.s390x"
},
"product_reference": "perl-Git-2.51.0-150600.3.12.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.51.0-150600.3.12.1.x86_64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP7:perl-Git-2.51.0-150600.3.12.1.x86_64"
},
"product_reference": "perl-Git-2.51.0-150600.3.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python311-PyYAML-6.0.2-150600.10.3.1.aarch64 as component of SUSE Linux Enterprise Module for Python 3 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Python 3 15 SP6:python311-PyYAML-6.0.2-150600.10.3.1.aarch64"
},
"product_reference": "python311-PyYAML-6.0.2-150600.10.3.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Python 3 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python311-PyYAML-6.0.2-150600.10.3.1.ppc64le as component of SUSE Linux Enterprise Module for Python 3 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Python 3 15 SP6:python311-PyYAML-6.0.2-150600.10.3.1.ppc64le"
},
"product_reference": "python311-PyYAML-6.0.2-150600.10.3.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Python 3 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python311-PyYAML-6.0.2-150600.10.3.1.s390x as component of SUSE Linux Enterprise Module for Python 3 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Python 3 15 SP6:python311-PyYAML-6.0.2-150600.10.3.1.s390x"
},
"product_reference": "python311-PyYAML-6.0.2-150600.10.3.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Python 3 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python311-PyYAML-6.0.2-150600.10.3.1.x86_64 as component of SUSE Linux Enterprise Module for Python 3 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Python 3 15 SP6:python311-PyYAML-6.0.2-150600.10.3.1.x86_64"
},
"product_reference": "python311-PyYAML-6.0.2-150600.10.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Python 3 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python311-PyYAML-6.0.2-150600.10.3.1.aarch64 as component of SUSE Linux Enterprise Module for Python 3 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Python 3 15 SP7:python311-PyYAML-6.0.2-150600.10.3.1.aarch64"
},
"product_reference": "python311-PyYAML-6.0.2-150600.10.3.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Python 3 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python311-PyYAML-6.0.2-150600.10.3.1.ppc64le as component of SUSE Linux Enterprise Module for Python 3 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Python 3 15 SP7:python311-PyYAML-6.0.2-150600.10.3.1.ppc64le"
},
"product_reference": "python311-PyYAML-6.0.2-150600.10.3.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Python 3 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python311-PyYAML-6.0.2-150600.10.3.1.s390x as component of SUSE Linux Enterprise Module for Python 3 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Python 3 15 SP7:python311-PyYAML-6.0.2-150600.10.3.1.s390x"
},
"product_reference": "python311-PyYAML-6.0.2-150600.10.3.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Python 3 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python311-PyYAML-6.0.2-150600.10.3.1.x86_64 as component of SUSE Linux Enterprise Module for Python 3 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Python 3 15 SP7:python311-PyYAML-6.0.2-150600.10.3.1.x86_64"
},
"product_reference": "python311-PyYAML-6.0.2-150600.10.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Python 3 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.51.0-150600.3.12.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:git-2.51.0-150600.3.12.1.aarch64"
},
"product_reference": "git-2.51.0-150600.3.12.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.51.0-150600.3.12.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:git-2.51.0-150600.3.12.1.ppc64le"
},
"product_reference": "git-2.51.0-150600.3.12.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.51.0-150600.3.12.1.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:git-2.51.0-150600.3.12.1.s390x"
},
"product_reference": "git-2.51.0-150600.3.12.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.51.0-150600.3.12.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:git-2.51.0-150600.3.12.1.x86_64"
},
"product_reference": "git-2.51.0-150600.3.12.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-arch-2.51.0-150600.3.12.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:git-arch-2.51.0-150600.3.12.1.aarch64"
},
"product_reference": "git-arch-2.51.0-150600.3.12.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-arch-2.51.0-150600.3.12.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:git-arch-2.51.0-150600.3.12.1.ppc64le"
},
"product_reference": "git-arch-2.51.0-150600.3.12.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-arch-2.51.0-150600.3.12.1.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:git-arch-2.51.0-150600.3.12.1.s390x"
},
"product_reference": "git-arch-2.51.0-150600.3.12.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-arch-2.51.0-150600.3.12.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:git-arch-2.51.0-150600.3.12.1.x86_64"
},
"product_reference": "git-arch-2.51.0-150600.3.12.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.51.0-150600.3.12.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:git-core-2.51.0-150600.3.12.1.aarch64"
},
"product_reference": "git-core-2.51.0-150600.3.12.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.51.0-150600.3.12.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:git-core-2.51.0-150600.3.12.1.ppc64le"
},
"product_reference": "git-core-2.51.0-150600.3.12.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.51.0-150600.3.12.1.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:git-core-2.51.0-150600.3.12.1.s390x"
},
"product_reference": "git-core-2.51.0-150600.3.12.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.51.0-150600.3.12.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:git-core-2.51.0-150600.3.12.1.x86_64"
},
"product_reference": "git-core-2.51.0-150600.3.12.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-2.51.0-150600.3.12.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:git-credential-libsecret-2.51.0-150600.3.12.1.aarch64"
},
"product_reference": "git-credential-libsecret-2.51.0-150600.3.12.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-2.51.0-150600.3.12.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:git-credential-libsecret-2.51.0-150600.3.12.1.ppc64le"
},
"product_reference": "git-credential-libsecret-2.51.0-150600.3.12.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-2.51.0-150600.3.12.1.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:git-credential-libsecret-2.51.0-150600.3.12.1.s390x"
},
"product_reference": "git-credential-libsecret-2.51.0-150600.3.12.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-2.51.0-150600.3.12.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:git-credential-libsecret-2.51.0-150600.3.12.1.x86_64"
},
"product_reference": "git-credential-libsecret-2.51.0-150600.3.12.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.51.0-150600.3.12.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:git-cvs-2.51.0-150600.3.12.1.aarch64"
},
"product_reference": "git-cvs-2.51.0-150600.3.12.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.51.0-150600.3.12.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:git-cvs-2.51.0-150600.3.12.1.ppc64le"
},
"product_reference": "git-cvs-2.51.0-150600.3.12.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.51.0-150600.3.12.1.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:git-cvs-2.51.0-150600.3.12.1.s390x"
},
"product_reference": "git-cvs-2.51.0-150600.3.12.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.51.0-150600.3.12.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:git-cvs-2.51.0-150600.3.12.1.x86_64"
},
"product_reference": "git-cvs-2.51.0-150600.3.12.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.51.0-150600.3.12.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:git-daemon-2.51.0-150600.3.12.1.aarch64"
},
"product_reference": "git-daemon-2.51.0-150600.3.12.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.51.0-150600.3.12.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:git-daemon-2.51.0-150600.3.12.1.ppc64le"
},
"product_reference": "git-daemon-2.51.0-150600.3.12.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.51.0-150600.3.12.1.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:git-daemon-2.51.0-150600.3.12.1.s390x"
},
"product_reference": "git-daemon-2.51.0-150600.3.12.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.51.0-150600.3.12.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:git-daemon-2.51.0-150600.3.12.1.x86_64"
},
"product_reference": "git-daemon-2.51.0-150600.3.12.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-doc-2.51.0-150600.3.12.1.noarch as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:git-doc-2.51.0-150600.3.12.1.noarch"
},
"product_reference": "git-doc-2.51.0-150600.3.12.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.51.0-150600.3.12.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:git-email-2.51.0-150600.3.12.1.aarch64"
},
"product_reference": "git-email-2.51.0-150600.3.12.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.51.0-150600.3.12.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:git-email-2.51.0-150600.3.12.1.ppc64le"
},
"product_reference": "git-email-2.51.0-150600.3.12.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.51.0-150600.3.12.1.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:git-email-2.51.0-150600.3.12.1.s390x"
},
"product_reference": "git-email-2.51.0-150600.3.12.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.51.0-150600.3.12.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:git-email-2.51.0-150600.3.12.1.x86_64"
},
"product_reference": "git-email-2.51.0-150600.3.12.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.51.0-150600.3.12.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:git-gui-2.51.0-150600.3.12.1.aarch64"
},
"product_reference": "git-gui-2.51.0-150600.3.12.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.51.0-150600.3.12.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:git-gui-2.51.0-150600.3.12.1.ppc64le"
},
"product_reference": "git-gui-2.51.0-150600.3.12.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.51.0-150600.3.12.1.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:git-gui-2.51.0-150600.3.12.1.s390x"
},
"product_reference": "git-gui-2.51.0-150600.3.12.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.51.0-150600.3.12.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:git-gui-2.51.0-150600.3.12.1.x86_64"
},
"product_reference": "git-gui-2.51.0-150600.3.12.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-lfs-3.7.0-150600.13.3.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:git-lfs-3.7.0-150600.13.3.1.aarch64"
},
"product_reference": "git-lfs-3.7.0-150600.13.3.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-lfs-3.7.0-150600.13.3.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:git-lfs-3.7.0-150600.13.3.1.ppc64le"
},
"product_reference": "git-lfs-3.7.0-150600.13.3.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-lfs-3.7.0-150600.13.3.1.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:git-lfs-3.7.0-150600.13.3.1.s390x"
},
"product_reference": "git-lfs-3.7.0-150600.13.3.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-lfs-3.7.0-150600.13.3.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:git-lfs-3.7.0-150600.13.3.1.x86_64"
},
"product_reference": "git-lfs-3.7.0-150600.13.3.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-p4-2.51.0-150600.3.12.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:git-p4-2.51.0-150600.3.12.1.aarch64"
},
"product_reference": "git-p4-2.51.0-150600.3.12.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-p4-2.51.0-150600.3.12.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:git-p4-2.51.0-150600.3.12.1.ppc64le"
},
"product_reference": "git-p4-2.51.0-150600.3.12.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-p4-2.51.0-150600.3.12.1.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:git-p4-2.51.0-150600.3.12.1.s390x"
},
"product_reference": "git-p4-2.51.0-150600.3.12.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-p4-2.51.0-150600.3.12.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:git-p4-2.51.0-150600.3.12.1.x86_64"
},
"product_reference": "git-p4-2.51.0-150600.3.12.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.51.0-150600.3.12.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:git-svn-2.51.0-150600.3.12.1.aarch64"
},
"product_reference": "git-svn-2.51.0-150600.3.12.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.51.0-150600.3.12.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:git-svn-2.51.0-150600.3.12.1.ppc64le"
},
"product_reference": "git-svn-2.51.0-150600.3.12.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.51.0-150600.3.12.1.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:git-svn-2.51.0-150600.3.12.1.s390x"
},
"product_reference": "git-svn-2.51.0-150600.3.12.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.51.0-150600.3.12.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:git-svn-2.51.0-150600.3.12.1.x86_64"
},
"product_reference": "git-svn-2.51.0-150600.3.12.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.51.0-150600.3.12.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:git-web-2.51.0-150600.3.12.1.aarch64"
},
"product_reference": "git-web-2.51.0-150600.3.12.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.51.0-150600.3.12.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:git-web-2.51.0-150600.3.12.1.ppc64le"
},
"product_reference": "git-web-2.51.0-150600.3.12.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.51.0-150600.3.12.1.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:git-web-2.51.0-150600.3.12.1.s390x"
},
"product_reference": "git-web-2.51.0-150600.3.12.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.51.0-150600.3.12.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:git-web-2.51.0-150600.3.12.1.x86_64"
},
"product_reference": "git-web-2.51.0-150600.3.12.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.51.0-150600.3.12.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:gitk-2.51.0-150600.3.12.1.aarch64"
},
"product_reference": "gitk-2.51.0-150600.3.12.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.51.0-150600.3.12.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:gitk-2.51.0-150600.3.12.1.ppc64le"
},
"product_reference": "gitk-2.51.0-150600.3.12.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.51.0-150600.3.12.1.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:gitk-2.51.0-150600.3.12.1.s390x"
},
"product_reference": "gitk-2.51.0-150600.3.12.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.51.0-150600.3.12.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:gitk-2.51.0-150600.3.12.1.x86_64"
},
"product_reference": "gitk-2.51.0-150600.3.12.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "obs-scm-bridge-0.7.4-150600.14.4.1.noarch as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:obs-scm-bridge-0.7.4-150600.14.4.1.noarch"
},
"product_reference": "obs-scm-bridge-0.7.4-150600.14.4.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.51.0-150600.3.12.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:perl-Git-2.51.0-150600.3.12.1.aarch64"
},
"product_reference": "perl-Git-2.51.0-150600.3.12.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.51.0-150600.3.12.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:perl-Git-2.51.0-150600.3.12.1.ppc64le"
},
"product_reference": "perl-Git-2.51.0-150600.3.12.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.51.0-150600.3.12.1.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:perl-Git-2.51.0-150600.3.12.1.s390x"
},
"product_reference": "perl-Git-2.51.0-150600.3.12.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.51.0-150600.3.12.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:perl-Git-2.51.0-150600.3.12.1.x86_64"
},
"product_reference": "perl-Git-2.51.0-150600.3.12.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python311-PyYAML-6.0.2-150600.10.3.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:python311-PyYAML-6.0.2-150600.10.3.1.aarch64"
},
"product_reference": "python311-PyYAML-6.0.2-150600.10.3.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python311-PyYAML-6.0.2-150600.10.3.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:python311-PyYAML-6.0.2-150600.10.3.1.ppc64le"
},
"product_reference": "python311-PyYAML-6.0.2-150600.10.3.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python311-PyYAML-6.0.2-150600.10.3.1.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:python311-PyYAML-6.0.2-150600.10.3.1.s390x"
},
"product_reference": "python311-PyYAML-6.0.2-150600.10.3.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python311-PyYAML-6.0.2-150600.10.3.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:python311-PyYAML-6.0.2-150600.10.3.1.x86_64"
},
"product_reference": "python311-PyYAML-6.0.2-150600.10.3.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-27613",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-27613"
}
],
"notes": [
{
"category": "general",
"text": "Gitk is a Tcl/Tk based Git history browser. Starting with 1.7.0, when a user clones an untrusted repository and runs gitk without additional command arguments, files for which the user has write permission can be created and truncated. The option Support per-file encoding must have been enabled before in Gitk\u0027s Preferences. This option is disabled by default. The same happens when Show origin of this line is used in the main window (regardless of whether Support per-file encoding is enabled or not). This vulnerability is fixed in 2.43.7, 2.44.4, 2.45.4, 2.46.4, 2.47.3, 2.48.2, 2.49.1, and 2.50.1.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:git-core-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:git-core-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:git-core-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:git-core-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-doc-2.51.0-150600.3.12.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-lfs-3.7.0-150600.13.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-lfs-3.7.0-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-lfs-3.7.0-150600.13.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-lfs-3.7.0-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:obs-scm-bridge-0.7.4-150600.14.4.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-arch-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-arch-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-arch-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-arch-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-cvs-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-cvs-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-cvs-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-cvs-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-daemon-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-daemon-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-daemon-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-daemon-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-doc-2.51.0-150600.3.12.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-email-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-email-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-email-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-email-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-gui-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-gui-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-gui-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-gui-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-lfs-3.7.0-150600.13.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-lfs-3.7.0-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-lfs-3.7.0-150600.13.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-lfs-3.7.0-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-svn-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-svn-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-svn-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-svn-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-web-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-web-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-web-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-web-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:gitk-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:gitk-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:gitk-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:gitk-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:obs-scm-bridge-0.7.4-150600.14.4.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:perl-Git-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:perl-Git-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:perl-Git-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:perl-Git-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Python 3 15 SP6:python311-PyYAML-6.0.2-150600.10.3.1.aarch64",
"SUSE Linux Enterprise Module for Python 3 15 SP6:python311-PyYAML-6.0.2-150600.10.3.1.ppc64le",
"SUSE Linux Enterprise Module for Python 3 15 SP6:python311-PyYAML-6.0.2-150600.10.3.1.s390x",
"SUSE Linux Enterprise Module for Python 3 15 SP6:python311-PyYAML-6.0.2-150600.10.3.1.x86_64",
"SUSE Linux Enterprise Module for Python 3 15 SP7:python311-PyYAML-6.0.2-150600.10.3.1.aarch64",
"SUSE Linux Enterprise Module for Python 3 15 SP7:python311-PyYAML-6.0.2-150600.10.3.1.ppc64le",
"SUSE Linux Enterprise Module for Python 3 15 SP7:python311-PyYAML-6.0.2-150600.10.3.1.s390x",
"SUSE Linux Enterprise Module for Python 3 15 SP7:python311-PyYAML-6.0.2-150600.10.3.1.x86_64",
"openSUSE Leap 15.6:git-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-arch-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-arch-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-arch-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-arch-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-core-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-core-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-core-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-core-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-credential-libsecret-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-credential-libsecret-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-credential-libsecret-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-credential-libsecret-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-cvs-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-cvs-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-cvs-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-cvs-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-daemon-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-daemon-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-daemon-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-daemon-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-doc-2.51.0-150600.3.12.1.noarch",
"openSUSE Leap 15.6:git-email-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-email-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-email-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-email-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-gui-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-gui-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-gui-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-gui-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-lfs-3.7.0-150600.13.3.1.aarch64",
"openSUSE Leap 15.6:git-lfs-3.7.0-150600.13.3.1.ppc64le",
"openSUSE Leap 15.6:git-lfs-3.7.0-150600.13.3.1.s390x",
"openSUSE Leap 15.6:git-lfs-3.7.0-150600.13.3.1.x86_64",
"openSUSE Leap 15.6:git-p4-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-p4-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-p4-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-p4-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-svn-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-svn-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-svn-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-svn-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-web-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-web-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-web-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-web-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:gitk-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:gitk-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:gitk-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:gitk-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:obs-scm-bridge-0.7.4-150600.14.4.1.noarch",
"openSUSE Leap 15.6:perl-Git-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:perl-Git-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:perl-Git-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:perl-Git-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:python311-PyYAML-6.0.2-150600.10.3.1.aarch64",
"openSUSE Leap 15.6:python311-PyYAML-6.0.2-150600.10.3.1.ppc64le",
"openSUSE Leap 15.6:python311-PyYAML-6.0.2-150600.10.3.1.s390x",
"openSUSE Leap 15.6:python311-PyYAML-6.0.2-150600.10.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-27613",
"url": "https://www.suse.com/security/cve/CVE-2025-27613"
},
{
"category": "external",
"summary": "SUSE Bug 1245938 for CVE-2025-27613",
"url": "https://bugzilla.suse.com/1245938"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:git-core-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:git-core-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:git-core-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:git-core-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-doc-2.51.0-150600.3.12.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-lfs-3.7.0-150600.13.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-lfs-3.7.0-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-lfs-3.7.0-150600.13.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-lfs-3.7.0-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:obs-scm-bridge-0.7.4-150600.14.4.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-arch-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-arch-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-arch-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-arch-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-cvs-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-cvs-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-cvs-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-cvs-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-daemon-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-daemon-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-daemon-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-daemon-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-doc-2.51.0-150600.3.12.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-email-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-email-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-email-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-email-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-gui-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-gui-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-gui-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-gui-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-lfs-3.7.0-150600.13.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-lfs-3.7.0-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-lfs-3.7.0-150600.13.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-lfs-3.7.0-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-svn-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-svn-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-svn-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-svn-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-web-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-web-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-web-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-web-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:gitk-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:gitk-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:gitk-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:gitk-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:obs-scm-bridge-0.7.4-150600.14.4.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:perl-Git-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:perl-Git-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:perl-Git-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:perl-Git-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Python 3 15 SP6:python311-PyYAML-6.0.2-150600.10.3.1.aarch64",
"SUSE Linux Enterprise Module for Python 3 15 SP6:python311-PyYAML-6.0.2-150600.10.3.1.ppc64le",
"SUSE Linux Enterprise Module for Python 3 15 SP6:python311-PyYAML-6.0.2-150600.10.3.1.s390x",
"SUSE Linux Enterprise Module for Python 3 15 SP6:python311-PyYAML-6.0.2-150600.10.3.1.x86_64",
"SUSE Linux Enterprise Module for Python 3 15 SP7:python311-PyYAML-6.0.2-150600.10.3.1.aarch64",
"SUSE Linux Enterprise Module for Python 3 15 SP7:python311-PyYAML-6.0.2-150600.10.3.1.ppc64le",
"SUSE Linux Enterprise Module for Python 3 15 SP7:python311-PyYAML-6.0.2-150600.10.3.1.s390x",
"SUSE Linux Enterprise Module for Python 3 15 SP7:python311-PyYAML-6.0.2-150600.10.3.1.x86_64",
"openSUSE Leap 15.6:git-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-arch-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-arch-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-arch-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-arch-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-core-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-core-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-core-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-core-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-credential-libsecret-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-credential-libsecret-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-credential-libsecret-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-credential-libsecret-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-cvs-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-cvs-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-cvs-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-cvs-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-daemon-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-daemon-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-daemon-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-daemon-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-doc-2.51.0-150600.3.12.1.noarch",
"openSUSE Leap 15.6:git-email-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-email-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-email-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-email-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-gui-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-gui-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-gui-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-gui-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-lfs-3.7.0-150600.13.3.1.aarch64",
"openSUSE Leap 15.6:git-lfs-3.7.0-150600.13.3.1.ppc64le",
"openSUSE Leap 15.6:git-lfs-3.7.0-150600.13.3.1.s390x",
"openSUSE Leap 15.6:git-lfs-3.7.0-150600.13.3.1.x86_64",
"openSUSE Leap 15.6:git-p4-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-p4-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-p4-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-p4-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-svn-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-svn-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-svn-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-svn-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-web-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-web-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-web-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-web-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:gitk-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:gitk-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:gitk-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:gitk-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:obs-scm-bridge-0.7.4-150600.14.4.1.noarch",
"openSUSE Leap 15.6:perl-Git-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:perl-Git-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:perl-Git-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:perl-Git-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:python311-PyYAML-6.0.2-150600.10.3.1.aarch64",
"openSUSE Leap 15.6:python311-PyYAML-6.0.2-150600.10.3.1.ppc64le",
"openSUSE Leap 15.6:python311-PyYAML-6.0.2-150600.10.3.1.s390x",
"openSUSE Leap 15.6:python311-PyYAML-6.0.2-150600.10.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:git-core-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:git-core-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:git-core-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:git-core-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-doc-2.51.0-150600.3.12.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-lfs-3.7.0-150600.13.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-lfs-3.7.0-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-lfs-3.7.0-150600.13.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-lfs-3.7.0-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:obs-scm-bridge-0.7.4-150600.14.4.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-arch-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-arch-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-arch-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-arch-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-cvs-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-cvs-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-cvs-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-cvs-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-daemon-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-daemon-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-daemon-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-daemon-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-doc-2.51.0-150600.3.12.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-email-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-email-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-email-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-email-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-gui-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-gui-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-gui-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-gui-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-lfs-3.7.0-150600.13.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-lfs-3.7.0-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-lfs-3.7.0-150600.13.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-lfs-3.7.0-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-svn-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-svn-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-svn-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-svn-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-web-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-web-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-web-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-web-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:gitk-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:gitk-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:gitk-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:gitk-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:obs-scm-bridge-0.7.4-150600.14.4.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:perl-Git-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:perl-Git-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:perl-Git-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:perl-Git-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Python 3 15 SP6:python311-PyYAML-6.0.2-150600.10.3.1.aarch64",
"SUSE Linux Enterprise Module for Python 3 15 SP6:python311-PyYAML-6.0.2-150600.10.3.1.ppc64le",
"SUSE Linux Enterprise Module for Python 3 15 SP6:python311-PyYAML-6.0.2-150600.10.3.1.s390x",
"SUSE Linux Enterprise Module for Python 3 15 SP6:python311-PyYAML-6.0.2-150600.10.3.1.x86_64",
"SUSE Linux Enterprise Module for Python 3 15 SP7:python311-PyYAML-6.0.2-150600.10.3.1.aarch64",
"SUSE Linux Enterprise Module for Python 3 15 SP7:python311-PyYAML-6.0.2-150600.10.3.1.ppc64le",
"SUSE Linux Enterprise Module for Python 3 15 SP7:python311-PyYAML-6.0.2-150600.10.3.1.s390x",
"SUSE Linux Enterprise Module for Python 3 15 SP7:python311-PyYAML-6.0.2-150600.10.3.1.x86_64",
"openSUSE Leap 15.6:git-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-arch-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-arch-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-arch-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-arch-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-core-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-core-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-core-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-core-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-credential-libsecret-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-credential-libsecret-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-credential-libsecret-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-credential-libsecret-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-cvs-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-cvs-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-cvs-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-cvs-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-daemon-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-daemon-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-daemon-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-daemon-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-doc-2.51.0-150600.3.12.1.noarch",
"openSUSE Leap 15.6:git-email-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-email-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-email-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-email-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-gui-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-gui-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-gui-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-gui-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-lfs-3.7.0-150600.13.3.1.aarch64",
"openSUSE Leap 15.6:git-lfs-3.7.0-150600.13.3.1.ppc64le",
"openSUSE Leap 15.6:git-lfs-3.7.0-150600.13.3.1.s390x",
"openSUSE Leap 15.6:git-lfs-3.7.0-150600.13.3.1.x86_64",
"openSUSE Leap 15.6:git-p4-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-p4-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-p4-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-p4-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-svn-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-svn-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-svn-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-svn-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-web-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-web-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-web-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-web-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:gitk-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:gitk-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:gitk-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:gitk-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:obs-scm-bridge-0.7.4-150600.14.4.1.noarch",
"openSUSE Leap 15.6:perl-Git-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:perl-Git-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:perl-Git-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:perl-Git-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:python311-PyYAML-6.0.2-150600.10.3.1.aarch64",
"openSUSE Leap 15.6:python311-PyYAML-6.0.2-150600.10.3.1.ppc64le",
"openSUSE Leap 15.6:python311-PyYAML-6.0.2-150600.10.3.1.s390x",
"openSUSE Leap 15.6:python311-PyYAML-6.0.2-150600.10.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-08-29T00:07:40Z",
"details": "moderate"
}
],
"title": "CVE-2025-27613"
},
{
"cve": "CVE-2025-27614",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-27614"
}
],
"notes": [
{
"category": "general",
"text": "Gitk is a Tcl/Tk based Git history browser. Starting with 2.41.0, a Git repository can be crafted in such a way that with some social engineering a user who has cloned the repository can be tricked into running any script (e.g., Bourne shell, Perl, Python, ...) supplied by the attacker by invoking gitk filename, where filename has a particular structure. The script is run with the privileges of the user. This vulnerability is fixed in 2.43.7, 2.44.4, 2.45.4, 2.46.4, 2.47.3, 2.48.2, 2.49.1, and 2.50.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:git-core-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:git-core-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:git-core-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:git-core-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-doc-2.51.0-150600.3.12.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-lfs-3.7.0-150600.13.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-lfs-3.7.0-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-lfs-3.7.0-150600.13.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-lfs-3.7.0-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:obs-scm-bridge-0.7.4-150600.14.4.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-arch-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-arch-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-arch-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-arch-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-cvs-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-cvs-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-cvs-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-cvs-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-daemon-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-daemon-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-daemon-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-daemon-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-doc-2.51.0-150600.3.12.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-email-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-email-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-email-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-email-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-gui-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-gui-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-gui-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-gui-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-lfs-3.7.0-150600.13.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-lfs-3.7.0-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-lfs-3.7.0-150600.13.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-lfs-3.7.0-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-svn-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-svn-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-svn-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-svn-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-web-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-web-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-web-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-web-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:gitk-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:gitk-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:gitk-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:gitk-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:obs-scm-bridge-0.7.4-150600.14.4.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:perl-Git-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:perl-Git-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:perl-Git-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:perl-Git-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Python 3 15 SP6:python311-PyYAML-6.0.2-150600.10.3.1.aarch64",
"SUSE Linux Enterprise Module for Python 3 15 SP6:python311-PyYAML-6.0.2-150600.10.3.1.ppc64le",
"SUSE Linux Enterprise Module for Python 3 15 SP6:python311-PyYAML-6.0.2-150600.10.3.1.s390x",
"SUSE Linux Enterprise Module for Python 3 15 SP6:python311-PyYAML-6.0.2-150600.10.3.1.x86_64",
"SUSE Linux Enterprise Module for Python 3 15 SP7:python311-PyYAML-6.0.2-150600.10.3.1.aarch64",
"SUSE Linux Enterprise Module for Python 3 15 SP7:python311-PyYAML-6.0.2-150600.10.3.1.ppc64le",
"SUSE Linux Enterprise Module for Python 3 15 SP7:python311-PyYAML-6.0.2-150600.10.3.1.s390x",
"SUSE Linux Enterprise Module for Python 3 15 SP7:python311-PyYAML-6.0.2-150600.10.3.1.x86_64",
"openSUSE Leap 15.6:git-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-arch-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-arch-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-arch-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-arch-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-core-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-core-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-core-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-core-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-credential-libsecret-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-credential-libsecret-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-credential-libsecret-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-credential-libsecret-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-cvs-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-cvs-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-cvs-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-cvs-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-daemon-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-daemon-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-daemon-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-daemon-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-doc-2.51.0-150600.3.12.1.noarch",
"openSUSE Leap 15.6:git-email-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-email-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-email-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-email-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-gui-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-gui-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-gui-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-gui-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-lfs-3.7.0-150600.13.3.1.aarch64",
"openSUSE Leap 15.6:git-lfs-3.7.0-150600.13.3.1.ppc64le",
"openSUSE Leap 15.6:git-lfs-3.7.0-150600.13.3.1.s390x",
"openSUSE Leap 15.6:git-lfs-3.7.0-150600.13.3.1.x86_64",
"openSUSE Leap 15.6:git-p4-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-p4-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-p4-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-p4-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-svn-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-svn-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-svn-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-svn-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-web-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-web-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-web-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-web-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:gitk-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:gitk-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:gitk-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:gitk-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:obs-scm-bridge-0.7.4-150600.14.4.1.noarch",
"openSUSE Leap 15.6:perl-Git-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:perl-Git-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:perl-Git-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:perl-Git-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:python311-PyYAML-6.0.2-150600.10.3.1.aarch64",
"openSUSE Leap 15.6:python311-PyYAML-6.0.2-150600.10.3.1.ppc64le",
"openSUSE Leap 15.6:python311-PyYAML-6.0.2-150600.10.3.1.s390x",
"openSUSE Leap 15.6:python311-PyYAML-6.0.2-150600.10.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-27614",
"url": "https://www.suse.com/security/cve/CVE-2025-27614"
},
{
"category": "external",
"summary": "SUSE Bug 1245939 for CVE-2025-27614",
"url": "https://bugzilla.suse.com/1245939"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:git-core-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:git-core-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:git-core-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:git-core-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-doc-2.51.0-150600.3.12.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-lfs-3.7.0-150600.13.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-lfs-3.7.0-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-lfs-3.7.0-150600.13.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-lfs-3.7.0-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:obs-scm-bridge-0.7.4-150600.14.4.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-arch-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-arch-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-arch-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-arch-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-cvs-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-cvs-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-cvs-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-cvs-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-daemon-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-daemon-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-daemon-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-daemon-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-doc-2.51.0-150600.3.12.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-email-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-email-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-email-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-email-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-gui-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-gui-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-gui-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-gui-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-lfs-3.7.0-150600.13.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-lfs-3.7.0-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-lfs-3.7.0-150600.13.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-lfs-3.7.0-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-svn-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-svn-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-svn-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-svn-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-web-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-web-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-web-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-web-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:gitk-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:gitk-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:gitk-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:gitk-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:obs-scm-bridge-0.7.4-150600.14.4.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:perl-Git-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:perl-Git-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:perl-Git-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:perl-Git-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Python 3 15 SP6:python311-PyYAML-6.0.2-150600.10.3.1.aarch64",
"SUSE Linux Enterprise Module for Python 3 15 SP6:python311-PyYAML-6.0.2-150600.10.3.1.ppc64le",
"SUSE Linux Enterprise Module for Python 3 15 SP6:python311-PyYAML-6.0.2-150600.10.3.1.s390x",
"SUSE Linux Enterprise Module for Python 3 15 SP6:python311-PyYAML-6.0.2-150600.10.3.1.x86_64",
"SUSE Linux Enterprise Module for Python 3 15 SP7:python311-PyYAML-6.0.2-150600.10.3.1.aarch64",
"SUSE Linux Enterprise Module for Python 3 15 SP7:python311-PyYAML-6.0.2-150600.10.3.1.ppc64le",
"SUSE Linux Enterprise Module for Python 3 15 SP7:python311-PyYAML-6.0.2-150600.10.3.1.s390x",
"SUSE Linux Enterprise Module for Python 3 15 SP7:python311-PyYAML-6.0.2-150600.10.3.1.x86_64",
"openSUSE Leap 15.6:git-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-arch-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-arch-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-arch-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-arch-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-core-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-core-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-core-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-core-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-credential-libsecret-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-credential-libsecret-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-credential-libsecret-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-credential-libsecret-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-cvs-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-cvs-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-cvs-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-cvs-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-daemon-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-daemon-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-daemon-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-daemon-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-doc-2.51.0-150600.3.12.1.noarch",
"openSUSE Leap 15.6:git-email-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-email-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-email-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-email-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-gui-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-gui-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-gui-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-gui-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-lfs-3.7.0-150600.13.3.1.aarch64",
"openSUSE Leap 15.6:git-lfs-3.7.0-150600.13.3.1.ppc64le",
"openSUSE Leap 15.6:git-lfs-3.7.0-150600.13.3.1.s390x",
"openSUSE Leap 15.6:git-lfs-3.7.0-150600.13.3.1.x86_64",
"openSUSE Leap 15.6:git-p4-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-p4-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-p4-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-p4-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-svn-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-svn-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-svn-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-svn-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-web-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-web-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-web-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-web-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:gitk-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:gitk-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:gitk-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:gitk-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:obs-scm-bridge-0.7.4-150600.14.4.1.noarch",
"openSUSE Leap 15.6:perl-Git-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:perl-Git-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:perl-Git-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:perl-Git-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:python311-PyYAML-6.0.2-150600.10.3.1.aarch64",
"openSUSE Leap 15.6:python311-PyYAML-6.0.2-150600.10.3.1.ppc64le",
"openSUSE Leap 15.6:python311-PyYAML-6.0.2-150600.10.3.1.s390x",
"openSUSE Leap 15.6:python311-PyYAML-6.0.2-150600.10.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:git-core-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:git-core-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:git-core-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:git-core-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-doc-2.51.0-150600.3.12.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-lfs-3.7.0-150600.13.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-lfs-3.7.0-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-lfs-3.7.0-150600.13.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-lfs-3.7.0-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:obs-scm-bridge-0.7.4-150600.14.4.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-arch-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-arch-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-arch-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-arch-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-cvs-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-cvs-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-cvs-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-cvs-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-daemon-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-daemon-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-daemon-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-daemon-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-doc-2.51.0-150600.3.12.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-email-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-email-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-email-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-email-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-gui-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-gui-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-gui-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-gui-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-lfs-3.7.0-150600.13.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-lfs-3.7.0-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-lfs-3.7.0-150600.13.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-lfs-3.7.0-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-svn-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-svn-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-svn-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-svn-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-web-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-web-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-web-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-web-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:gitk-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:gitk-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:gitk-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:gitk-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:obs-scm-bridge-0.7.4-150600.14.4.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:perl-Git-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:perl-Git-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:perl-Git-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:perl-Git-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Python 3 15 SP6:python311-PyYAML-6.0.2-150600.10.3.1.aarch64",
"SUSE Linux Enterprise Module for Python 3 15 SP6:python311-PyYAML-6.0.2-150600.10.3.1.ppc64le",
"SUSE Linux Enterprise Module for Python 3 15 SP6:python311-PyYAML-6.0.2-150600.10.3.1.s390x",
"SUSE Linux Enterprise Module for Python 3 15 SP6:python311-PyYAML-6.0.2-150600.10.3.1.x86_64",
"SUSE Linux Enterprise Module for Python 3 15 SP7:python311-PyYAML-6.0.2-150600.10.3.1.aarch64",
"SUSE Linux Enterprise Module for Python 3 15 SP7:python311-PyYAML-6.0.2-150600.10.3.1.ppc64le",
"SUSE Linux Enterprise Module for Python 3 15 SP7:python311-PyYAML-6.0.2-150600.10.3.1.s390x",
"SUSE Linux Enterprise Module for Python 3 15 SP7:python311-PyYAML-6.0.2-150600.10.3.1.x86_64",
"openSUSE Leap 15.6:git-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-arch-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-arch-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-arch-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-arch-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-core-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-core-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-core-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-core-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-credential-libsecret-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-credential-libsecret-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-credential-libsecret-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-credential-libsecret-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-cvs-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-cvs-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-cvs-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-cvs-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-daemon-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-daemon-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-daemon-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-daemon-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-doc-2.51.0-150600.3.12.1.noarch",
"openSUSE Leap 15.6:git-email-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-email-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-email-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-email-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-gui-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-gui-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-gui-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-gui-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-lfs-3.7.0-150600.13.3.1.aarch64",
"openSUSE Leap 15.6:git-lfs-3.7.0-150600.13.3.1.ppc64le",
"openSUSE Leap 15.6:git-lfs-3.7.0-150600.13.3.1.s390x",
"openSUSE Leap 15.6:git-lfs-3.7.0-150600.13.3.1.x86_64",
"openSUSE Leap 15.6:git-p4-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-p4-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-p4-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-p4-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-svn-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-svn-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-svn-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-svn-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-web-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-web-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-web-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-web-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:gitk-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:gitk-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:gitk-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:gitk-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:obs-scm-bridge-0.7.4-150600.14.4.1.noarch",
"openSUSE Leap 15.6:perl-Git-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:perl-Git-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:perl-Git-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:perl-Git-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:python311-PyYAML-6.0.2-150600.10.3.1.aarch64",
"openSUSE Leap 15.6:python311-PyYAML-6.0.2-150600.10.3.1.ppc64le",
"openSUSE Leap 15.6:python311-PyYAML-6.0.2-150600.10.3.1.s390x",
"openSUSE Leap 15.6:python311-PyYAML-6.0.2-150600.10.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-08-29T00:07:40Z",
"details": "important"
}
],
"title": "CVE-2025-27614"
},
{
"cve": "CVE-2025-46835",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-46835"
}
],
"notes": [
{
"category": "general",
"text": "Git GUI allows you to use the Git source control management tools via a GUI. When a user clones an untrusted repository and is tricked into editing a file located in a maliciously named directory in the repository, then Git GUI can create and overwrite files for which the user has write permission. This vulnerability is fixed in 2.43.7, 2.44.4, 2.45.4, 2.46.4, 2.47.3, 2.48.2, 2.49.1, and 2.50.1.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:git-core-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:git-core-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:git-core-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:git-core-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-doc-2.51.0-150600.3.12.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-lfs-3.7.0-150600.13.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-lfs-3.7.0-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-lfs-3.7.0-150600.13.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-lfs-3.7.0-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:obs-scm-bridge-0.7.4-150600.14.4.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-arch-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-arch-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-arch-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-arch-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-cvs-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-cvs-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-cvs-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-cvs-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-daemon-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-daemon-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-daemon-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-daemon-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-doc-2.51.0-150600.3.12.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-email-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-email-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-email-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-email-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-gui-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-gui-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-gui-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-gui-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-lfs-3.7.0-150600.13.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-lfs-3.7.0-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-lfs-3.7.0-150600.13.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-lfs-3.7.0-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-svn-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-svn-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-svn-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-svn-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-web-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-web-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-web-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-web-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:gitk-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:gitk-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:gitk-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:gitk-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:obs-scm-bridge-0.7.4-150600.14.4.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:perl-Git-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:perl-Git-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:perl-Git-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:perl-Git-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Python 3 15 SP6:python311-PyYAML-6.0.2-150600.10.3.1.aarch64",
"SUSE Linux Enterprise Module for Python 3 15 SP6:python311-PyYAML-6.0.2-150600.10.3.1.ppc64le",
"SUSE Linux Enterprise Module for Python 3 15 SP6:python311-PyYAML-6.0.2-150600.10.3.1.s390x",
"SUSE Linux Enterprise Module for Python 3 15 SP6:python311-PyYAML-6.0.2-150600.10.3.1.x86_64",
"SUSE Linux Enterprise Module for Python 3 15 SP7:python311-PyYAML-6.0.2-150600.10.3.1.aarch64",
"SUSE Linux Enterprise Module for Python 3 15 SP7:python311-PyYAML-6.0.2-150600.10.3.1.ppc64le",
"SUSE Linux Enterprise Module for Python 3 15 SP7:python311-PyYAML-6.0.2-150600.10.3.1.s390x",
"SUSE Linux Enterprise Module for Python 3 15 SP7:python311-PyYAML-6.0.2-150600.10.3.1.x86_64",
"openSUSE Leap 15.6:git-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-arch-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-arch-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-arch-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-arch-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-core-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-core-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-core-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-core-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-credential-libsecret-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-credential-libsecret-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-credential-libsecret-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-credential-libsecret-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-cvs-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-cvs-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-cvs-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-cvs-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-daemon-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-daemon-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-daemon-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-daemon-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-doc-2.51.0-150600.3.12.1.noarch",
"openSUSE Leap 15.6:git-email-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-email-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-email-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-email-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-gui-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-gui-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-gui-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-gui-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-lfs-3.7.0-150600.13.3.1.aarch64",
"openSUSE Leap 15.6:git-lfs-3.7.0-150600.13.3.1.ppc64le",
"openSUSE Leap 15.6:git-lfs-3.7.0-150600.13.3.1.s390x",
"openSUSE Leap 15.6:git-lfs-3.7.0-150600.13.3.1.x86_64",
"openSUSE Leap 15.6:git-p4-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-p4-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-p4-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-p4-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-svn-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-svn-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-svn-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-svn-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-web-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-web-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-web-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-web-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:gitk-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:gitk-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:gitk-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:gitk-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:obs-scm-bridge-0.7.4-150600.14.4.1.noarch",
"openSUSE Leap 15.6:perl-Git-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:perl-Git-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:perl-Git-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:perl-Git-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:python311-PyYAML-6.0.2-150600.10.3.1.aarch64",
"openSUSE Leap 15.6:python311-PyYAML-6.0.2-150600.10.3.1.ppc64le",
"openSUSE Leap 15.6:python311-PyYAML-6.0.2-150600.10.3.1.s390x",
"openSUSE Leap 15.6:python311-PyYAML-6.0.2-150600.10.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-46835",
"url": "https://www.suse.com/security/cve/CVE-2025-46835"
},
{
"category": "external",
"summary": "SUSE Bug 1245942 for CVE-2025-46835",
"url": "https://bugzilla.suse.com/1245942"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:git-core-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:git-core-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:git-core-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:git-core-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-doc-2.51.0-150600.3.12.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-lfs-3.7.0-150600.13.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-lfs-3.7.0-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-lfs-3.7.0-150600.13.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-lfs-3.7.0-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:obs-scm-bridge-0.7.4-150600.14.4.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-arch-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-arch-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-arch-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-arch-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-cvs-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-cvs-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-cvs-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-cvs-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-daemon-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-daemon-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-daemon-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-daemon-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-doc-2.51.0-150600.3.12.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-email-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-email-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-email-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-email-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-gui-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-gui-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-gui-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-gui-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-lfs-3.7.0-150600.13.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-lfs-3.7.0-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-lfs-3.7.0-150600.13.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-lfs-3.7.0-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-svn-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-svn-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-svn-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-svn-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-web-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-web-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-web-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-web-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:gitk-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:gitk-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:gitk-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:gitk-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:obs-scm-bridge-0.7.4-150600.14.4.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:perl-Git-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:perl-Git-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:perl-Git-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:perl-Git-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Python 3 15 SP6:python311-PyYAML-6.0.2-150600.10.3.1.aarch64",
"SUSE Linux Enterprise Module for Python 3 15 SP6:python311-PyYAML-6.0.2-150600.10.3.1.ppc64le",
"SUSE Linux Enterprise Module for Python 3 15 SP6:python311-PyYAML-6.0.2-150600.10.3.1.s390x",
"SUSE Linux Enterprise Module for Python 3 15 SP6:python311-PyYAML-6.0.2-150600.10.3.1.x86_64",
"SUSE Linux Enterprise Module for Python 3 15 SP7:python311-PyYAML-6.0.2-150600.10.3.1.aarch64",
"SUSE Linux Enterprise Module for Python 3 15 SP7:python311-PyYAML-6.0.2-150600.10.3.1.ppc64le",
"SUSE Linux Enterprise Module for Python 3 15 SP7:python311-PyYAML-6.0.2-150600.10.3.1.s390x",
"SUSE Linux Enterprise Module for Python 3 15 SP7:python311-PyYAML-6.0.2-150600.10.3.1.x86_64",
"openSUSE Leap 15.6:git-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-arch-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-arch-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-arch-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-arch-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-core-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-core-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-core-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-core-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-credential-libsecret-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-credential-libsecret-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-credential-libsecret-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-credential-libsecret-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-cvs-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-cvs-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-cvs-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-cvs-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-daemon-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-daemon-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-daemon-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-daemon-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-doc-2.51.0-150600.3.12.1.noarch",
"openSUSE Leap 15.6:git-email-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-email-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-email-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-email-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-gui-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-gui-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-gui-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-gui-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-lfs-3.7.0-150600.13.3.1.aarch64",
"openSUSE Leap 15.6:git-lfs-3.7.0-150600.13.3.1.ppc64le",
"openSUSE Leap 15.6:git-lfs-3.7.0-150600.13.3.1.s390x",
"openSUSE Leap 15.6:git-lfs-3.7.0-150600.13.3.1.x86_64",
"openSUSE Leap 15.6:git-p4-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-p4-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-p4-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-p4-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-svn-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-svn-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-svn-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-svn-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-web-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-web-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-web-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-web-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:gitk-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:gitk-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:gitk-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:gitk-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:obs-scm-bridge-0.7.4-150600.14.4.1.noarch",
"openSUSE Leap 15.6:perl-Git-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:perl-Git-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:perl-Git-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:perl-Git-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:python311-PyYAML-6.0.2-150600.10.3.1.aarch64",
"openSUSE Leap 15.6:python311-PyYAML-6.0.2-150600.10.3.1.ppc64le",
"openSUSE Leap 15.6:python311-PyYAML-6.0.2-150600.10.3.1.s390x",
"openSUSE Leap 15.6:python311-PyYAML-6.0.2-150600.10.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:git-core-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:git-core-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:git-core-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:git-core-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-doc-2.51.0-150600.3.12.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-lfs-3.7.0-150600.13.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-lfs-3.7.0-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-lfs-3.7.0-150600.13.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-lfs-3.7.0-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:obs-scm-bridge-0.7.4-150600.14.4.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-arch-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-arch-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-arch-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-arch-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-cvs-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-cvs-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-cvs-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-cvs-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-daemon-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-daemon-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-daemon-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-daemon-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-doc-2.51.0-150600.3.12.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-email-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-email-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-email-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-email-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-gui-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-gui-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-gui-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-gui-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-lfs-3.7.0-150600.13.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-lfs-3.7.0-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-lfs-3.7.0-150600.13.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-lfs-3.7.0-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-svn-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-svn-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-svn-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-svn-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-web-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-web-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-web-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-web-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:gitk-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:gitk-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:gitk-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:gitk-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:obs-scm-bridge-0.7.4-150600.14.4.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:perl-Git-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:perl-Git-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:perl-Git-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:perl-Git-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Python 3 15 SP6:python311-PyYAML-6.0.2-150600.10.3.1.aarch64",
"SUSE Linux Enterprise Module for Python 3 15 SP6:python311-PyYAML-6.0.2-150600.10.3.1.ppc64le",
"SUSE Linux Enterprise Module for Python 3 15 SP6:python311-PyYAML-6.0.2-150600.10.3.1.s390x",
"SUSE Linux Enterprise Module for Python 3 15 SP6:python311-PyYAML-6.0.2-150600.10.3.1.x86_64",
"SUSE Linux Enterprise Module for Python 3 15 SP7:python311-PyYAML-6.0.2-150600.10.3.1.aarch64",
"SUSE Linux Enterprise Module for Python 3 15 SP7:python311-PyYAML-6.0.2-150600.10.3.1.ppc64le",
"SUSE Linux Enterprise Module for Python 3 15 SP7:python311-PyYAML-6.0.2-150600.10.3.1.s390x",
"SUSE Linux Enterprise Module for Python 3 15 SP7:python311-PyYAML-6.0.2-150600.10.3.1.x86_64",
"openSUSE Leap 15.6:git-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-arch-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-arch-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-arch-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-arch-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-core-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-core-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-core-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-core-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-credential-libsecret-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-credential-libsecret-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-credential-libsecret-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-credential-libsecret-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-cvs-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-cvs-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-cvs-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-cvs-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-daemon-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-daemon-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-daemon-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-daemon-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-doc-2.51.0-150600.3.12.1.noarch",
"openSUSE Leap 15.6:git-email-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-email-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-email-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-email-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-gui-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-gui-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-gui-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-gui-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-lfs-3.7.0-150600.13.3.1.aarch64",
"openSUSE Leap 15.6:git-lfs-3.7.0-150600.13.3.1.ppc64le",
"openSUSE Leap 15.6:git-lfs-3.7.0-150600.13.3.1.s390x",
"openSUSE Leap 15.6:git-lfs-3.7.0-150600.13.3.1.x86_64",
"openSUSE Leap 15.6:git-p4-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-p4-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-p4-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-p4-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-svn-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-svn-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-svn-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-svn-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-web-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-web-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-web-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-web-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:gitk-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:gitk-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:gitk-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:gitk-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:obs-scm-bridge-0.7.4-150600.14.4.1.noarch",
"openSUSE Leap 15.6:perl-Git-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:perl-Git-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:perl-Git-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:perl-Git-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:python311-PyYAML-6.0.2-150600.10.3.1.aarch64",
"openSUSE Leap 15.6:python311-PyYAML-6.0.2-150600.10.3.1.ppc64le",
"openSUSE Leap 15.6:python311-PyYAML-6.0.2-150600.10.3.1.s390x",
"openSUSE Leap 15.6:python311-PyYAML-6.0.2-150600.10.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-08-29T00:07:40Z",
"details": "moderate"
}
],
"title": "CVE-2025-46835"
},
{
"cve": "CVE-2025-48384",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-48384"
}
],
"notes": [
{
"category": "general",
"text": "Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full access to internals. When reading a config value, Git strips any trailing carriage return and line feed (CRLF). When writing a config entry, values with a trailing CR are not quoted, causing the CR to be lost when the config is later read. When initializing a submodule, if the submodule path contains a trailing CR, the altered path is read resulting in the submodule being checked out to an incorrect location. If a symlink exists that points the altered path to the submodule hooks directory, and the submodule contains an executable post-checkout hook, the script may be unintentionally executed after checkout. This vulnerability is fixed in v2.43.7, v2.44.4, v2.45.4, v2.46.4, v2.47.3, v2.48.2, v2.49.1, and v2.50.1.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:git-core-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:git-core-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:git-core-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:git-core-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-doc-2.51.0-150600.3.12.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-lfs-3.7.0-150600.13.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-lfs-3.7.0-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-lfs-3.7.0-150600.13.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-lfs-3.7.0-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:obs-scm-bridge-0.7.4-150600.14.4.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-arch-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-arch-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-arch-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-arch-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-cvs-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-cvs-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-cvs-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-cvs-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-daemon-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-daemon-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-daemon-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-daemon-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-doc-2.51.0-150600.3.12.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-email-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-email-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-email-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-email-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-gui-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-gui-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-gui-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-gui-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-lfs-3.7.0-150600.13.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-lfs-3.7.0-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-lfs-3.7.0-150600.13.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-lfs-3.7.0-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-svn-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-svn-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-svn-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-svn-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-web-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-web-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-web-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-web-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:gitk-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:gitk-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:gitk-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:gitk-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:obs-scm-bridge-0.7.4-150600.14.4.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:perl-Git-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:perl-Git-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:perl-Git-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:perl-Git-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Python 3 15 SP6:python311-PyYAML-6.0.2-150600.10.3.1.aarch64",
"SUSE Linux Enterprise Module for Python 3 15 SP6:python311-PyYAML-6.0.2-150600.10.3.1.ppc64le",
"SUSE Linux Enterprise Module for Python 3 15 SP6:python311-PyYAML-6.0.2-150600.10.3.1.s390x",
"SUSE Linux Enterprise Module for Python 3 15 SP6:python311-PyYAML-6.0.2-150600.10.3.1.x86_64",
"SUSE Linux Enterprise Module for Python 3 15 SP7:python311-PyYAML-6.0.2-150600.10.3.1.aarch64",
"SUSE Linux Enterprise Module for Python 3 15 SP7:python311-PyYAML-6.0.2-150600.10.3.1.ppc64le",
"SUSE Linux Enterprise Module for Python 3 15 SP7:python311-PyYAML-6.0.2-150600.10.3.1.s390x",
"SUSE Linux Enterprise Module for Python 3 15 SP7:python311-PyYAML-6.0.2-150600.10.3.1.x86_64",
"openSUSE Leap 15.6:git-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-arch-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-arch-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-arch-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-arch-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-core-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-core-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-core-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-core-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-credential-libsecret-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-credential-libsecret-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-credential-libsecret-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-credential-libsecret-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-cvs-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-cvs-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-cvs-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-cvs-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-daemon-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-daemon-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-daemon-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-daemon-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-doc-2.51.0-150600.3.12.1.noarch",
"openSUSE Leap 15.6:git-email-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-email-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-email-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-email-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-gui-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-gui-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-gui-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-gui-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-lfs-3.7.0-150600.13.3.1.aarch64",
"openSUSE Leap 15.6:git-lfs-3.7.0-150600.13.3.1.ppc64le",
"openSUSE Leap 15.6:git-lfs-3.7.0-150600.13.3.1.s390x",
"openSUSE Leap 15.6:git-lfs-3.7.0-150600.13.3.1.x86_64",
"openSUSE Leap 15.6:git-p4-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-p4-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-p4-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-p4-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-svn-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-svn-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-svn-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-svn-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-web-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-web-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-web-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-web-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:gitk-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:gitk-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:gitk-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:gitk-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:obs-scm-bridge-0.7.4-150600.14.4.1.noarch",
"openSUSE Leap 15.6:perl-Git-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:perl-Git-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:perl-Git-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:perl-Git-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:python311-PyYAML-6.0.2-150600.10.3.1.aarch64",
"openSUSE Leap 15.6:python311-PyYAML-6.0.2-150600.10.3.1.ppc64le",
"openSUSE Leap 15.6:python311-PyYAML-6.0.2-150600.10.3.1.s390x",
"openSUSE Leap 15.6:python311-PyYAML-6.0.2-150600.10.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-48384",
"url": "https://www.suse.com/security/cve/CVE-2025-48384"
},
{
"category": "external",
"summary": "SUSE Bug 1245943 for CVE-2025-48384",
"url": "https://bugzilla.suse.com/1245943"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:git-core-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:git-core-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:git-core-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:git-core-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-doc-2.51.0-150600.3.12.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-lfs-3.7.0-150600.13.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-lfs-3.7.0-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-lfs-3.7.0-150600.13.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-lfs-3.7.0-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:obs-scm-bridge-0.7.4-150600.14.4.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-arch-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-arch-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-arch-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-arch-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-cvs-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-cvs-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-cvs-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-cvs-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-daemon-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-daemon-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-daemon-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-daemon-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-doc-2.51.0-150600.3.12.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-email-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-email-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-email-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-email-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-gui-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-gui-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-gui-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-gui-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-lfs-3.7.0-150600.13.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-lfs-3.7.0-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-lfs-3.7.0-150600.13.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-lfs-3.7.0-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-svn-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-svn-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-svn-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-svn-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-web-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-web-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-web-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-web-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:gitk-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:gitk-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:gitk-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:gitk-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:obs-scm-bridge-0.7.4-150600.14.4.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:perl-Git-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:perl-Git-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:perl-Git-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:perl-Git-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Python 3 15 SP6:python311-PyYAML-6.0.2-150600.10.3.1.aarch64",
"SUSE Linux Enterprise Module for Python 3 15 SP6:python311-PyYAML-6.0.2-150600.10.3.1.ppc64le",
"SUSE Linux Enterprise Module for Python 3 15 SP6:python311-PyYAML-6.0.2-150600.10.3.1.s390x",
"SUSE Linux Enterprise Module for Python 3 15 SP6:python311-PyYAML-6.0.2-150600.10.3.1.x86_64",
"SUSE Linux Enterprise Module for Python 3 15 SP7:python311-PyYAML-6.0.2-150600.10.3.1.aarch64",
"SUSE Linux Enterprise Module for Python 3 15 SP7:python311-PyYAML-6.0.2-150600.10.3.1.ppc64le",
"SUSE Linux Enterprise Module for Python 3 15 SP7:python311-PyYAML-6.0.2-150600.10.3.1.s390x",
"SUSE Linux Enterprise Module for Python 3 15 SP7:python311-PyYAML-6.0.2-150600.10.3.1.x86_64",
"openSUSE Leap 15.6:git-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-arch-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-arch-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-arch-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-arch-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-core-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-core-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-core-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-core-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-credential-libsecret-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-credential-libsecret-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-credential-libsecret-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-credential-libsecret-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-cvs-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-cvs-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-cvs-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-cvs-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-daemon-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-daemon-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-daemon-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-daemon-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-doc-2.51.0-150600.3.12.1.noarch",
"openSUSE Leap 15.6:git-email-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-email-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-email-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-email-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-gui-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-gui-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-gui-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-gui-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-lfs-3.7.0-150600.13.3.1.aarch64",
"openSUSE Leap 15.6:git-lfs-3.7.0-150600.13.3.1.ppc64le",
"openSUSE Leap 15.6:git-lfs-3.7.0-150600.13.3.1.s390x",
"openSUSE Leap 15.6:git-lfs-3.7.0-150600.13.3.1.x86_64",
"openSUSE Leap 15.6:git-p4-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-p4-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-p4-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-p4-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-svn-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-svn-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-svn-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-svn-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-web-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-web-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-web-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-web-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:gitk-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:gitk-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:gitk-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:gitk-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:obs-scm-bridge-0.7.4-150600.14.4.1.noarch",
"openSUSE Leap 15.6:perl-Git-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:perl-Git-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:perl-Git-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:perl-Git-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:python311-PyYAML-6.0.2-150600.10.3.1.aarch64",
"openSUSE Leap 15.6:python311-PyYAML-6.0.2-150600.10.3.1.ppc64le",
"openSUSE Leap 15.6:python311-PyYAML-6.0.2-150600.10.3.1.s390x",
"openSUSE Leap 15.6:python311-PyYAML-6.0.2-150600.10.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:git-core-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:git-core-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:git-core-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:git-core-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-doc-2.51.0-150600.3.12.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-lfs-3.7.0-150600.13.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-lfs-3.7.0-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-lfs-3.7.0-150600.13.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-lfs-3.7.0-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:obs-scm-bridge-0.7.4-150600.14.4.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-arch-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-arch-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-arch-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-arch-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-cvs-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-cvs-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-cvs-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-cvs-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-daemon-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-daemon-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-daemon-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-daemon-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-doc-2.51.0-150600.3.12.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-email-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-email-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-email-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-email-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-gui-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-gui-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-gui-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-gui-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-lfs-3.7.0-150600.13.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-lfs-3.7.0-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-lfs-3.7.0-150600.13.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-lfs-3.7.0-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-svn-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-svn-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-svn-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-svn-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-web-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-web-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-web-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-web-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:gitk-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:gitk-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:gitk-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:gitk-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:obs-scm-bridge-0.7.4-150600.14.4.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:perl-Git-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:perl-Git-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:perl-Git-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:perl-Git-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Python 3 15 SP6:python311-PyYAML-6.0.2-150600.10.3.1.aarch64",
"SUSE Linux Enterprise Module for Python 3 15 SP6:python311-PyYAML-6.0.2-150600.10.3.1.ppc64le",
"SUSE Linux Enterprise Module for Python 3 15 SP6:python311-PyYAML-6.0.2-150600.10.3.1.s390x",
"SUSE Linux Enterprise Module for Python 3 15 SP6:python311-PyYAML-6.0.2-150600.10.3.1.x86_64",
"SUSE Linux Enterprise Module for Python 3 15 SP7:python311-PyYAML-6.0.2-150600.10.3.1.aarch64",
"SUSE Linux Enterprise Module for Python 3 15 SP7:python311-PyYAML-6.0.2-150600.10.3.1.ppc64le",
"SUSE Linux Enterprise Module for Python 3 15 SP7:python311-PyYAML-6.0.2-150600.10.3.1.s390x",
"SUSE Linux Enterprise Module for Python 3 15 SP7:python311-PyYAML-6.0.2-150600.10.3.1.x86_64",
"openSUSE Leap 15.6:git-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-arch-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-arch-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-arch-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-arch-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-core-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-core-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-core-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-core-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-credential-libsecret-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-credential-libsecret-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-credential-libsecret-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-credential-libsecret-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-cvs-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-cvs-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-cvs-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-cvs-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-daemon-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-daemon-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-daemon-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-daemon-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-doc-2.51.0-150600.3.12.1.noarch",
"openSUSE Leap 15.6:git-email-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-email-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-email-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-email-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-gui-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-gui-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-gui-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-gui-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-lfs-3.7.0-150600.13.3.1.aarch64",
"openSUSE Leap 15.6:git-lfs-3.7.0-150600.13.3.1.ppc64le",
"openSUSE Leap 15.6:git-lfs-3.7.0-150600.13.3.1.s390x",
"openSUSE Leap 15.6:git-lfs-3.7.0-150600.13.3.1.x86_64",
"openSUSE Leap 15.6:git-p4-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-p4-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-p4-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-p4-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-svn-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-svn-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-svn-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-svn-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-web-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-web-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-web-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-web-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:gitk-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:gitk-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:gitk-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:gitk-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:obs-scm-bridge-0.7.4-150600.14.4.1.noarch",
"openSUSE Leap 15.6:perl-Git-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:perl-Git-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:perl-Git-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:perl-Git-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:python311-PyYAML-6.0.2-150600.10.3.1.aarch64",
"openSUSE Leap 15.6:python311-PyYAML-6.0.2-150600.10.3.1.ppc64le",
"openSUSE Leap 15.6:python311-PyYAML-6.0.2-150600.10.3.1.s390x",
"openSUSE Leap 15.6:python311-PyYAML-6.0.2-150600.10.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-08-29T00:07:40Z",
"details": "important"
}
],
"title": "CVE-2025-48384"
},
{
"cve": "CVE-2025-48385",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-48385"
}
],
"notes": [
{
"category": "general",
"text": "Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full access to internals. When cloning a repository Git knows to optionally fetch a bundle advertised by the remote server, which allows the server-side to offload parts of the clone to a CDN. The Git client does not perform sufficient validation of the advertised bundles, which allows the remote side to perform protocol injection. This protocol injection can cause the client to write the fetched bundle to a location controlled by the adversary. The fetched content is fully controlled by the server, which can in the worst case lead to arbitrary code execution. The use of bundle URIs is not enabled by default and can be controlled by the bundle.heuristic config option. Some cases of the vulnerability require that the adversary is in control of where a repository will be cloned to. This either requires social engineering or a recursive clone with submodules. These cases can thus be avoided by disabling recursive clones. This vulnerability is fixed in v2.43.7, v2.44.4, v2.45.4, v2.46.4, v2.47.3, v2.48.2, v2.49.1, and v2.50.1.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:git-core-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:git-core-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:git-core-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:git-core-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-doc-2.51.0-150600.3.12.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-lfs-3.7.0-150600.13.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-lfs-3.7.0-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-lfs-3.7.0-150600.13.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-lfs-3.7.0-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:obs-scm-bridge-0.7.4-150600.14.4.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-arch-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-arch-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-arch-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-arch-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-cvs-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-cvs-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-cvs-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-cvs-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-daemon-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-daemon-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-daemon-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-daemon-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-doc-2.51.0-150600.3.12.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-email-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-email-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-email-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-email-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-gui-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-gui-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-gui-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-gui-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-lfs-3.7.0-150600.13.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-lfs-3.7.0-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-lfs-3.7.0-150600.13.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-lfs-3.7.0-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-svn-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-svn-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-svn-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-svn-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-web-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-web-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-web-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-web-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:gitk-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:gitk-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:gitk-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:gitk-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:obs-scm-bridge-0.7.4-150600.14.4.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:perl-Git-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:perl-Git-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:perl-Git-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:perl-Git-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Python 3 15 SP6:python311-PyYAML-6.0.2-150600.10.3.1.aarch64",
"SUSE Linux Enterprise Module for Python 3 15 SP6:python311-PyYAML-6.0.2-150600.10.3.1.ppc64le",
"SUSE Linux Enterprise Module for Python 3 15 SP6:python311-PyYAML-6.0.2-150600.10.3.1.s390x",
"SUSE Linux Enterprise Module for Python 3 15 SP6:python311-PyYAML-6.0.2-150600.10.3.1.x86_64",
"SUSE Linux Enterprise Module for Python 3 15 SP7:python311-PyYAML-6.0.2-150600.10.3.1.aarch64",
"SUSE Linux Enterprise Module for Python 3 15 SP7:python311-PyYAML-6.0.2-150600.10.3.1.ppc64le",
"SUSE Linux Enterprise Module for Python 3 15 SP7:python311-PyYAML-6.0.2-150600.10.3.1.s390x",
"SUSE Linux Enterprise Module for Python 3 15 SP7:python311-PyYAML-6.0.2-150600.10.3.1.x86_64",
"openSUSE Leap 15.6:git-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-arch-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-arch-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-arch-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-arch-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-core-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-core-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-core-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-core-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-credential-libsecret-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-credential-libsecret-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-credential-libsecret-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-credential-libsecret-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-cvs-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-cvs-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-cvs-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-cvs-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-daemon-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-daemon-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-daemon-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-daemon-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-doc-2.51.0-150600.3.12.1.noarch",
"openSUSE Leap 15.6:git-email-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-email-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-email-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-email-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-gui-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-gui-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-gui-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-gui-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-lfs-3.7.0-150600.13.3.1.aarch64",
"openSUSE Leap 15.6:git-lfs-3.7.0-150600.13.3.1.ppc64le",
"openSUSE Leap 15.6:git-lfs-3.7.0-150600.13.3.1.s390x",
"openSUSE Leap 15.6:git-lfs-3.7.0-150600.13.3.1.x86_64",
"openSUSE Leap 15.6:git-p4-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-p4-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-p4-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-p4-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-svn-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-svn-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-svn-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-svn-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-web-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-web-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-web-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-web-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:gitk-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:gitk-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:gitk-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:gitk-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:obs-scm-bridge-0.7.4-150600.14.4.1.noarch",
"openSUSE Leap 15.6:perl-Git-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:perl-Git-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:perl-Git-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:perl-Git-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:python311-PyYAML-6.0.2-150600.10.3.1.aarch64",
"openSUSE Leap 15.6:python311-PyYAML-6.0.2-150600.10.3.1.ppc64le",
"openSUSE Leap 15.6:python311-PyYAML-6.0.2-150600.10.3.1.s390x",
"openSUSE Leap 15.6:python311-PyYAML-6.0.2-150600.10.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-48385",
"url": "https://www.suse.com/security/cve/CVE-2025-48385"
},
{
"category": "external",
"summary": "SUSE Bug 1245946 for CVE-2025-48385",
"url": "https://bugzilla.suse.com/1245946"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:git-core-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:git-core-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:git-core-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:git-core-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-doc-2.51.0-150600.3.12.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-lfs-3.7.0-150600.13.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-lfs-3.7.0-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-lfs-3.7.0-150600.13.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-lfs-3.7.0-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:obs-scm-bridge-0.7.4-150600.14.4.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-arch-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-arch-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-arch-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-arch-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-cvs-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-cvs-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-cvs-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-cvs-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-daemon-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-daemon-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-daemon-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-daemon-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-doc-2.51.0-150600.3.12.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-email-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-email-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-email-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-email-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-gui-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-gui-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-gui-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-gui-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-lfs-3.7.0-150600.13.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-lfs-3.7.0-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-lfs-3.7.0-150600.13.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-lfs-3.7.0-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-svn-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-svn-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-svn-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-svn-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-web-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-web-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-web-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-web-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:gitk-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:gitk-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:gitk-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:gitk-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:obs-scm-bridge-0.7.4-150600.14.4.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:perl-Git-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:perl-Git-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:perl-Git-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:perl-Git-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Python 3 15 SP6:python311-PyYAML-6.0.2-150600.10.3.1.aarch64",
"SUSE Linux Enterprise Module for Python 3 15 SP6:python311-PyYAML-6.0.2-150600.10.3.1.ppc64le",
"SUSE Linux Enterprise Module for Python 3 15 SP6:python311-PyYAML-6.0.2-150600.10.3.1.s390x",
"SUSE Linux Enterprise Module for Python 3 15 SP6:python311-PyYAML-6.0.2-150600.10.3.1.x86_64",
"SUSE Linux Enterprise Module for Python 3 15 SP7:python311-PyYAML-6.0.2-150600.10.3.1.aarch64",
"SUSE Linux Enterprise Module for Python 3 15 SP7:python311-PyYAML-6.0.2-150600.10.3.1.ppc64le",
"SUSE Linux Enterprise Module for Python 3 15 SP7:python311-PyYAML-6.0.2-150600.10.3.1.s390x",
"SUSE Linux Enterprise Module for Python 3 15 SP7:python311-PyYAML-6.0.2-150600.10.3.1.x86_64",
"openSUSE Leap 15.6:git-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-arch-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-arch-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-arch-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-arch-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-core-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-core-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-core-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-core-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-credential-libsecret-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-credential-libsecret-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-credential-libsecret-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-credential-libsecret-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-cvs-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-cvs-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-cvs-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-cvs-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-daemon-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-daemon-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-daemon-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-daemon-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-doc-2.51.0-150600.3.12.1.noarch",
"openSUSE Leap 15.6:git-email-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-email-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-email-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-email-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-gui-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-gui-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-gui-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-gui-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-lfs-3.7.0-150600.13.3.1.aarch64",
"openSUSE Leap 15.6:git-lfs-3.7.0-150600.13.3.1.ppc64le",
"openSUSE Leap 15.6:git-lfs-3.7.0-150600.13.3.1.s390x",
"openSUSE Leap 15.6:git-lfs-3.7.0-150600.13.3.1.x86_64",
"openSUSE Leap 15.6:git-p4-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-p4-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-p4-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-p4-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-svn-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-svn-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-svn-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-svn-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-web-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-web-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-web-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-web-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:gitk-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:gitk-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:gitk-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:gitk-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:obs-scm-bridge-0.7.4-150600.14.4.1.noarch",
"openSUSE Leap 15.6:perl-Git-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:perl-Git-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:perl-Git-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:perl-Git-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:python311-PyYAML-6.0.2-150600.10.3.1.aarch64",
"openSUSE Leap 15.6:python311-PyYAML-6.0.2-150600.10.3.1.ppc64le",
"openSUSE Leap 15.6:python311-PyYAML-6.0.2-150600.10.3.1.s390x",
"openSUSE Leap 15.6:python311-PyYAML-6.0.2-150600.10.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP6:git-core-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:git-core-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:git-core-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:git-core-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:git-core-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-arch-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-cvs-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-daemon-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-doc-2.51.0-150600.3.12.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-email-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-gui-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-lfs-3.7.0-150600.13.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-lfs-3.7.0-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-lfs-3.7.0-150600.13.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-lfs-3.7.0-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-svn-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:git-web-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:gitk-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:obs-scm-bridge-0.7.4-150600.14.4.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP6:perl-Git-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-arch-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-arch-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-arch-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-arch-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-cvs-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-cvs-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-cvs-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-cvs-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-daemon-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-daemon-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-daemon-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-daemon-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-doc-2.51.0-150600.3.12.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-email-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-email-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-email-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-email-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-gui-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-gui-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-gui-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-gui-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-lfs-3.7.0-150600.13.3.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-lfs-3.7.0-150600.13.3.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-lfs-3.7.0-150600.13.3.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-lfs-3.7.0-150600.13.3.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-svn-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-svn-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-svn-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-svn-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-web-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-web-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-web-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:git-web-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:gitk-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:gitk-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:gitk-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:gitk-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:obs-scm-bridge-0.7.4-150600.14.4.1.noarch",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:perl-Git-2.51.0-150600.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:perl-Git-2.51.0-150600.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:perl-Git-2.51.0-150600.3.12.1.s390x",
"SUSE Linux Enterprise Module for Development Tools 15 SP7:perl-Git-2.51.0-150600.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Python 3 15 SP6:python311-PyYAML-6.0.2-150600.10.3.1.aarch64",
"SUSE Linux Enterprise Module for Python 3 15 SP6:python311-PyYAML-6.0.2-150600.10.3.1.ppc64le",
"SUSE Linux Enterprise Module for Python 3 15 SP6:python311-PyYAML-6.0.2-150600.10.3.1.s390x",
"SUSE Linux Enterprise Module for Python 3 15 SP6:python311-PyYAML-6.0.2-150600.10.3.1.x86_64",
"SUSE Linux Enterprise Module for Python 3 15 SP7:python311-PyYAML-6.0.2-150600.10.3.1.aarch64",
"SUSE Linux Enterprise Module for Python 3 15 SP7:python311-PyYAML-6.0.2-150600.10.3.1.ppc64le",
"SUSE Linux Enterprise Module for Python 3 15 SP7:python311-PyYAML-6.0.2-150600.10.3.1.s390x",
"SUSE Linux Enterprise Module for Python 3 15 SP7:python311-PyYAML-6.0.2-150600.10.3.1.x86_64",
"openSUSE Leap 15.6:git-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-arch-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-arch-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-arch-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-arch-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-core-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-core-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-core-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-core-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-credential-libsecret-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-credential-libsecret-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-credential-libsecret-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-credential-libsecret-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-cvs-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-cvs-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-cvs-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-cvs-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-daemon-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-daemon-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-daemon-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-daemon-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-doc-2.51.0-150600.3.12.1.noarch",
"openSUSE Leap 15.6:git-email-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-email-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-email-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-email-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-gui-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-gui-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-gui-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-gui-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-lfs-3.7.0-150600.13.3.1.aarch64",
"openSUSE Leap 15.6:git-lfs-3.7.0-150600.13.3.1.ppc64le",
"openSUSE Leap 15.6:git-lfs-3.7.0-150600.13.3.1.s390x",
"openSUSE Leap 15.6:git-lfs-3.7.0-150600.13.3.1.x86_64",
"openSUSE Leap 15.6:git-p4-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-p4-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-p4-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-p4-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-svn-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-svn-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-svn-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-svn-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:git-web-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:git-web-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:git-web-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:git-web-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:gitk-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:gitk-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:gitk-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:gitk-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:obs-scm-bridge-0.7.4-150600.14.4.1.noarch",
"openSUSE Leap 15.6:perl-Git-2.51.0-150600.3.12.1.aarch64",
"openSUSE Leap 15.6:perl-Git-2.51.0-150600.3.12.1.ppc64le",
"openSUSE Leap 15.6:perl-Git-2.51.0-150600.3.12.1.s390x",
"openSUSE Leap 15.6:perl-Git-2.51.0-150600.3.12.1.x86_64",
"openSUSE Leap 15.6:python311-PyYAML-6.0.2-150600.10.3.1.aarch64",
"openSUSE Leap 15.6:python311-PyYAML-6.0.2-150600.10.3.1.ppc64le",
"openSUSE Leap 15.6:python311-PyYAML-6.0.2-150600.10.3.1.s390x",
"openSUSE Leap 15.6:python311-PyYAML-6.0.2-150600.10.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-08-29T00:07:40Z",
"details": "important"
}
],
"title": "CVE-2025-48385"
}
]
}
suse-su-2025:03037-1
Vulnerability from csaf_suse
Published
2025-09-01 12:45
Modified
2025-09-01 12:45
Summary
Security update for git
Notes
Title of the patch
Security update for git
Description of the patch
This update for git fixes the following issues:
Updated to 2.43.7 (jsc#PED-13447):
- CVE-2025-27613: Fixed arbitrary writable file creation and truncation in Gitk (bsc#1245938)
- CVE-2025-27614: Fixed arbitrary script execution via repo clonation in Gitk (bsc#1245939)
- CVE-2025-46835: Fixed arbitrary writable file creation via untrusted repository clonation in Git GUI (bsc#1245942)
- CVE-2025-48384: Fixed arbitrary writable file creation when cloning untrusted repositories with submodules
using the --recursive flag (bsc#1245943)
- CVE-2025-48385: Fixed arbitrary code execution due to protocol injection via fetching advertised bundle (bsc#1245946)
Other fixes:
- Drop git-credential-gnome-keyring package as it was dropped upstream,
use git-credential-libsecret instead
- git-add--interactive was removed upstream in favor of built in implementation,
which was already the default in SLE.
Patchnames
SUSE-2025-3037,SUSE-SLE-Micro-5.5-2025-3037,SUSE-SLE-Product-HPC-15-SP3-LTSS-2025-3037,SUSE-SLE-Product-HPC-15-SP4-ESPOS-2025-3037,SUSE-SLE-Product-HPC-15-SP4-LTSS-2025-3037,SUSE-SLE-Product-HPC-15-SP5-ESPOS-2025-3037,SUSE-SLE-Product-HPC-15-SP5-LTSS-2025-3037,SUSE-SLE-Product-SLES-15-SP3-LTSS-2025-3037,SUSE-SLE-Product-SLES-15-SP4-LTSS-2025-3037,SUSE-SLE-Product-SLES-15-SP5-LTSS-2025-3037,SUSE-SLE-Product-SLES_SAP-15-SP3-2025-3037,SUSE-SLE-Product-SLES_SAP-15-SP4-2025-3037,SUSE-SLE-Product-SLES_SAP-15-SP5-2025-3037,SUSE-SLE-Product-SUSE-Manager-Proxy-4.3-LTS-2025-3037,SUSE-SLE-Product-SUSE-Manager-Server-4.3-LTS-2025-3037,SUSE-Storage-7.1-2025-3037
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for git",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for git fixes the following issues:\n\nUpdated to 2.43.7 (jsc#PED-13447):\n\n- CVE-2025-27613: Fixed arbitrary writable file creation and truncation in Gitk (bsc#1245938)\n- CVE-2025-27614: Fixed arbitrary script execution via repo clonation in Gitk (bsc#1245939)\n- CVE-2025-46835: Fixed arbitrary writable file creation via untrusted repository clonation in Git GUI (bsc#1245942)\n- CVE-2025-48384: Fixed arbitrary writable file creation when cloning untrusted repositories with submodules\n using the --recursive flag (bsc#1245943)\n- CVE-2025-48385: Fixed arbitrary code execution due to protocol injection via fetching advertised bundle (bsc#1245946)\n\nOther fixes:\n\n- Drop git-credential-gnome-keyring package as it was dropped upstream,\n use git-credential-libsecret instead\n- git-add--interactive was removed upstream in favor of built in implementation,\n which was already the default in SLE.\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2025-3037,SUSE-SLE-Micro-5.5-2025-3037,SUSE-SLE-Product-HPC-15-SP3-LTSS-2025-3037,SUSE-SLE-Product-HPC-15-SP4-ESPOS-2025-3037,SUSE-SLE-Product-HPC-15-SP4-LTSS-2025-3037,SUSE-SLE-Product-HPC-15-SP5-ESPOS-2025-3037,SUSE-SLE-Product-HPC-15-SP5-LTSS-2025-3037,SUSE-SLE-Product-SLES-15-SP3-LTSS-2025-3037,SUSE-SLE-Product-SLES-15-SP4-LTSS-2025-3037,SUSE-SLE-Product-SLES-15-SP5-LTSS-2025-3037,SUSE-SLE-Product-SLES_SAP-15-SP3-2025-3037,SUSE-SLE-Product-SLES_SAP-15-SP4-2025-3037,SUSE-SLE-Product-SLES_SAP-15-SP5-2025-3037,SUSE-SLE-Product-SUSE-Manager-Proxy-4.3-LTS-2025-3037,SUSE-SLE-Product-SUSE-Manager-Server-4.3-LTS-2025-3037,SUSE-Storage-7.1-2025-3037",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2025_03037-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2025:03037-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-202503037-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2025:03037-1",
"url": "https://lists.suse.com/pipermail/sle-updates/2025-September/041483.html"
},
{
"category": "self",
"summary": "SUSE Bug 1245938",
"url": "https://bugzilla.suse.com/1245938"
},
{
"category": "self",
"summary": "SUSE Bug 1245939",
"url": "https://bugzilla.suse.com/1245939"
},
{
"category": "self",
"summary": "SUSE Bug 1245942",
"url": "https://bugzilla.suse.com/1245942"
},
{
"category": "self",
"summary": "SUSE Bug 1245943",
"url": "https://bugzilla.suse.com/1245943"
},
{
"category": "self",
"summary": "SUSE Bug 1245946",
"url": "https://bugzilla.suse.com/1245946"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-27613 page",
"url": "https://www.suse.com/security/cve/CVE-2025-27613/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-27614 page",
"url": "https://www.suse.com/security/cve/CVE-2025-27614/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-46835 page",
"url": "https://www.suse.com/security/cve/CVE-2025-46835/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-48384 page",
"url": "https://www.suse.com/security/cve/CVE-2025-48384/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-48385 page",
"url": "https://www.suse.com/security/cve/CVE-2025-48385/"
}
],
"title": "Security update for git",
"tracking": {
"current_release_date": "2025-09-01T12:45:59Z",
"generator": {
"date": "2025-09-01T12:45:59Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2025:03037-1",
"initial_release_date": "2025-09-01T12:45:59Z",
"revision_history": [
{
"date": "2025-09-01T12:45:59Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "git-2.43.7-150300.10.51.1.aarch64",
"product": {
"name": "git-2.43.7-150300.10.51.1.aarch64",
"product_id": "git-2.43.7-150300.10.51.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-arch-2.43.7-150300.10.51.1.aarch64",
"product": {
"name": "git-arch-2.43.7-150300.10.51.1.aarch64",
"product_id": "git-arch-2.43.7-150300.10.51.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-core-2.43.7-150300.10.51.1.aarch64",
"product": {
"name": "git-core-2.43.7-150300.10.51.1.aarch64",
"product_id": "git-core-2.43.7-150300.10.51.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-2.43.7-150300.10.51.1.aarch64",
"product": {
"name": "git-credential-libsecret-2.43.7-150300.10.51.1.aarch64",
"product_id": "git-credential-libsecret-2.43.7-150300.10.51.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-cvs-2.43.7-150300.10.51.1.aarch64",
"product": {
"name": "git-cvs-2.43.7-150300.10.51.1.aarch64",
"product_id": "git-cvs-2.43.7-150300.10.51.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-daemon-2.43.7-150300.10.51.1.aarch64",
"product": {
"name": "git-daemon-2.43.7-150300.10.51.1.aarch64",
"product_id": "git-daemon-2.43.7-150300.10.51.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-email-2.43.7-150300.10.51.1.aarch64",
"product": {
"name": "git-email-2.43.7-150300.10.51.1.aarch64",
"product_id": "git-email-2.43.7-150300.10.51.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-gui-2.43.7-150300.10.51.1.aarch64",
"product": {
"name": "git-gui-2.43.7-150300.10.51.1.aarch64",
"product_id": "git-gui-2.43.7-150300.10.51.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-p4-2.43.7-150300.10.51.1.aarch64",
"product": {
"name": "git-p4-2.43.7-150300.10.51.1.aarch64",
"product_id": "git-p4-2.43.7-150300.10.51.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-svn-2.43.7-150300.10.51.1.aarch64",
"product": {
"name": "git-svn-2.43.7-150300.10.51.1.aarch64",
"product_id": "git-svn-2.43.7-150300.10.51.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-web-2.43.7-150300.10.51.1.aarch64",
"product": {
"name": "git-web-2.43.7-150300.10.51.1.aarch64",
"product_id": "git-web-2.43.7-150300.10.51.1.aarch64"
}
},
{
"category": "product_version",
"name": "gitk-2.43.7-150300.10.51.1.aarch64",
"product": {
"name": "gitk-2.43.7-150300.10.51.1.aarch64",
"product_id": "gitk-2.43.7-150300.10.51.1.aarch64"
}
},
{
"category": "product_version",
"name": "perl-Git-2.43.7-150300.10.51.1.aarch64",
"product": {
"name": "perl-Git-2.43.7-150300.10.51.1.aarch64",
"product_id": "perl-Git-2.43.7-150300.10.51.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "git-2.43.7-150300.10.51.1.i586",
"product": {
"name": "git-2.43.7-150300.10.51.1.i586",
"product_id": "git-2.43.7-150300.10.51.1.i586"
}
},
{
"category": "product_version",
"name": "git-arch-2.43.7-150300.10.51.1.i586",
"product": {
"name": "git-arch-2.43.7-150300.10.51.1.i586",
"product_id": "git-arch-2.43.7-150300.10.51.1.i586"
}
},
{
"category": "product_version",
"name": "git-core-2.43.7-150300.10.51.1.i586",
"product": {
"name": "git-core-2.43.7-150300.10.51.1.i586",
"product_id": "git-core-2.43.7-150300.10.51.1.i586"
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-2.43.7-150300.10.51.1.i586",
"product": {
"name": "git-credential-libsecret-2.43.7-150300.10.51.1.i586",
"product_id": "git-credential-libsecret-2.43.7-150300.10.51.1.i586"
}
},
{
"category": "product_version",
"name": "git-cvs-2.43.7-150300.10.51.1.i586",
"product": {
"name": "git-cvs-2.43.7-150300.10.51.1.i586",
"product_id": "git-cvs-2.43.7-150300.10.51.1.i586"
}
},
{
"category": "product_version",
"name": "git-daemon-2.43.7-150300.10.51.1.i586",
"product": {
"name": "git-daemon-2.43.7-150300.10.51.1.i586",
"product_id": "git-daemon-2.43.7-150300.10.51.1.i586"
}
},
{
"category": "product_version",
"name": "git-email-2.43.7-150300.10.51.1.i586",
"product": {
"name": "git-email-2.43.7-150300.10.51.1.i586",
"product_id": "git-email-2.43.7-150300.10.51.1.i586"
}
},
{
"category": "product_version",
"name": "git-gui-2.43.7-150300.10.51.1.i586",
"product": {
"name": "git-gui-2.43.7-150300.10.51.1.i586",
"product_id": "git-gui-2.43.7-150300.10.51.1.i586"
}
},
{
"category": "product_version",
"name": "git-p4-2.43.7-150300.10.51.1.i586",
"product": {
"name": "git-p4-2.43.7-150300.10.51.1.i586",
"product_id": "git-p4-2.43.7-150300.10.51.1.i586"
}
},
{
"category": "product_version",
"name": "git-svn-2.43.7-150300.10.51.1.i586",
"product": {
"name": "git-svn-2.43.7-150300.10.51.1.i586",
"product_id": "git-svn-2.43.7-150300.10.51.1.i586"
}
},
{
"category": "product_version",
"name": "git-web-2.43.7-150300.10.51.1.i586",
"product": {
"name": "git-web-2.43.7-150300.10.51.1.i586",
"product_id": "git-web-2.43.7-150300.10.51.1.i586"
}
},
{
"category": "product_version",
"name": "gitk-2.43.7-150300.10.51.1.i586",
"product": {
"name": "gitk-2.43.7-150300.10.51.1.i586",
"product_id": "gitk-2.43.7-150300.10.51.1.i586"
}
},
{
"category": "product_version",
"name": "perl-Git-2.43.7-150300.10.51.1.i586",
"product": {
"name": "perl-Git-2.43.7-150300.10.51.1.i586",
"product_id": "perl-Git-2.43.7-150300.10.51.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "git-doc-2.43.7-150300.10.51.1.noarch",
"product": {
"name": "git-doc-2.43.7-150300.10.51.1.noarch",
"product_id": "git-doc-2.43.7-150300.10.51.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "git-2.43.7-150300.10.51.1.ppc64le",
"product": {
"name": "git-2.43.7-150300.10.51.1.ppc64le",
"product_id": "git-2.43.7-150300.10.51.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-arch-2.43.7-150300.10.51.1.ppc64le",
"product": {
"name": "git-arch-2.43.7-150300.10.51.1.ppc64le",
"product_id": "git-arch-2.43.7-150300.10.51.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-core-2.43.7-150300.10.51.1.ppc64le",
"product": {
"name": "git-core-2.43.7-150300.10.51.1.ppc64le",
"product_id": "git-core-2.43.7-150300.10.51.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-2.43.7-150300.10.51.1.ppc64le",
"product": {
"name": "git-credential-libsecret-2.43.7-150300.10.51.1.ppc64le",
"product_id": "git-credential-libsecret-2.43.7-150300.10.51.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-cvs-2.43.7-150300.10.51.1.ppc64le",
"product": {
"name": "git-cvs-2.43.7-150300.10.51.1.ppc64le",
"product_id": "git-cvs-2.43.7-150300.10.51.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-daemon-2.43.7-150300.10.51.1.ppc64le",
"product": {
"name": "git-daemon-2.43.7-150300.10.51.1.ppc64le",
"product_id": "git-daemon-2.43.7-150300.10.51.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-email-2.43.7-150300.10.51.1.ppc64le",
"product": {
"name": "git-email-2.43.7-150300.10.51.1.ppc64le",
"product_id": "git-email-2.43.7-150300.10.51.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-gui-2.43.7-150300.10.51.1.ppc64le",
"product": {
"name": "git-gui-2.43.7-150300.10.51.1.ppc64le",
"product_id": "git-gui-2.43.7-150300.10.51.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-p4-2.43.7-150300.10.51.1.ppc64le",
"product": {
"name": "git-p4-2.43.7-150300.10.51.1.ppc64le",
"product_id": "git-p4-2.43.7-150300.10.51.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-svn-2.43.7-150300.10.51.1.ppc64le",
"product": {
"name": "git-svn-2.43.7-150300.10.51.1.ppc64le",
"product_id": "git-svn-2.43.7-150300.10.51.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-web-2.43.7-150300.10.51.1.ppc64le",
"product": {
"name": "git-web-2.43.7-150300.10.51.1.ppc64le",
"product_id": "git-web-2.43.7-150300.10.51.1.ppc64le"
}
},
{
"category": "product_version",
"name": "gitk-2.43.7-150300.10.51.1.ppc64le",
"product": {
"name": "gitk-2.43.7-150300.10.51.1.ppc64le",
"product_id": "gitk-2.43.7-150300.10.51.1.ppc64le"
}
},
{
"category": "product_version",
"name": "perl-Git-2.43.7-150300.10.51.1.ppc64le",
"product": {
"name": "perl-Git-2.43.7-150300.10.51.1.ppc64le",
"product_id": "perl-Git-2.43.7-150300.10.51.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "git-2.43.7-150300.10.51.1.s390x",
"product": {
"name": "git-2.43.7-150300.10.51.1.s390x",
"product_id": "git-2.43.7-150300.10.51.1.s390x"
}
},
{
"category": "product_version",
"name": "git-arch-2.43.7-150300.10.51.1.s390x",
"product": {
"name": "git-arch-2.43.7-150300.10.51.1.s390x",
"product_id": "git-arch-2.43.7-150300.10.51.1.s390x"
}
},
{
"category": "product_version",
"name": "git-core-2.43.7-150300.10.51.1.s390x",
"product": {
"name": "git-core-2.43.7-150300.10.51.1.s390x",
"product_id": "git-core-2.43.7-150300.10.51.1.s390x"
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-2.43.7-150300.10.51.1.s390x",
"product": {
"name": "git-credential-libsecret-2.43.7-150300.10.51.1.s390x",
"product_id": "git-credential-libsecret-2.43.7-150300.10.51.1.s390x"
}
},
{
"category": "product_version",
"name": "git-cvs-2.43.7-150300.10.51.1.s390x",
"product": {
"name": "git-cvs-2.43.7-150300.10.51.1.s390x",
"product_id": "git-cvs-2.43.7-150300.10.51.1.s390x"
}
},
{
"category": "product_version",
"name": "git-daemon-2.43.7-150300.10.51.1.s390x",
"product": {
"name": "git-daemon-2.43.7-150300.10.51.1.s390x",
"product_id": "git-daemon-2.43.7-150300.10.51.1.s390x"
}
},
{
"category": "product_version",
"name": "git-email-2.43.7-150300.10.51.1.s390x",
"product": {
"name": "git-email-2.43.7-150300.10.51.1.s390x",
"product_id": "git-email-2.43.7-150300.10.51.1.s390x"
}
},
{
"category": "product_version",
"name": "git-gui-2.43.7-150300.10.51.1.s390x",
"product": {
"name": "git-gui-2.43.7-150300.10.51.1.s390x",
"product_id": "git-gui-2.43.7-150300.10.51.1.s390x"
}
},
{
"category": "product_version",
"name": "git-p4-2.43.7-150300.10.51.1.s390x",
"product": {
"name": "git-p4-2.43.7-150300.10.51.1.s390x",
"product_id": "git-p4-2.43.7-150300.10.51.1.s390x"
}
},
{
"category": "product_version",
"name": "git-svn-2.43.7-150300.10.51.1.s390x",
"product": {
"name": "git-svn-2.43.7-150300.10.51.1.s390x",
"product_id": "git-svn-2.43.7-150300.10.51.1.s390x"
}
},
{
"category": "product_version",
"name": "git-web-2.43.7-150300.10.51.1.s390x",
"product": {
"name": "git-web-2.43.7-150300.10.51.1.s390x",
"product_id": "git-web-2.43.7-150300.10.51.1.s390x"
}
},
{
"category": "product_version",
"name": "gitk-2.43.7-150300.10.51.1.s390x",
"product": {
"name": "gitk-2.43.7-150300.10.51.1.s390x",
"product_id": "gitk-2.43.7-150300.10.51.1.s390x"
}
},
{
"category": "product_version",
"name": "perl-Git-2.43.7-150300.10.51.1.s390x",
"product": {
"name": "perl-Git-2.43.7-150300.10.51.1.s390x",
"product_id": "perl-Git-2.43.7-150300.10.51.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "git-2.43.7-150300.10.51.1.x86_64",
"product": {
"name": "git-2.43.7-150300.10.51.1.x86_64",
"product_id": "git-2.43.7-150300.10.51.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-arch-2.43.7-150300.10.51.1.x86_64",
"product": {
"name": "git-arch-2.43.7-150300.10.51.1.x86_64",
"product_id": "git-arch-2.43.7-150300.10.51.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-core-2.43.7-150300.10.51.1.x86_64",
"product": {
"name": "git-core-2.43.7-150300.10.51.1.x86_64",
"product_id": "git-core-2.43.7-150300.10.51.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-2.43.7-150300.10.51.1.x86_64",
"product": {
"name": "git-credential-libsecret-2.43.7-150300.10.51.1.x86_64",
"product_id": "git-credential-libsecret-2.43.7-150300.10.51.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-cvs-2.43.7-150300.10.51.1.x86_64",
"product": {
"name": "git-cvs-2.43.7-150300.10.51.1.x86_64",
"product_id": "git-cvs-2.43.7-150300.10.51.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-daemon-2.43.7-150300.10.51.1.x86_64",
"product": {
"name": "git-daemon-2.43.7-150300.10.51.1.x86_64",
"product_id": "git-daemon-2.43.7-150300.10.51.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-email-2.43.7-150300.10.51.1.x86_64",
"product": {
"name": "git-email-2.43.7-150300.10.51.1.x86_64",
"product_id": "git-email-2.43.7-150300.10.51.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-gui-2.43.7-150300.10.51.1.x86_64",
"product": {
"name": "git-gui-2.43.7-150300.10.51.1.x86_64",
"product_id": "git-gui-2.43.7-150300.10.51.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-p4-2.43.7-150300.10.51.1.x86_64",
"product": {
"name": "git-p4-2.43.7-150300.10.51.1.x86_64",
"product_id": "git-p4-2.43.7-150300.10.51.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-svn-2.43.7-150300.10.51.1.x86_64",
"product": {
"name": "git-svn-2.43.7-150300.10.51.1.x86_64",
"product_id": "git-svn-2.43.7-150300.10.51.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-web-2.43.7-150300.10.51.1.x86_64",
"product": {
"name": "git-web-2.43.7-150300.10.51.1.x86_64",
"product_id": "git-web-2.43.7-150300.10.51.1.x86_64"
}
},
{
"category": "product_version",
"name": "gitk-2.43.7-150300.10.51.1.x86_64",
"product": {
"name": "gitk-2.43.7-150300.10.51.1.x86_64",
"product_id": "gitk-2.43.7-150300.10.51.1.x86_64"
}
},
{
"category": "product_version",
"name": "perl-Git-2.43.7-150300.10.51.1.x86_64",
"product": {
"name": "perl-Git-2.43.7-150300.10.51.1.x86_64",
"product_id": "perl-Git-2.43.7-150300.10.51.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Micro 5.5",
"product": {
"name": "SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-micro:5.5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-espos:15:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-espos:15:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15 SP3-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:15:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15 SP4-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:15:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15 SP5-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:15:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:15:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:15:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:15:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Manager Proxy LTS 4.3",
"product": {
"name": "SUSE Manager Proxy LTS 4.3",
"product_id": "SUSE Manager Proxy LTS 4.3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse-manager-proxy-lts:4.3"
}
}
},
{
"category": "product_name",
"name": "SUSE Manager Server LTS 4.3",
"product": {
"name": "SUSE Manager Server LTS 4.3",
"product_id": "SUSE Manager Server LTS 4.3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse-manager-server-lts:4.3"
}
}
},
{
"category": "product_name",
"name": "SUSE Enterprise Storage 7.1",
"product": {
"name": "SUSE Enterprise Storage 7.1",
"product_id": "SUSE Enterprise Storage 7.1",
"product_identification_helper": {
"cpe": "cpe:/o:suse:ses:7.1"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.43.7-150300.10.51.1.aarch64 as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:git-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "git-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.43.7-150300.10.51.1.ppc64le as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:git-2.43.7-150300.10.51.1.ppc64le"
},
"product_reference": "git-2.43.7-150300.10.51.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.43.7-150300.10.51.1.s390x as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:git-2.43.7-150300.10.51.1.s390x"
},
"product_reference": "git-2.43.7-150300.10.51.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:git-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.43.7-150300.10.51.1.aarch64 as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:git-core-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "git-core-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.43.7-150300.10.51.1.ppc64le as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:git-core-2.43.7-150300.10.51.1.ppc64le"
},
"product_reference": "git-core-2.43.7-150300.10.51.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.43.7-150300.10.51.1.s390x as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:git-core-2.43.7-150300.10.51.1.s390x"
},
"product_reference": "git-core-2.43.7-150300.10.51.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:git-core-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-core-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.43.7-150300.10.51.1.aarch64 as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:perl-Git-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "perl-Git-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.43.7-150300.10.51.1.ppc64le as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:perl-Git-2.43.7-150300.10.51.1.ppc64le"
},
"product_reference": "perl-Git-2.43.7-150300.10.51.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.43.7-150300.10.51.1.s390x as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:perl-Git-2.43.7-150300.10.51.1.s390x"
},
"product_reference": "perl-Git-2.43.7-150300.10.51.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:perl-Git-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "perl-Git-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.43.7-150300.10.51.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "git-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-arch-2.43.7-150300.10.51.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-arch-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "git-arch-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-arch-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-arch-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-arch-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.43.7-150300.10.51.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-core-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "git-core-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-core-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-core-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.43.7-150300.10.51.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-cvs-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "git-cvs-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-cvs-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-cvs-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.43.7-150300.10.51.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-daemon-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "git-daemon-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-daemon-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-daemon-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-doc-2.43.7-150300.10.51.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-doc-2.43.7-150300.10.51.1.noarch"
},
"product_reference": "git-doc-2.43.7-150300.10.51.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.43.7-150300.10.51.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-email-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "git-email-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-email-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-email-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.43.7-150300.10.51.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-gui-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "git-gui-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-gui-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-gui-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.43.7-150300.10.51.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-svn-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "git-svn-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-svn-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-svn-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.43.7-150300.10.51.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-web-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "git-web-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-web-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-web-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.43.7-150300.10.51.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:gitk-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "gitk-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:gitk-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "gitk-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.43.7-150300.10.51.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:perl-Git-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "perl-Git-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:perl-Git-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "perl-Git-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.43.7-150300.10.51.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "git-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-arch-2.43.7-150300.10.51.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-arch-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "git-arch-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-arch-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-arch-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-arch-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.43.7-150300.10.51.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-core-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "git-core-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-core-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-core-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.43.7-150300.10.51.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-cvs-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "git-cvs-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-cvs-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-cvs-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.43.7-150300.10.51.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-daemon-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "git-daemon-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-daemon-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-daemon-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-doc-2.43.7-150300.10.51.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-doc-2.43.7-150300.10.51.1.noarch"
},
"product_reference": "git-doc-2.43.7-150300.10.51.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.43.7-150300.10.51.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-email-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "git-email-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-email-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-email-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.43.7-150300.10.51.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-gui-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "git-gui-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-gui-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-gui-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.43.7-150300.10.51.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-svn-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "git-svn-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-svn-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-svn-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.43.7-150300.10.51.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-web-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "git-web-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-web-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-web-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.43.7-150300.10.51.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:gitk-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "gitk-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:gitk-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "gitk-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.43.7-150300.10.51.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:perl-Git-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "perl-Git-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:perl-Git-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "perl-Git-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.43.7-150300.10.51.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "git-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-arch-2.43.7-150300.10.51.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-arch-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "git-arch-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-arch-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-arch-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-arch-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.43.7-150300.10.51.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-core-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "git-core-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-core-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-core-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.43.7-150300.10.51.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-cvs-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "git-cvs-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-cvs-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-cvs-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.43.7-150300.10.51.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-daemon-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "git-daemon-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-daemon-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-daemon-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-doc-2.43.7-150300.10.51.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-doc-2.43.7-150300.10.51.1.noarch"
},
"product_reference": "git-doc-2.43.7-150300.10.51.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.43.7-150300.10.51.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-email-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "git-email-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-email-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-email-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.43.7-150300.10.51.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-gui-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "git-gui-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-gui-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-gui-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.43.7-150300.10.51.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-svn-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "git-svn-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-svn-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-svn-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.43.7-150300.10.51.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-web-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "git-web-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-web-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-web-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.43.7-150300.10.51.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:gitk-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "gitk-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:gitk-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "gitk-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.43.7-150300.10.51.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:perl-Git-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "perl-Git-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:perl-Git-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "perl-Git-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.43.7-150300.10.51.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "git-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-arch-2.43.7-150300.10.51.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-arch-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "git-arch-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-arch-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-arch-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-arch-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.43.7-150300.10.51.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-core-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "git-core-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-core-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-core-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.43.7-150300.10.51.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-cvs-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "git-cvs-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-cvs-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-cvs-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.43.7-150300.10.51.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-daemon-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "git-daemon-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-daemon-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-daemon-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-doc-2.43.7-150300.10.51.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-doc-2.43.7-150300.10.51.1.noarch"
},
"product_reference": "git-doc-2.43.7-150300.10.51.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.43.7-150300.10.51.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-email-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "git-email-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-email-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-email-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.43.7-150300.10.51.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-gui-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "git-gui-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-gui-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-gui-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.43.7-150300.10.51.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-svn-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "git-svn-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-svn-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-svn-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.43.7-150300.10.51.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-web-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "git-web-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-web-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-web-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.43.7-150300.10.51.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gitk-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "gitk-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gitk-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "gitk-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.43.7-150300.10.51.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:perl-Git-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "perl-Git-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:perl-Git-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "perl-Git-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.43.7-150300.10.51.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "git-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-arch-2.43.7-150300.10.51.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-arch-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "git-arch-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-arch-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-arch-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-arch-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.43.7-150300.10.51.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-core-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "git-core-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-core-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-core-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.43.7-150300.10.51.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-cvs-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "git-cvs-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-cvs-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-cvs-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.43.7-150300.10.51.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-daemon-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "git-daemon-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-daemon-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-daemon-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-doc-2.43.7-150300.10.51.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-doc-2.43.7-150300.10.51.1.noarch"
},
"product_reference": "git-doc-2.43.7-150300.10.51.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.43.7-150300.10.51.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-email-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "git-email-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-email-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-email-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.43.7-150300.10.51.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-gui-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "git-gui-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-gui-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-gui-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.43.7-150300.10.51.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-svn-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "git-svn-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-svn-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-svn-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.43.7-150300.10.51.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-web-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "git-web-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-web-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-web-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.43.7-150300.10.51.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gitk-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "gitk-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gitk-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "gitk-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.43.7-150300.10.51.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:perl-Git-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "perl-Git-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:perl-Git-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "perl-Git-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.43.7-150300.10.51.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "git-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.43.7-150300.10.51.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.43.7-150300.10.51.1.ppc64le"
},
"product_reference": "git-2.43.7-150300.10.51.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.43.7-150300.10.51.1.s390x as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.43.7-150300.10.51.1.s390x"
},
"product_reference": "git-2.43.7-150300.10.51.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-arch-2.43.7-150300.10.51.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "git-arch-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-arch-2.43.7-150300.10.51.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.43.7-150300.10.51.1.ppc64le"
},
"product_reference": "git-arch-2.43.7-150300.10.51.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-arch-2.43.7-150300.10.51.1.s390x as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.43.7-150300.10.51.1.s390x"
},
"product_reference": "git-arch-2.43.7-150300.10.51.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-arch-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-arch-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.43.7-150300.10.51.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "git-core-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.43.7-150300.10.51.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.43.7-150300.10.51.1.ppc64le"
},
"product_reference": "git-core-2.43.7-150300.10.51.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.43.7-150300.10.51.1.s390x as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.43.7-150300.10.51.1.s390x"
},
"product_reference": "git-core-2.43.7-150300.10.51.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-core-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.43.7-150300.10.51.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "git-cvs-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.43.7-150300.10.51.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.43.7-150300.10.51.1.ppc64le"
},
"product_reference": "git-cvs-2.43.7-150300.10.51.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.43.7-150300.10.51.1.s390x as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.43.7-150300.10.51.1.s390x"
},
"product_reference": "git-cvs-2.43.7-150300.10.51.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-cvs-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.43.7-150300.10.51.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "git-daemon-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.43.7-150300.10.51.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.43.7-150300.10.51.1.ppc64le"
},
"product_reference": "git-daemon-2.43.7-150300.10.51.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.43.7-150300.10.51.1.s390x as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.43.7-150300.10.51.1.s390x"
},
"product_reference": "git-daemon-2.43.7-150300.10.51.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-daemon-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-doc-2.43.7-150300.10.51.1.noarch as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:git-doc-2.43.7-150300.10.51.1.noarch"
},
"product_reference": "git-doc-2.43.7-150300.10.51.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.43.7-150300.10.51.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "git-email-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.43.7-150300.10.51.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.43.7-150300.10.51.1.ppc64le"
},
"product_reference": "git-email-2.43.7-150300.10.51.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.43.7-150300.10.51.1.s390x as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.43.7-150300.10.51.1.s390x"
},
"product_reference": "git-email-2.43.7-150300.10.51.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-email-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.43.7-150300.10.51.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "git-gui-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.43.7-150300.10.51.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.43.7-150300.10.51.1.ppc64le"
},
"product_reference": "git-gui-2.43.7-150300.10.51.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.43.7-150300.10.51.1.s390x as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.43.7-150300.10.51.1.s390x"
},
"product_reference": "git-gui-2.43.7-150300.10.51.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-gui-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.43.7-150300.10.51.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "git-svn-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.43.7-150300.10.51.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.43.7-150300.10.51.1.ppc64le"
},
"product_reference": "git-svn-2.43.7-150300.10.51.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.43.7-150300.10.51.1.s390x as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.43.7-150300.10.51.1.s390x"
},
"product_reference": "git-svn-2.43.7-150300.10.51.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-svn-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.43.7-150300.10.51.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "git-web-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.43.7-150300.10.51.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.43.7-150300.10.51.1.ppc64le"
},
"product_reference": "git-web-2.43.7-150300.10.51.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.43.7-150300.10.51.1.s390x as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.43.7-150300.10.51.1.s390x"
},
"product_reference": "git-web-2.43.7-150300.10.51.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-web-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.43.7-150300.10.51.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "gitk-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.43.7-150300.10.51.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.43.7-150300.10.51.1.ppc64le"
},
"product_reference": "gitk-2.43.7-150300.10.51.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.43.7-150300.10.51.1.s390x as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.43.7-150300.10.51.1.s390x"
},
"product_reference": "gitk-2.43.7-150300.10.51.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "gitk-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.43.7-150300.10.51.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "perl-Git-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.43.7-150300.10.51.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.43.7-150300.10.51.1.ppc64le"
},
"product_reference": "perl-Git-2.43.7-150300.10.51.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.43.7-150300.10.51.1.s390x as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.43.7-150300.10.51.1.s390x"
},
"product_reference": "perl-Git-2.43.7-150300.10.51.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "perl-Git-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.43.7-150300.10.51.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "git-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.43.7-150300.10.51.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.43.7-150300.10.51.1.ppc64le"
},
"product_reference": "git-2.43.7-150300.10.51.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.43.7-150300.10.51.1.s390x as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.43.7-150300.10.51.1.s390x"
},
"product_reference": "git-2.43.7-150300.10.51.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-arch-2.43.7-150300.10.51.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "git-arch-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-arch-2.43.7-150300.10.51.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.43.7-150300.10.51.1.ppc64le"
},
"product_reference": "git-arch-2.43.7-150300.10.51.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-arch-2.43.7-150300.10.51.1.s390x as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.43.7-150300.10.51.1.s390x"
},
"product_reference": "git-arch-2.43.7-150300.10.51.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-arch-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-arch-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.43.7-150300.10.51.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "git-core-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.43.7-150300.10.51.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.43.7-150300.10.51.1.ppc64le"
},
"product_reference": "git-core-2.43.7-150300.10.51.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.43.7-150300.10.51.1.s390x as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.43.7-150300.10.51.1.s390x"
},
"product_reference": "git-core-2.43.7-150300.10.51.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-core-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.43.7-150300.10.51.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "git-cvs-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.43.7-150300.10.51.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.43.7-150300.10.51.1.ppc64le"
},
"product_reference": "git-cvs-2.43.7-150300.10.51.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.43.7-150300.10.51.1.s390x as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.43.7-150300.10.51.1.s390x"
},
"product_reference": "git-cvs-2.43.7-150300.10.51.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-cvs-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.43.7-150300.10.51.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "git-daemon-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.43.7-150300.10.51.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.43.7-150300.10.51.1.ppc64le"
},
"product_reference": "git-daemon-2.43.7-150300.10.51.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.43.7-150300.10.51.1.s390x as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.43.7-150300.10.51.1.s390x"
},
"product_reference": "git-daemon-2.43.7-150300.10.51.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-daemon-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-doc-2.43.7-150300.10.51.1.noarch as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:git-doc-2.43.7-150300.10.51.1.noarch"
},
"product_reference": "git-doc-2.43.7-150300.10.51.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.43.7-150300.10.51.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "git-email-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.43.7-150300.10.51.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.43.7-150300.10.51.1.ppc64le"
},
"product_reference": "git-email-2.43.7-150300.10.51.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.43.7-150300.10.51.1.s390x as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.43.7-150300.10.51.1.s390x"
},
"product_reference": "git-email-2.43.7-150300.10.51.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-email-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.43.7-150300.10.51.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "git-gui-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.43.7-150300.10.51.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.43.7-150300.10.51.1.ppc64le"
},
"product_reference": "git-gui-2.43.7-150300.10.51.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.43.7-150300.10.51.1.s390x as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.43.7-150300.10.51.1.s390x"
},
"product_reference": "git-gui-2.43.7-150300.10.51.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-gui-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.43.7-150300.10.51.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "git-svn-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.43.7-150300.10.51.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.43.7-150300.10.51.1.ppc64le"
},
"product_reference": "git-svn-2.43.7-150300.10.51.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.43.7-150300.10.51.1.s390x as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.43.7-150300.10.51.1.s390x"
},
"product_reference": "git-svn-2.43.7-150300.10.51.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-svn-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.43.7-150300.10.51.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "git-web-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.43.7-150300.10.51.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.43.7-150300.10.51.1.ppc64le"
},
"product_reference": "git-web-2.43.7-150300.10.51.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.43.7-150300.10.51.1.s390x as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.43.7-150300.10.51.1.s390x"
},
"product_reference": "git-web-2.43.7-150300.10.51.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-web-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.43.7-150300.10.51.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "gitk-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.43.7-150300.10.51.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.43.7-150300.10.51.1.ppc64le"
},
"product_reference": "gitk-2.43.7-150300.10.51.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.43.7-150300.10.51.1.s390x as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.43.7-150300.10.51.1.s390x"
},
"product_reference": "gitk-2.43.7-150300.10.51.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "gitk-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.43.7-150300.10.51.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "perl-Git-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.43.7-150300.10.51.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.43.7-150300.10.51.1.ppc64le"
},
"product_reference": "perl-Git-2.43.7-150300.10.51.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.43.7-150300.10.51.1.s390x as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.43.7-150300.10.51.1.s390x"
},
"product_reference": "perl-Git-2.43.7-150300.10.51.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "perl-Git-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.43.7-150300.10.51.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:git-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "git-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.43.7-150300.10.51.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:git-2.43.7-150300.10.51.1.ppc64le"
},
"product_reference": "git-2.43.7-150300.10.51.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.43.7-150300.10.51.1.s390x as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:git-2.43.7-150300.10.51.1.s390x"
},
"product_reference": "git-2.43.7-150300.10.51.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:git-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-arch-2.43.7-150300.10.51.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:git-arch-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "git-arch-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-arch-2.43.7-150300.10.51.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:git-arch-2.43.7-150300.10.51.1.ppc64le"
},
"product_reference": "git-arch-2.43.7-150300.10.51.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-arch-2.43.7-150300.10.51.1.s390x as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:git-arch-2.43.7-150300.10.51.1.s390x"
},
"product_reference": "git-arch-2.43.7-150300.10.51.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-arch-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:git-arch-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-arch-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.43.7-150300.10.51.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:git-core-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "git-core-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.43.7-150300.10.51.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:git-core-2.43.7-150300.10.51.1.ppc64le"
},
"product_reference": "git-core-2.43.7-150300.10.51.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.43.7-150300.10.51.1.s390x as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:git-core-2.43.7-150300.10.51.1.s390x"
},
"product_reference": "git-core-2.43.7-150300.10.51.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:git-core-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-core-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.43.7-150300.10.51.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:git-cvs-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "git-cvs-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.43.7-150300.10.51.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:git-cvs-2.43.7-150300.10.51.1.ppc64le"
},
"product_reference": "git-cvs-2.43.7-150300.10.51.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.43.7-150300.10.51.1.s390x as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:git-cvs-2.43.7-150300.10.51.1.s390x"
},
"product_reference": "git-cvs-2.43.7-150300.10.51.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:git-cvs-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-cvs-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.43.7-150300.10.51.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:git-daemon-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "git-daemon-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.43.7-150300.10.51.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:git-daemon-2.43.7-150300.10.51.1.ppc64le"
},
"product_reference": "git-daemon-2.43.7-150300.10.51.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.43.7-150300.10.51.1.s390x as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:git-daemon-2.43.7-150300.10.51.1.s390x"
},
"product_reference": "git-daemon-2.43.7-150300.10.51.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:git-daemon-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-daemon-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-doc-2.43.7-150300.10.51.1.noarch as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:git-doc-2.43.7-150300.10.51.1.noarch"
},
"product_reference": "git-doc-2.43.7-150300.10.51.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.43.7-150300.10.51.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:git-email-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "git-email-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.43.7-150300.10.51.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:git-email-2.43.7-150300.10.51.1.ppc64le"
},
"product_reference": "git-email-2.43.7-150300.10.51.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.43.7-150300.10.51.1.s390x as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:git-email-2.43.7-150300.10.51.1.s390x"
},
"product_reference": "git-email-2.43.7-150300.10.51.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:git-email-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-email-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.43.7-150300.10.51.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:git-gui-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "git-gui-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.43.7-150300.10.51.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:git-gui-2.43.7-150300.10.51.1.ppc64le"
},
"product_reference": "git-gui-2.43.7-150300.10.51.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.43.7-150300.10.51.1.s390x as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:git-gui-2.43.7-150300.10.51.1.s390x"
},
"product_reference": "git-gui-2.43.7-150300.10.51.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:git-gui-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-gui-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.43.7-150300.10.51.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:git-svn-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "git-svn-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.43.7-150300.10.51.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:git-svn-2.43.7-150300.10.51.1.ppc64le"
},
"product_reference": "git-svn-2.43.7-150300.10.51.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.43.7-150300.10.51.1.s390x as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:git-svn-2.43.7-150300.10.51.1.s390x"
},
"product_reference": "git-svn-2.43.7-150300.10.51.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:git-svn-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-svn-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.43.7-150300.10.51.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:git-web-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "git-web-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.43.7-150300.10.51.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:git-web-2.43.7-150300.10.51.1.ppc64le"
},
"product_reference": "git-web-2.43.7-150300.10.51.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.43.7-150300.10.51.1.s390x as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:git-web-2.43.7-150300.10.51.1.s390x"
},
"product_reference": "git-web-2.43.7-150300.10.51.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:git-web-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-web-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.43.7-150300.10.51.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:gitk-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "gitk-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.43.7-150300.10.51.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:gitk-2.43.7-150300.10.51.1.ppc64le"
},
"product_reference": "gitk-2.43.7-150300.10.51.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.43.7-150300.10.51.1.s390x as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:gitk-2.43.7-150300.10.51.1.s390x"
},
"product_reference": "gitk-2.43.7-150300.10.51.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:gitk-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "gitk-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.43.7-150300.10.51.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:perl-Git-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "perl-Git-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.43.7-150300.10.51.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:perl-Git-2.43.7-150300.10.51.1.ppc64le"
},
"product_reference": "perl-Git-2.43.7-150300.10.51.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.43.7-150300.10.51.1.s390x as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:perl-Git-2.43.7-150300.10.51.1.s390x"
},
"product_reference": "perl-Git-2.43.7-150300.10.51.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:perl-Git-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "perl-Git-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.43.7-150300.10.51.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-2.43.7-150300.10.51.1.ppc64le"
},
"product_reference": "git-2.43.7-150300.10.51.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-arch-2.43.7-150300.10.51.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-arch-2.43.7-150300.10.51.1.ppc64le"
},
"product_reference": "git-arch-2.43.7-150300.10.51.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-arch-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-arch-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-arch-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.43.7-150300.10.51.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-core-2.43.7-150300.10.51.1.ppc64le"
},
"product_reference": "git-core-2.43.7-150300.10.51.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-core-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-core-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.43.7-150300.10.51.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-cvs-2.43.7-150300.10.51.1.ppc64le"
},
"product_reference": "git-cvs-2.43.7-150300.10.51.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-cvs-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-cvs-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.43.7-150300.10.51.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-daemon-2.43.7-150300.10.51.1.ppc64le"
},
"product_reference": "git-daemon-2.43.7-150300.10.51.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-daemon-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-daemon-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-doc-2.43.7-150300.10.51.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-doc-2.43.7-150300.10.51.1.noarch"
},
"product_reference": "git-doc-2.43.7-150300.10.51.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.43.7-150300.10.51.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-email-2.43.7-150300.10.51.1.ppc64le"
},
"product_reference": "git-email-2.43.7-150300.10.51.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-email-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-email-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.43.7-150300.10.51.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-gui-2.43.7-150300.10.51.1.ppc64le"
},
"product_reference": "git-gui-2.43.7-150300.10.51.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-gui-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-gui-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.43.7-150300.10.51.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-svn-2.43.7-150300.10.51.1.ppc64le"
},
"product_reference": "git-svn-2.43.7-150300.10.51.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-svn-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-svn-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.43.7-150300.10.51.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-web-2.43.7-150300.10.51.1.ppc64le"
},
"product_reference": "git-web-2.43.7-150300.10.51.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-web-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-web-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.43.7-150300.10.51.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3:gitk-2.43.7-150300.10.51.1.ppc64le"
},
"product_reference": "gitk-2.43.7-150300.10.51.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3:gitk-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "gitk-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.43.7-150300.10.51.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3:perl-Git-2.43.7-150300.10.51.1.ppc64le"
},
"product_reference": "perl-Git-2.43.7-150300.10.51.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3:perl-Git-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "perl-Git-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.43.7-150300.10.51.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-2.43.7-150300.10.51.1.ppc64le"
},
"product_reference": "git-2.43.7-150300.10.51.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-arch-2.43.7-150300.10.51.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-arch-2.43.7-150300.10.51.1.ppc64le"
},
"product_reference": "git-arch-2.43.7-150300.10.51.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-arch-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-arch-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-arch-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.43.7-150300.10.51.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-core-2.43.7-150300.10.51.1.ppc64le"
},
"product_reference": "git-core-2.43.7-150300.10.51.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-core-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-core-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.43.7-150300.10.51.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-cvs-2.43.7-150300.10.51.1.ppc64le"
},
"product_reference": "git-cvs-2.43.7-150300.10.51.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-cvs-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-cvs-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.43.7-150300.10.51.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-daemon-2.43.7-150300.10.51.1.ppc64le"
},
"product_reference": "git-daemon-2.43.7-150300.10.51.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-daemon-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-daemon-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-doc-2.43.7-150300.10.51.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-doc-2.43.7-150300.10.51.1.noarch"
},
"product_reference": "git-doc-2.43.7-150300.10.51.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.43.7-150300.10.51.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-email-2.43.7-150300.10.51.1.ppc64le"
},
"product_reference": "git-email-2.43.7-150300.10.51.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-email-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-email-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.43.7-150300.10.51.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-gui-2.43.7-150300.10.51.1.ppc64le"
},
"product_reference": "git-gui-2.43.7-150300.10.51.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-gui-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-gui-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.43.7-150300.10.51.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-svn-2.43.7-150300.10.51.1.ppc64le"
},
"product_reference": "git-svn-2.43.7-150300.10.51.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-svn-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-svn-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.43.7-150300.10.51.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-web-2.43.7-150300.10.51.1.ppc64le"
},
"product_reference": "git-web-2.43.7-150300.10.51.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-web-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-web-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.43.7-150300.10.51.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:gitk-2.43.7-150300.10.51.1.ppc64le"
},
"product_reference": "gitk-2.43.7-150300.10.51.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:gitk-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "gitk-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.43.7-150300.10.51.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:perl-Git-2.43.7-150300.10.51.1.ppc64le"
},
"product_reference": "perl-Git-2.43.7-150300.10.51.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:perl-Git-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "perl-Git-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.43.7-150300.10.51.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-2.43.7-150300.10.51.1.ppc64le"
},
"product_reference": "git-2.43.7-150300.10.51.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-arch-2.43.7-150300.10.51.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-arch-2.43.7-150300.10.51.1.ppc64le"
},
"product_reference": "git-arch-2.43.7-150300.10.51.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-arch-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-arch-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-arch-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.43.7-150300.10.51.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-core-2.43.7-150300.10.51.1.ppc64le"
},
"product_reference": "git-core-2.43.7-150300.10.51.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-core-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-core-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.43.7-150300.10.51.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-cvs-2.43.7-150300.10.51.1.ppc64le"
},
"product_reference": "git-cvs-2.43.7-150300.10.51.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-cvs-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-cvs-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.43.7-150300.10.51.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-daemon-2.43.7-150300.10.51.1.ppc64le"
},
"product_reference": "git-daemon-2.43.7-150300.10.51.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-daemon-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-daemon-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-doc-2.43.7-150300.10.51.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-doc-2.43.7-150300.10.51.1.noarch"
},
"product_reference": "git-doc-2.43.7-150300.10.51.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.43.7-150300.10.51.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-email-2.43.7-150300.10.51.1.ppc64le"
},
"product_reference": "git-email-2.43.7-150300.10.51.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-email-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-email-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.43.7-150300.10.51.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-gui-2.43.7-150300.10.51.1.ppc64le"
},
"product_reference": "git-gui-2.43.7-150300.10.51.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-gui-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-gui-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.43.7-150300.10.51.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-svn-2.43.7-150300.10.51.1.ppc64le"
},
"product_reference": "git-svn-2.43.7-150300.10.51.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-svn-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-svn-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.43.7-150300.10.51.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-web-2.43.7-150300.10.51.1.ppc64le"
},
"product_reference": "git-web-2.43.7-150300.10.51.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-web-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-web-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.43.7-150300.10.51.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:gitk-2.43.7-150300.10.51.1.ppc64le"
},
"product_reference": "gitk-2.43.7-150300.10.51.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:gitk-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "gitk-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.43.7-150300.10.51.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:perl-Git-2.43.7-150300.10.51.1.ppc64le"
},
"product_reference": "perl-Git-2.43.7-150300.10.51.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.43.7-150300.10.51.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:perl-Git-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "perl-Git-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.43.7-150300.10.51.1.x86_64 as component of SUSE Manager Proxy LTS 4.3",
"product_id": "SUSE Manager Proxy LTS 4.3:git-core-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-core-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Manager Proxy LTS 4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.43.7-150300.10.51.1.ppc64le as component of SUSE Manager Server LTS 4.3",
"product_id": "SUSE Manager Server LTS 4.3:git-core-2.43.7-150300.10.51.1.ppc64le"
},
"product_reference": "git-core-2.43.7-150300.10.51.1.ppc64le",
"relates_to_product_reference": "SUSE Manager Server LTS 4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.43.7-150300.10.51.1.s390x as component of SUSE Manager Server LTS 4.3",
"product_id": "SUSE Manager Server LTS 4.3:git-core-2.43.7-150300.10.51.1.s390x"
},
"product_reference": "git-core-2.43.7-150300.10.51.1.s390x",
"relates_to_product_reference": "SUSE Manager Server LTS 4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.43.7-150300.10.51.1.x86_64 as component of SUSE Manager Server LTS 4.3",
"product_id": "SUSE Manager Server LTS 4.3:git-core-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-core-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Manager Server LTS 4.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.43.7-150300.10.51.1.aarch64 as component of SUSE Enterprise Storage 7.1",
"product_id": "SUSE Enterprise Storage 7.1:git-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "git-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Enterprise Storage 7.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.43.7-150300.10.51.1.x86_64 as component of SUSE Enterprise Storage 7.1",
"product_id": "SUSE Enterprise Storage 7.1:git-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Enterprise Storage 7.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-arch-2.43.7-150300.10.51.1.aarch64 as component of SUSE Enterprise Storage 7.1",
"product_id": "SUSE Enterprise Storage 7.1:git-arch-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "git-arch-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Enterprise Storage 7.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-arch-2.43.7-150300.10.51.1.x86_64 as component of SUSE Enterprise Storage 7.1",
"product_id": "SUSE Enterprise Storage 7.1:git-arch-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-arch-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Enterprise Storage 7.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.43.7-150300.10.51.1.aarch64 as component of SUSE Enterprise Storage 7.1",
"product_id": "SUSE Enterprise Storage 7.1:git-core-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "git-core-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Enterprise Storage 7.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.43.7-150300.10.51.1.x86_64 as component of SUSE Enterprise Storage 7.1",
"product_id": "SUSE Enterprise Storage 7.1:git-core-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-core-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Enterprise Storage 7.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.43.7-150300.10.51.1.aarch64 as component of SUSE Enterprise Storage 7.1",
"product_id": "SUSE Enterprise Storage 7.1:git-cvs-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "git-cvs-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Enterprise Storage 7.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.43.7-150300.10.51.1.x86_64 as component of SUSE Enterprise Storage 7.1",
"product_id": "SUSE Enterprise Storage 7.1:git-cvs-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-cvs-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Enterprise Storage 7.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.43.7-150300.10.51.1.aarch64 as component of SUSE Enterprise Storage 7.1",
"product_id": "SUSE Enterprise Storage 7.1:git-daemon-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "git-daemon-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Enterprise Storage 7.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.43.7-150300.10.51.1.x86_64 as component of SUSE Enterprise Storage 7.1",
"product_id": "SUSE Enterprise Storage 7.1:git-daemon-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-daemon-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Enterprise Storage 7.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-doc-2.43.7-150300.10.51.1.noarch as component of SUSE Enterprise Storage 7.1",
"product_id": "SUSE Enterprise Storage 7.1:git-doc-2.43.7-150300.10.51.1.noarch"
},
"product_reference": "git-doc-2.43.7-150300.10.51.1.noarch",
"relates_to_product_reference": "SUSE Enterprise Storage 7.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.43.7-150300.10.51.1.aarch64 as component of SUSE Enterprise Storage 7.1",
"product_id": "SUSE Enterprise Storage 7.1:git-email-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "git-email-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Enterprise Storage 7.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.43.7-150300.10.51.1.x86_64 as component of SUSE Enterprise Storage 7.1",
"product_id": "SUSE Enterprise Storage 7.1:git-email-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-email-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Enterprise Storage 7.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.43.7-150300.10.51.1.aarch64 as component of SUSE Enterprise Storage 7.1",
"product_id": "SUSE Enterprise Storage 7.1:git-gui-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "git-gui-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Enterprise Storage 7.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.43.7-150300.10.51.1.x86_64 as component of SUSE Enterprise Storage 7.1",
"product_id": "SUSE Enterprise Storage 7.1:git-gui-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-gui-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Enterprise Storage 7.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.43.7-150300.10.51.1.aarch64 as component of SUSE Enterprise Storage 7.1",
"product_id": "SUSE Enterprise Storage 7.1:git-svn-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "git-svn-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Enterprise Storage 7.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.43.7-150300.10.51.1.x86_64 as component of SUSE Enterprise Storage 7.1",
"product_id": "SUSE Enterprise Storage 7.1:git-svn-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-svn-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Enterprise Storage 7.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.43.7-150300.10.51.1.aarch64 as component of SUSE Enterprise Storage 7.1",
"product_id": "SUSE Enterprise Storage 7.1:git-web-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "git-web-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Enterprise Storage 7.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.43.7-150300.10.51.1.x86_64 as component of SUSE Enterprise Storage 7.1",
"product_id": "SUSE Enterprise Storage 7.1:git-web-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "git-web-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Enterprise Storage 7.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.43.7-150300.10.51.1.aarch64 as component of SUSE Enterprise Storage 7.1",
"product_id": "SUSE Enterprise Storage 7.1:gitk-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "gitk-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Enterprise Storage 7.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.43.7-150300.10.51.1.x86_64 as component of SUSE Enterprise Storage 7.1",
"product_id": "SUSE Enterprise Storage 7.1:gitk-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "gitk-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Enterprise Storage 7.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.43.7-150300.10.51.1.aarch64 as component of SUSE Enterprise Storage 7.1",
"product_id": "SUSE Enterprise Storage 7.1:perl-Git-2.43.7-150300.10.51.1.aarch64"
},
"product_reference": "perl-Git-2.43.7-150300.10.51.1.aarch64",
"relates_to_product_reference": "SUSE Enterprise Storage 7.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.43.7-150300.10.51.1.x86_64 as component of SUSE Enterprise Storage 7.1",
"product_id": "SUSE Enterprise Storage 7.1:perl-Git-2.43.7-150300.10.51.1.x86_64"
},
"product_reference": "perl-Git-2.43.7-150300.10.51.1.x86_64",
"relates_to_product_reference": "SUSE Enterprise Storage 7.1"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-27613",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-27613"
}
],
"notes": [
{
"category": "general",
"text": "Gitk is a Tcl/Tk based Git history browser. Starting with 1.7.0, when a user clones an untrusted repository and runs gitk without additional command arguments, files for which the user has write permission can be created and truncated. The option Support per-file encoding must have been enabled before in Gitk\u0027s Preferences. This option is disabled by default. The same happens when Show origin of this line is used in the main window (regardless of whether Support per-file encoding is enabled or not). This vulnerability is fixed in 2.43.7, 2.44.4, 2.45.4, 2.46.4, 2.47.3, 2.48.2, 2.49.1, and 2.50.1.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 7.1:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Enterprise Storage 7.1:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Micro 5.5:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:git-core-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Micro 5.5:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-arch-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-arch-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-core-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-cvs-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-cvs-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-daemon-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-daemon-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-email-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-email-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-gui-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-gui-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-svn-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-svn-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-web-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-web-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gitk-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gitk-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:perl-Git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-arch-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-cvs-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-daemon-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-email-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-gui-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-svn-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-web-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:gitk-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-arch-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-cvs-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-daemon-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-email-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-gui-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-svn-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-web-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:gitk-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-arch-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-cvs-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-daemon-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-email-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-gui-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-svn-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-web-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gitk-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Manager Proxy LTS 4.3:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Manager Server LTS 4.3:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Manager Server LTS 4.3:git-core-2.43.7-150300.10.51.1.s390x",
"SUSE Manager Server LTS 4.3:git-core-2.43.7-150300.10.51.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-27613",
"url": "https://www.suse.com/security/cve/CVE-2025-27613"
},
{
"category": "external",
"summary": "SUSE Bug 1245938 for CVE-2025-27613",
"url": "https://bugzilla.suse.com/1245938"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 7.1:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Enterprise Storage 7.1:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Micro 5.5:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:git-core-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Micro 5.5:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-arch-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-arch-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-core-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-cvs-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-cvs-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-daemon-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-daemon-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-email-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-email-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-gui-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-gui-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-svn-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-svn-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-web-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-web-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gitk-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gitk-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:perl-Git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-arch-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-cvs-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-daemon-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-email-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-gui-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-svn-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-web-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:gitk-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-arch-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-cvs-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-daemon-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-email-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-gui-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-svn-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-web-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:gitk-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-arch-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-cvs-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-daemon-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-email-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-gui-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-svn-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-web-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gitk-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Manager Proxy LTS 4.3:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Manager Server LTS 4.3:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Manager Server LTS 4.3:git-core-2.43.7-150300.10.51.1.s390x",
"SUSE Manager Server LTS 4.3:git-core-2.43.7-150300.10.51.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 7.1:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Enterprise Storage 7.1:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Micro 5.5:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:git-core-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Micro 5.5:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-arch-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-arch-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-core-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-cvs-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-cvs-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-daemon-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-daemon-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-email-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-email-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-gui-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-gui-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-svn-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-svn-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-web-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-web-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gitk-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gitk-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:perl-Git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-arch-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-cvs-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-daemon-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-email-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-gui-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-svn-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-web-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:gitk-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-arch-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-cvs-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-daemon-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-email-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-gui-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-svn-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-web-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:gitk-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-arch-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-cvs-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-daemon-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-email-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-gui-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-svn-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-web-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gitk-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Manager Proxy LTS 4.3:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Manager Server LTS 4.3:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Manager Server LTS 4.3:git-core-2.43.7-150300.10.51.1.s390x",
"SUSE Manager Server LTS 4.3:git-core-2.43.7-150300.10.51.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-09-01T12:45:59Z",
"details": "moderate"
}
],
"title": "CVE-2025-27613"
},
{
"cve": "CVE-2025-27614",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-27614"
}
],
"notes": [
{
"category": "general",
"text": "Gitk is a Tcl/Tk based Git history browser. Starting with 2.41.0, a Git repository can be crafted in such a way that with some social engineering a user who has cloned the repository can be tricked into running any script (e.g., Bourne shell, Perl, Python, ...) supplied by the attacker by invoking gitk filename, where filename has a particular structure. The script is run with the privileges of the user. This vulnerability is fixed in 2.43.7, 2.44.4, 2.45.4, 2.46.4, 2.47.3, 2.48.2, 2.49.1, and 2.50.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 7.1:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Enterprise Storage 7.1:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Micro 5.5:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:git-core-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Micro 5.5:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-arch-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-arch-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-core-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-cvs-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-cvs-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-daemon-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-daemon-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-email-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-email-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-gui-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-gui-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-svn-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-svn-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-web-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-web-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gitk-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gitk-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:perl-Git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-arch-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-cvs-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-daemon-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-email-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-gui-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-svn-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-web-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:gitk-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-arch-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-cvs-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-daemon-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-email-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-gui-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-svn-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-web-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:gitk-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-arch-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-cvs-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-daemon-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-email-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-gui-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-svn-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-web-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gitk-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Manager Proxy LTS 4.3:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Manager Server LTS 4.3:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Manager Server LTS 4.3:git-core-2.43.7-150300.10.51.1.s390x",
"SUSE Manager Server LTS 4.3:git-core-2.43.7-150300.10.51.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-27614",
"url": "https://www.suse.com/security/cve/CVE-2025-27614"
},
{
"category": "external",
"summary": "SUSE Bug 1245939 for CVE-2025-27614",
"url": "https://bugzilla.suse.com/1245939"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 7.1:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Enterprise Storage 7.1:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Micro 5.5:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:git-core-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Micro 5.5:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-arch-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-arch-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-core-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-cvs-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-cvs-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-daemon-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-daemon-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-email-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-email-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-gui-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-gui-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-svn-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-svn-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-web-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-web-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gitk-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gitk-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:perl-Git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-arch-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-cvs-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-daemon-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-email-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-gui-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-svn-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-web-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:gitk-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-arch-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-cvs-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-daemon-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-email-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-gui-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-svn-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-web-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:gitk-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-arch-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-cvs-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-daemon-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-email-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-gui-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-svn-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-web-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gitk-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Manager Proxy LTS 4.3:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Manager Server LTS 4.3:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Manager Server LTS 4.3:git-core-2.43.7-150300.10.51.1.s390x",
"SUSE Manager Server LTS 4.3:git-core-2.43.7-150300.10.51.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 7.1:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Enterprise Storage 7.1:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Micro 5.5:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:git-core-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Micro 5.5:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-arch-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-arch-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-core-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-cvs-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-cvs-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-daemon-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-daemon-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-email-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-email-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-gui-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-gui-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-svn-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-svn-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-web-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-web-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gitk-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gitk-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:perl-Git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-arch-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-cvs-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-daemon-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-email-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-gui-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-svn-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-web-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:gitk-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-arch-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-cvs-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-daemon-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-email-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-gui-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-svn-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-web-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:gitk-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-arch-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-cvs-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-daemon-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-email-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-gui-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-svn-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-web-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gitk-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Manager Proxy LTS 4.3:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Manager Server LTS 4.3:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Manager Server LTS 4.3:git-core-2.43.7-150300.10.51.1.s390x",
"SUSE Manager Server LTS 4.3:git-core-2.43.7-150300.10.51.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-09-01T12:45:59Z",
"details": "important"
}
],
"title": "CVE-2025-27614"
},
{
"cve": "CVE-2025-46835",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-46835"
}
],
"notes": [
{
"category": "general",
"text": "Git GUI allows you to use the Git source control management tools via a GUI. When a user clones an untrusted repository and is tricked into editing a file located in a maliciously named directory in the repository, then Git GUI can create and overwrite files for which the user has write permission. This vulnerability is fixed in 2.43.7, 2.44.4, 2.45.4, 2.46.4, 2.47.3, 2.48.2, 2.49.1, and 2.50.1.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 7.1:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Enterprise Storage 7.1:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Micro 5.5:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:git-core-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Micro 5.5:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-arch-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-arch-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-core-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-cvs-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-cvs-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-daemon-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-daemon-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-email-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-email-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-gui-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-gui-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-svn-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-svn-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-web-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-web-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gitk-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gitk-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:perl-Git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-arch-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-cvs-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-daemon-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-email-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-gui-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-svn-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-web-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:gitk-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-arch-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-cvs-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-daemon-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-email-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-gui-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-svn-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-web-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:gitk-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-arch-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-cvs-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-daemon-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-email-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-gui-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-svn-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-web-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gitk-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Manager Proxy LTS 4.3:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Manager Server LTS 4.3:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Manager Server LTS 4.3:git-core-2.43.7-150300.10.51.1.s390x",
"SUSE Manager Server LTS 4.3:git-core-2.43.7-150300.10.51.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-46835",
"url": "https://www.suse.com/security/cve/CVE-2025-46835"
},
{
"category": "external",
"summary": "SUSE Bug 1245942 for CVE-2025-46835",
"url": "https://bugzilla.suse.com/1245942"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 7.1:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Enterprise Storage 7.1:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Micro 5.5:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:git-core-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Micro 5.5:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-arch-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-arch-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-core-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-cvs-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-cvs-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-daemon-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-daemon-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-email-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-email-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-gui-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-gui-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-svn-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-svn-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-web-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-web-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gitk-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gitk-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:perl-Git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-arch-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-cvs-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-daemon-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-email-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-gui-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-svn-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-web-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:gitk-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-arch-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-cvs-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-daemon-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-email-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-gui-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-svn-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-web-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:gitk-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-arch-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-cvs-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-daemon-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-email-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-gui-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-svn-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-web-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gitk-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Manager Proxy LTS 4.3:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Manager Server LTS 4.3:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Manager Server LTS 4.3:git-core-2.43.7-150300.10.51.1.s390x",
"SUSE Manager Server LTS 4.3:git-core-2.43.7-150300.10.51.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 7.1:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Enterprise Storage 7.1:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Micro 5.5:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:git-core-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Micro 5.5:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-arch-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-arch-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-core-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-cvs-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-cvs-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-daemon-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-daemon-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-email-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-email-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-gui-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-gui-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-svn-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-svn-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-web-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-web-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gitk-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gitk-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:perl-Git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-arch-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-cvs-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-daemon-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-email-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-gui-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-svn-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-web-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:gitk-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-arch-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-cvs-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-daemon-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-email-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-gui-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-svn-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-web-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:gitk-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-arch-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-cvs-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-daemon-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-email-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-gui-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-svn-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-web-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gitk-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Manager Proxy LTS 4.3:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Manager Server LTS 4.3:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Manager Server LTS 4.3:git-core-2.43.7-150300.10.51.1.s390x",
"SUSE Manager Server LTS 4.3:git-core-2.43.7-150300.10.51.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-09-01T12:45:59Z",
"details": "moderate"
}
],
"title": "CVE-2025-46835"
},
{
"cve": "CVE-2025-48384",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-48384"
}
],
"notes": [
{
"category": "general",
"text": "Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full access to internals. When reading a config value, Git strips any trailing carriage return and line feed (CRLF). When writing a config entry, values with a trailing CR are not quoted, causing the CR to be lost when the config is later read. When initializing a submodule, if the submodule path contains a trailing CR, the altered path is read resulting in the submodule being checked out to an incorrect location. If a symlink exists that points the altered path to the submodule hooks directory, and the submodule contains an executable post-checkout hook, the script may be unintentionally executed after checkout. This vulnerability is fixed in v2.43.7, v2.44.4, v2.45.4, v2.46.4, v2.47.3, v2.48.2, v2.49.1, and v2.50.1.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 7.1:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Enterprise Storage 7.1:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Micro 5.5:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:git-core-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Micro 5.5:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-arch-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-arch-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-core-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-cvs-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-cvs-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-daemon-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-daemon-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-email-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-email-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-gui-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-gui-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-svn-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-svn-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-web-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-web-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gitk-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gitk-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:perl-Git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-arch-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-cvs-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-daemon-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-email-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-gui-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-svn-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-web-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:gitk-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-arch-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-cvs-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-daemon-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-email-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-gui-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-svn-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-web-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:gitk-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-arch-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-cvs-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-daemon-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-email-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-gui-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-svn-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-web-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gitk-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Manager Proxy LTS 4.3:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Manager Server LTS 4.3:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Manager Server LTS 4.3:git-core-2.43.7-150300.10.51.1.s390x",
"SUSE Manager Server LTS 4.3:git-core-2.43.7-150300.10.51.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-48384",
"url": "https://www.suse.com/security/cve/CVE-2025-48384"
},
{
"category": "external",
"summary": "SUSE Bug 1245943 for CVE-2025-48384",
"url": "https://bugzilla.suse.com/1245943"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 7.1:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Enterprise Storage 7.1:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Micro 5.5:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:git-core-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Micro 5.5:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-arch-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-arch-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-core-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-cvs-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-cvs-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-daemon-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-daemon-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-email-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-email-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-gui-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-gui-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-svn-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-svn-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-web-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-web-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gitk-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gitk-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:perl-Git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-arch-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-cvs-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-daemon-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-email-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-gui-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-svn-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-web-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:gitk-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-arch-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-cvs-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-daemon-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-email-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-gui-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-svn-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-web-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:gitk-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-arch-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-cvs-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-daemon-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-email-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-gui-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-svn-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-web-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gitk-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Manager Proxy LTS 4.3:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Manager Server LTS 4.3:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Manager Server LTS 4.3:git-core-2.43.7-150300.10.51.1.s390x",
"SUSE Manager Server LTS 4.3:git-core-2.43.7-150300.10.51.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 7.1:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Enterprise Storage 7.1:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Micro 5.5:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:git-core-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Micro 5.5:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-arch-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-arch-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-core-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-cvs-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-cvs-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-daemon-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-daemon-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-email-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-email-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-gui-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-gui-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-svn-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-svn-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-web-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-web-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gitk-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gitk-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:perl-Git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-arch-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-cvs-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-daemon-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-email-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-gui-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-svn-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-web-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:gitk-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-arch-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-cvs-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-daemon-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-email-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-gui-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-svn-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-web-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:gitk-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-arch-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-cvs-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-daemon-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-email-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-gui-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-svn-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-web-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gitk-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Manager Proxy LTS 4.3:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Manager Server LTS 4.3:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Manager Server LTS 4.3:git-core-2.43.7-150300.10.51.1.s390x",
"SUSE Manager Server LTS 4.3:git-core-2.43.7-150300.10.51.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-09-01T12:45:59Z",
"details": "important"
}
],
"title": "CVE-2025-48384"
},
{
"cve": "CVE-2025-48385",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-48385"
}
],
"notes": [
{
"category": "general",
"text": "Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full access to internals. When cloning a repository Git knows to optionally fetch a bundle advertised by the remote server, which allows the server-side to offload parts of the clone to a CDN. The Git client does not perform sufficient validation of the advertised bundles, which allows the remote side to perform protocol injection. This protocol injection can cause the client to write the fetched bundle to a location controlled by the adversary. The fetched content is fully controlled by the server, which can in the worst case lead to arbitrary code execution. The use of bundle URIs is not enabled by default and can be controlled by the bundle.heuristic config option. Some cases of the vulnerability require that the adversary is in control of where a repository will be cloned to. This either requires social engineering or a recursive clone with submodules. These cases can thus be avoided by disabling recursive clones. This vulnerability is fixed in v2.43.7, v2.44.4, v2.45.4, v2.46.4, v2.47.3, v2.48.2, v2.49.1, and v2.50.1.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 7.1:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Enterprise Storage 7.1:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Micro 5.5:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:git-core-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Micro 5.5:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-arch-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-arch-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-core-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-cvs-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-cvs-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-daemon-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-daemon-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-email-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-email-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-gui-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-gui-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-svn-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-svn-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-web-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-web-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gitk-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gitk-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:perl-Git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-arch-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-cvs-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-daemon-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-email-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-gui-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-svn-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-web-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:gitk-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-arch-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-cvs-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-daemon-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-email-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-gui-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-svn-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-web-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:gitk-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-arch-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-cvs-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-daemon-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-email-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-gui-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-svn-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-web-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gitk-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Manager Proxy LTS 4.3:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Manager Server LTS 4.3:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Manager Server LTS 4.3:git-core-2.43.7-150300.10.51.1.s390x",
"SUSE Manager Server LTS 4.3:git-core-2.43.7-150300.10.51.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-48385",
"url": "https://www.suse.com/security/cve/CVE-2025-48385"
},
{
"category": "external",
"summary": "SUSE Bug 1245946 for CVE-2025-48385",
"url": "https://bugzilla.suse.com/1245946"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 7.1:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Enterprise Storage 7.1:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Micro 5.5:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:git-core-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Micro 5.5:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-arch-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-arch-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-core-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-cvs-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-cvs-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-daemon-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-daemon-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-email-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-email-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-gui-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-gui-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-svn-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-svn-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-web-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-web-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gitk-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gitk-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:perl-Git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-arch-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-cvs-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-daemon-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-email-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-gui-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-svn-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-web-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:gitk-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-arch-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-cvs-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-daemon-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-email-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-gui-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-svn-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-web-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:gitk-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-arch-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-cvs-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-daemon-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-email-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-gui-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-svn-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-web-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gitk-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Manager Proxy LTS 4.3:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Manager Server LTS 4.3:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Manager Server LTS 4.3:git-core-2.43.7-150300.10.51.1.s390x",
"SUSE Manager Server LTS 4.3:git-core-2.43.7-150300.10.51.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 7.1:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Enterprise Storage 7.1:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Enterprise Storage 7.1:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Enterprise Storage 7.1:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Micro 5.5:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:git-core-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Micro 5.5:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Micro 5.5:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-arch-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-arch-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-arch-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-core-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-core-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-cvs-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-cvs-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-cvs-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-daemon-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-daemon-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-daemon-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-email-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-email-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-email-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-gui-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-gui-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-gui-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-svn-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-svn-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-svn-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-web-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-web-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-web-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gitk-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gitk-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gitk-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:perl-Git-2.43.7-150300.10.51.1.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:perl-Git-2.43.7-150300.10.51.1.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-arch-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-cvs-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-daemon-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-email-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-gui-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-svn-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-web-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:gitk-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-arch-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-cvs-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-daemon-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-email-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-gui-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-svn-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-web-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:gitk-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-arch-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-arch-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-cvs-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-cvs-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-daemon-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-daemon-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-doc-2.43.7-150300.10.51.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-email-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-email-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-gui-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-gui-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-svn-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-svn-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-web-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:git-web-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gitk-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:gitk-2.43.7-150300.10.51.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:perl-Git-2.43.7-150300.10.51.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:perl-Git-2.43.7-150300.10.51.1.x86_64",
"SUSE Manager Proxy LTS 4.3:git-core-2.43.7-150300.10.51.1.x86_64",
"SUSE Manager Server LTS 4.3:git-core-2.43.7-150300.10.51.1.ppc64le",
"SUSE Manager Server LTS 4.3:git-core-2.43.7-150300.10.51.1.s390x",
"SUSE Manager Server LTS 4.3:git-core-2.43.7-150300.10.51.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-09-01T12:45:59Z",
"details": "important"
}
],
"title": "CVE-2025-48385"
}
]
}
CERTFR-2025-AVI-0579
Vulnerability from certfr_avis
De multiples vulnérabilités ont été découvertes dans les produits Microsoft. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, une élévation de privilèges et une atteinte à la confidentialité des données.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| Microsoft | N/A | Python extension pour Visual Studio Code versions antérieures à 2025.8.1 | ||
| Microsoft | N/A | Microsoft SharePoint Enterprise Server 2016 versions antérieures à 16.0.5508.1000 | ||
| Microsoft | N/A | Microsoft SharePoint Server 2019 versions antérieures à 16.0.10417.20027 | ||
| Microsoft | N/A | Microsoft SQL Server 2017 pour systèmes x64 (CU 31) versions antérieures à 14.0.3495.9 | ||
| Microsoft | N/A | Microsoft SharePoint Server Subscription Edition versions antérieures à 16.0.18526.20424 | ||
| Microsoft | N/A | Microsoft Teams pour iOS versions antérieures à 7.10.1 (100772025102901) | ||
| Microsoft | N/A | Microsoft Configuration Manager 2503 versions antérieures à 5.00.9135.1003 | ||
| Microsoft | N/A | Microsoft Visual Studio 2022 version 17.12 antérieures à 17.12.10 | ||
| Microsoft | N/A | Microsoft Visual Studio 2019 version 16.11 (inclus 16.0 - 16.10) antérieures à 16.11.49 | ||
| Microsoft | N/A | Microsoft Teams pour Desktop versions antérieures à 25060212643 | ||
| Microsoft | N/A | Microsoft SQL Server 2022 pour systèmes x64 (CU 19) versions antérieures à 16.0.1140.6 | ||
| Microsoft | N/A | Microsoft Teams pour Android versions antérieures à 1.0.0.2025112902 | ||
| Microsoft | N/A | Microsoft Visual Studio 2015 Update 3 versions antérieures à 14.0.27564.0 | ||
| Microsoft | N/A | Microsoft SQL Server 2017 pour systèmes x64 (GDR) versions antérieures à 14.0.2075.8 | ||
| Microsoft | N/A | Microsoft SQL Server 2016 pour systèmes x64 Service Pack 2 (GDR) versions antérieures à 13.0.6460.7 | ||
| Microsoft | N/A | Microsoft SQL Server 2019 pour systèmes x64 (CU 32) versions antérieures à 15.0.4435.7 | ||
| Microsoft | N/A | Microsoft Visual Studio 2022 version 17.14 antérieures à 17.14.8 | ||
| Microsoft | N/A | Microsoft Visual Studio 2017 version 15.9 (inclus 15.0 - 15.8) antérieures à 15.9.75 | ||
| Microsoft | N/A | Microsoft Teams pour Mac versions antérieures à 25163.3001.3726.6503 | ||
| Microsoft | N/A | Microsoft Visual Studio 2022 version 17.10 antérieures à 17.10.17 | ||
| Microsoft | N/A | Microsoft PC Manager versions antérieures à 3.17.4 | ||
| Microsoft | N/A | Microsoft SQL Server 2022 pour systèmes x64 (GDR) versions antérieures à 16.0.4200.1 | ||
| Microsoft | N/A | Microsoft Visual Studio 2022 version 17.8 antérieures à 17.8.23 | ||
| Microsoft | N/A | Microsoft SQL Server 2019 pour systèmes x64 (GDR) versions antérieures à 15.0.2135.5 |
References
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Python extension pour Visual Studio Code versions ant\u00e9rieures \u00e0 2025.8.1",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Microsoft SharePoint Enterprise Server 2016 versions ant\u00e9rieures \u00e0 16.0.5508.1000",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Microsoft SharePoint Server 2019 versions ant\u00e9rieures \u00e0 16.0.10417.20027",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Microsoft SQL Server 2017 pour syst\u00e8mes x64 (CU 31) versions ant\u00e9rieures \u00e0 14.0.3495.9",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Microsoft SharePoint Server Subscription Edition versions ant\u00e9rieures \u00e0 16.0.18526.20424",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Microsoft Teams pour iOS versions ant\u00e9rieures \u00e0 7.10.1 (100772025102901)",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Microsoft Configuration Manager 2503 versions ant\u00e9rieures \u00e0 5.00.9135.1003",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Microsoft Visual Studio 2022 version 17.12 ant\u00e9rieures \u00e0 17.12.10",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Microsoft Visual Studio 2019 version 16.11 (inclus 16.0 - 16.10) ant\u00e9rieures \u00e0 16.11.49",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Microsoft Teams pour Desktop versions ant\u00e9rieures \u00e0 25060212643",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Microsoft SQL Server 2022 pour syst\u00e8mes x64 (CU 19) versions ant\u00e9rieures \u00e0 16.0.1140.6",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Microsoft Teams pour Android versions ant\u00e9rieures \u00e0 1.0.0.2025112902",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Microsoft Visual Studio 2015 Update 3 versions ant\u00e9rieures \u00e0 14.0.27564.0",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Microsoft SQL Server 2017 pour syst\u00e8mes x64 (GDR) versions ant\u00e9rieures \u00e0 14.0.2075.8",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Microsoft SQL Server 2016 pour syst\u00e8mes x64 Service Pack 2 (GDR) versions ant\u00e9rieures \u00e0 13.0.6460.7",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Microsoft SQL Server 2019 pour syst\u00e8mes x64 (CU 32) versions ant\u00e9rieures \u00e0 15.0.4435.7",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Microsoft Visual Studio 2022 version 17.14 ant\u00e9rieures \u00e0 17.14.8",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Microsoft Visual Studio 2017 version 15.9 (inclus 15.0 - 15.8) ant\u00e9rieures \u00e0 15.9.75",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Microsoft Teams pour Mac versions ant\u00e9rieures \u00e0 25163.3001.3726.6503",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Microsoft Visual Studio 2022 version 17.10 ant\u00e9rieures \u00e0 17.10.17",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Microsoft PC Manager versions ant\u00e9rieures \u00e0 3.17.4",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Microsoft SQL Server 2022 pour syst\u00e8mes x64 (GDR) versions ant\u00e9rieures \u00e0 \t\n16.0.4200.1",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Microsoft Visual Studio 2022 version 17.8 ant\u00e9rieures \u00e0 17.8.23",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Microsoft SQL Server 2019 pour syst\u00e8mes x64 (GDR) versions ant\u00e9rieures \u00e0 15.0.2135.5",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2025-46835",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-46835"
},
{
"name": "CVE-2025-49714",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-49714"
},
{
"name": "CVE-2025-47178",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-47178"
},
{
"name": "CVE-2025-27614",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-27614"
},
{
"name": "CVE-2025-49701",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-49701"
},
{
"name": "CVE-2025-48385",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-48385"
},
{
"name": "CVE-2025-27613",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-27613"
},
{
"name": "CVE-2025-49737",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-49737"
},
{
"name": "CVE-2025-49706",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-49706"
},
{
"name": "CVE-2025-49738",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-49738"
},
{
"name": "CVE-2025-48384",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-48384"
},
{
"name": "CVE-2025-49704",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-49704"
},
{
"name": "CVE-2025-48386",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-48386"
},
{
"name": "CVE-2025-49739",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-49739"
},
{
"name": "CVE-2025-49719",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-49719"
},
{
"name": "CVE-2025-49717",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-49717"
},
{
"name": "CVE-2025-46334",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-46334"
},
{
"name": "CVE-2025-49718",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-49718"
},
{
"name": "CVE-2025-49731",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-49731"
},
{
"name": "CVE-2025-49703",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-49703"
}
],
"initial_release_date": "2025-07-09T00:00:00",
"last_revision_date": "2025-07-09T00:00:00",
"links": [],
"reference": "CERTFR-2025-AVI-0579",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2025-07-09T00:00:00.000000"
}
],
"risks": [
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits Microsoft. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance, une \u00e9l\u00e9vation de privil\u00e8ges et une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Microsoft",
"vendor_advisories": [
{
"published_at": "2025-07-08",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2025-49718",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-49718"
},
{
"published_at": "2025-07-08",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2025-27614",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-27614"
},
{
"published_at": "2025-07-08",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2025-49739",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-49739"
},
{
"published_at": "2025-07-08",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2025-46835",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-46835"
},
{
"published_at": "2025-07-08",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2025-49714",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-49714"
},
{
"published_at": "2025-07-08",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2025-49731",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-49731"
},
{
"published_at": "2025-07-08",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2025-49717",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-49717"
},
{
"published_at": "2025-07-08",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2025-27613",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-27613"
},
{
"published_at": "2025-07-08",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2025-49719",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-49719"
},
{
"published_at": "2025-07-08",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2025-49703",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-49703"
},
{
"published_at": "2025-07-08",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2025-48386",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-48386"
},
{
"published_at": "2025-07-08",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2025-48385",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-48385"
},
{
"published_at": "2025-07-08",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2025-49706",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-49706"
},
{
"published_at": "2025-07-08",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2025-49738",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-49738"
},
{
"published_at": "2025-07-08",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2025-49737",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-49737"
},
{
"published_at": "2025-07-08",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2025-49704",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-49704"
},
{
"published_at": "2025-07-08",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2025-48384",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-48384"
},
{
"published_at": "2025-07-08",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2025-46334",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-46334"
},
{
"published_at": "2025-07-08",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2025-49701",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-49701"
},
{
"published_at": "2025-07-08",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2025-47178",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-47178"
}
]
}
CERTFR-2025-AVI-0746
Vulnerability from certfr_avis
De multiples vulnérabilités ont été découvertes dans les produits IBM. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, une élévation de privilèges et un déni de service à distance.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| IBM | Cognos Dashboards | Cognos Command Center versions 10.2.4.1 et 10.2.5 antérieures à 10.2.5 FP1 IF1 | ||
| IBM | Sterling | Sterling Secure Proxy versions 6.1.0.x antérieures à 6.1.0.2 GA | ||
| IBM | QRadar | QRadar SIEM versions 7.5.0 antérieures à QRadar 7.5.0 UP13 IF01 | ||
| IBM | Sterling | Sterling Connect:Direct pour Microsoft Windows versions 6.4.x antérieures à 6.4.0.3 | ||
| IBM | WebSphere | WebSphere Remote Server versions 9.1, 8.0 et 8.5 sans le dernier correctif de sécurité | ||
| IBM | Cognos Dashboards | Cognos Dashboards on Cloud Pak for Data versions 5.x antérieures à 5.2.1 | ||
| IBM | Sterling | Sterling Secure Proxy versions 6.2.0.x antérieures à 6.2.0.2 GA | ||
| IBM | QRadar | QRadar Incident Forensics versions 7.5.0 antérieures à QIF 7.5.0 UP13 IF01 | ||
| IBM | Sterling | Sterling External Authentication Server versions 6.1.0.x antérieures à 6.1.0.3 GA | ||
| IBM | Sterling | Sterling Connect:Direct pour Microsoft Windows versions 6.3.x antérieures à 6.3.0.6 | ||
| IBM | Db2 | Db2 Bridge versions antérieures à 1.1.1 |
References
| Title | Publication Time | Tags | |||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Cognos Command Center versions 10.2.4.1 et 10.2.5 ant\u00e9rieures \u00e0 10.2.5 FP1 IF1",
"product": {
"name": "Cognos Dashboards",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Sterling Secure Proxy versions 6.1.0.x ant\u00e9rieures \u00e0 6.1.0.2 GA",
"product": {
"name": "Sterling",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "QRadar SIEM versions 7.5.0 ant\u00e9rieures \u00e0 QRadar 7.5.0 UP13 IF01",
"product": {
"name": "QRadar",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Sterling Connect:Direct pour Microsoft Windows versions 6.4.x ant\u00e9rieures \u00e0 6.4.0.3",
"product": {
"name": "Sterling",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "WebSphere Remote Server versions 9.1, 8.0 et 8.5 sans le dernier correctif de s\u00e9curit\u00e9",
"product": {
"name": "WebSphere",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Cognos Dashboards on Cloud Pak for Data versions 5.x ant\u00e9rieures \u00e0 5.2.1",
"product": {
"name": "Cognos Dashboards",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Sterling Secure Proxy versions 6.2.0.x ant\u00e9rieures \u00e0 6.2.0.2 GA",
"product": {
"name": "Sterling",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "QRadar Incident Forensics versions 7.5.0 ant\u00e9rieures \u00e0 QIF 7.5.0 UP13 IF01",
"product": {
"name": "QRadar",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Sterling External Authentication Server versions 6.1.0.x ant\u00e9rieures \u00e0 6.1.0.3 GA",
"product": {
"name": "Sterling",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Sterling Connect:Direct pour Microsoft Windows versions 6.3.x ant\u00e9rieures \u00e0 6.3.0.6",
"product": {
"name": "Sterling",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Db2 Bridge versions ant\u00e9rieures \u00e0 1.1.1",
"product": {
"name": "Db2",
"vendor": {
"name": "IBM",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2024-6531",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-6531"
},
{
"name": "CVE-2025-4447",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4447"
},
{
"name": "CVE-2024-21144",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21144"
},
{
"name": "CVE-2025-24789",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-24789"
},
{
"name": "CVE-2022-50020",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50020"
},
{
"name": "CVE-2025-47944",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-47944"
},
{
"name": "CVE-2024-50349",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50349"
},
{
"name": "CVE-2025-46835",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-46835"
},
{
"name": "CVE-2024-57980",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57980"
},
{
"name": "CVE-2024-43420",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43420"
},
{
"name": "CVE-2025-49794",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-49794"
},
{
"name": "CVE-2025-22004",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22004"
},
{
"name": "CVE-2025-27614",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-27614"
},
{
"name": "CVE-2022-49111",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49111"
},
{
"name": "CVE-2025-1470",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1470"
},
{
"name": "CVE-2022-49058",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49058"
},
{
"name": "CVE-2025-24970",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-24970"
},
{
"name": "CVE-2024-52006",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-52006"
},
{
"name": "CVE-2025-4373",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4373"
},
{
"name": "CVE-2024-13009",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-13009"
},
{
"name": "CVE-2025-50106",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-50106"
},
{
"name": "CVE-2025-48385",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-48385"
},
{
"name": "CVE-2025-48060",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-48060"
},
{
"name": "CVE-2024-50154",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50154"
},
{
"name": "CVE-2025-27613",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-27613"
},
{
"name": "CVE-2025-30754",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30754"
},
{
"name": "CVE-2024-10917",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-10917"
},
{
"name": "CVE-2022-49136",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49136"
},
{
"name": "CVE-2025-6965",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6965"
},
{
"name": "CVE-2022-49846",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49846"
},
{
"name": "CVE-2019-17543",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-17543"
},
{
"name": "CVE-2025-38086",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38086"
},
{
"name": "CVE-2025-48384",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-48384"
},
{
"name": "CVE-2025-7783",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-7783"
},
{
"name": "CVE-2025-27152",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-27152"
},
{
"name": "CVE-2025-1471",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1471"
},
{
"name": "CVE-2025-38079",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38079"
},
{
"name": "CVE-2025-20012",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-20012"
},
{
"name": "CVE-2025-7425",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-7425"
},
{
"name": "CVE-2025-37738",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37738"
},
{
"name": "CVE-2024-53920",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53920"
},
{
"name": "CVE-2025-48976",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-48976"
},
{
"name": "CVE-2025-21587",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21587"
},
{
"name": "CVE-2025-52520",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-52520"
},
{
"name": "CVE-2024-52533",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-52533"
},
{
"name": "CVE-2024-28956",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28956"
},
{
"name": "CVE-2025-2697",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-2697"
},
{
"name": "CVE-2025-47935",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-47935"
},
{
"name": "CVE-2025-50059",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-50059"
},
{
"name": "CVE-2025-21928",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21928"
},
{
"name": "CVE-2025-30761",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30761"
},
{
"name": "CVE-2024-47535",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47535"
},
{
"name": "CVE-2025-1494",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1494"
},
{
"name": "CVE-2025-1994",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1994"
},
{
"name": "CVE-2025-52434",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-52434"
},
{
"name": "CVE-2025-24495",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-24495"
},
{
"name": "CVE-2025-30698",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30698"
},
{
"name": "CVE-2022-49977",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49977"
},
{
"name": "CVE-2024-54661",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-54661"
},
{
"name": "CVE-2025-37890",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37890"
},
{
"name": "CVE-2025-22020",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22020"
},
{
"name": "CVE-2025-27533",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-27533"
},
{
"name": "CVE-2025-6021",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6021"
},
{
"name": "CVE-2025-55668",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-55668"
},
{
"name": "CVE-2025-25193",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-25193"
},
{
"name": "CVE-2024-58002",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58002"
},
{
"name": "CVE-2025-32415",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-32415"
},
{
"name": "CVE-2025-21905",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21905"
},
{
"name": "CVE-2024-23337",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-23337"
},
{
"name": "CVE-2025-30749",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30749"
},
{
"name": "CVE-2025-38052",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38052"
},
{
"name": "CVE-2025-2900",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-2900"
},
{
"name": "CVE-2025-53506",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-53506"
},
{
"name": "CVE-2019-5427",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-5427"
},
{
"name": "CVE-2022-49788",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49788"
},
{
"name": "CVE-2025-20623",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-20623"
},
{
"name": "CVE-2025-48997",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-48997"
},
{
"name": "CVE-2020-5260",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-5260"
},
{
"name": "CVE-2025-49796",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-49796"
},
{
"name": "CVE-2025-21919",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21919"
},
{
"name": "CVE-2024-21131",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21131"
},
{
"name": "CVE-2024-34397",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34397"
},
{
"name": "CVE-2025-21991",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21991"
},
{
"name": "CVE-2025-7338",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-7338"
},
{
"name": "CVE-2025-24790",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-24790"
},
{
"name": "CVE-2024-45332",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45332"
},
{
"name": "CVE-2025-47273",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-47273"
},
{
"name": "CVE-2025-23150",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-23150"
}
],
"initial_release_date": "2025-08-29T00:00:00",
"last_revision_date": "2025-08-29T00:00:00",
"links": [],
"reference": "CERTFR-2025-AVI-0746",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2025-08-29T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
},
{
"description": "Falsification de requ\u00eates c\u00f4t\u00e9 serveur (SSRF)"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits IBM. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance, une \u00e9l\u00e9vation de privil\u00e8ges et un d\u00e9ni de service \u00e0 distance.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits IBM",
"vendor_advisories": [
{
"published_at": "2025-08-28",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7243411",
"url": "https://www.ibm.com/support/pages/node/7243411"
},
{
"published_at": "2025-08-22",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7242915",
"url": "https://www.ibm.com/support/pages/node/7242915"
},
{
"published_at": "2025-08-28",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7243372",
"url": "https://www.ibm.com/support/pages/node/7243372"
},
{
"published_at": "2025-08-26",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7242159",
"url": "https://www.ibm.com/support/pages/node/7242159"
},
{
"published_at": "2025-08-26",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7243146",
"url": "https://www.ibm.com/support/pages/node/7243146"
},
{
"published_at": "2025-08-28",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7242161",
"url": "https://www.ibm.com/support/pages/node/7242161"
},
{
"published_at": "2025-08-26",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7243144",
"url": "https://www.ibm.com/support/pages/node/7243144"
},
{
"published_at": "2025-08-25",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7243011",
"url": "https://www.ibm.com/support/pages/node/7243011"
},
{
"published_at": "2025-08-28",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7243373",
"url": "https://www.ibm.com/support/pages/node/7243373"
}
]
}
CERTFR-2025-AVI-0791
Vulnerability from certfr_avis
De multiples vulnérabilités ont été découvertes dans les produits Apple. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, une élévation de privilèges et une atteinte à la confidentialité des données.
Apple indique que la vulnérabilité CVE-2025-43300 est activement exploitée.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| Apple | iPadOS | iPadOS versions antérieures à 26 | ||
| Apple | watchOS | watchOS versions antérieures à 26 | ||
| Apple | iOS | iOS versions 16.x antérieures à 16.7.12 | ||
| Apple | macOS | macOS Sonoma versions antérieures à 14.8 | ||
| Apple | tvOS | tvOS versions antérieures à 26 | ||
| Apple | macOS | macOS Sequoia versions antérieures à 15.7 | ||
| Apple | iOS | iOS versions antérieures à 26 | ||
| Apple | iOS | iOS versions 15.x antérieures à 15.8.5 | ||
| Apple | iOS | iOS versions 18.x antérieures à 18.7 | ||
| Apple | visionOS | visionOS versions antérieures à 26 | ||
| Apple | Xcode | Xcode versions antérieures à 26 | ||
| Apple | Safari | Safari versions antérieures à 26 | ||
| Apple | iPadOS | iPadOS versions 15.x antérieures à 15.8.5 | ||
| Apple | iPadOS | iPadOS versions 16.x antérieures à 16.7.12 | ||
| Apple | macOS | macOS Tahoe versions antérieures à 26 | ||
| Apple | iPadOS | iPadOS versions 18.x antérieures à 18.7 |
References
| Title | Publication Time | Tags | ||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||||||||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "iPadOS versions ant\u00e9rieures \u00e0 26",
"product": {
"name": "iPadOS",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "watchOS versions ant\u00e9rieures \u00e0 26",
"product": {
"name": "watchOS",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "iOS versions 16.x ant\u00e9rieures \u00e0 16.7.12",
"product": {
"name": "iOS",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "macOS Sonoma versions ant\u00e9rieures \u00e0 14.8",
"product": {
"name": "macOS",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "tvOS versions ant\u00e9rieures \u00e0 26",
"product": {
"name": "tvOS",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "macOS Sequoia versions ant\u00e9rieures \u00e0 15.7",
"product": {
"name": "macOS",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "iOS versions ant\u00e9rieures \u00e0 26",
"product": {
"name": "iOS",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "iOS versions 15.x ant\u00e9rieures \u00e0 15.8.5",
"product": {
"name": "iOS",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "iOS versions 18.x ant\u00e9rieures \u00e0 18.7",
"product": {
"name": "iOS",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "visionOS versions ant\u00e9rieures \u00e0 26",
"product": {
"name": "visionOS",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "Xcode versions ant\u00e9rieures \u00e0 26",
"product": {
"name": "Xcode",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "Safari versions ant\u00e9rieures \u00e0 26",
"product": {
"name": "Safari",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "iPadOS versions 15.x ant\u00e9rieures \u00e0 15.8.5",
"product": {
"name": "iPadOS",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "iPadOS versions 16.x ant\u00e9rieures \u00e0 16.7.12",
"product": {
"name": "iPadOS",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "macOS Tahoe versions ant\u00e9rieures \u00e0 26",
"product": {
"name": "macOS",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "iPadOS versions 18.x ant\u00e9rieures \u00e0 18.7",
"product": {
"name": "iPadOS",
"vendor": {
"name": "Apple",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2025-43292",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43292"
},
{
"name": "CVE-2025-43372",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43372"
},
{
"name": "CVE-2025-43332",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43332"
},
{
"name": "CVE-2025-31270",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-31270"
},
{
"name": "CVE-2025-43362",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43362"
},
{
"name": "CVE-2025-43319",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43319"
},
{
"name": "CVE-2025-43340",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43340"
},
{
"name": "CVE-2025-43327",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43327"
},
{
"name": "CVE-2025-30468",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30468"
},
{
"name": "CVE-2025-43359",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43359"
},
{
"name": "CVE-2025-43262",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43262"
},
{
"name": "CVE-2024-27280",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27280"
},
{
"name": "CVE-2025-31269",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-31269"
},
{
"name": "CVE-2025-43354",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43354"
},
{
"name": "CVE-2025-43326",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43326"
},
{
"name": "CVE-2025-43204",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43204"
},
{
"name": "CVE-2025-43273",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43273"
},
{
"name": "CVE-2025-43347",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43347"
},
{
"name": "CVE-2025-43302",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43302"
},
{
"name": "CVE-2025-43321",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43321"
},
{
"name": "CVE-2025-31254",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-31254"
},
{
"name": "CVE-2025-43299",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43299"
},
{
"name": "CVE-2025-43316",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43316"
},
{
"name": "CVE-2025-43263",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43263"
},
{
"name": "CVE-2025-31255",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-31255"
},
{
"name": "CVE-2025-43375",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43375"
},
{
"name": "CVE-2025-6965",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6965"
},
{
"name": "CVE-2025-43355",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43355"
},
{
"name": "CVE-2025-43207",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43207"
},
{
"name": "CVE-2025-43285",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43285"
},
{
"name": "CVE-2025-43370",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43370"
},
{
"name": "CVE-2025-43312",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43312"
},
{
"name": "CVE-2025-43317",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43317"
},
{
"name": "CVE-2025-31271",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-31271"
},
{
"name": "CVE-2025-43208",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43208"
},
{
"name": "CVE-2025-43283",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43283"
},
{
"name": "CVE-2025-48384",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-48384"
},
{
"name": "CVE-2025-43277",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43277"
},
{
"name": "CVE-2025-43325",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43325"
},
{
"name": "CVE-2025-43231",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43231"
},
{
"name": "CVE-2025-24197",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-24197"
},
{
"name": "CVE-2025-43358",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43358"
},
{
"name": "CVE-2025-43328",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43328"
},
{
"name": "CVE-2025-43368",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43368"
},
{
"name": "CVE-2025-43315",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43315"
},
{
"name": "CVE-2025-43331",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43331"
},
{
"name": "CVE-2025-43310",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43310"
},
{
"name": "CVE-2025-43333",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43333"
},
{
"name": "CVE-2025-43203",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43203"
},
{
"name": "CVE-2025-43307",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43307"
},
{
"name": "CVE-2025-43297",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43297"
},
{
"name": "CVE-2025-43190",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43190"
},
{
"name": "CVE-2025-24088",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-24088"
},
{
"name": "CVE-2025-43293",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43293"
},
{
"name": "CVE-2025-43343",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43343"
},
{
"name": "CVE-2025-43294",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43294"
},
{
"name": "CVE-2025-43286",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43286"
},
{
"name": "CVE-2025-43353",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43353"
},
{
"name": "CVE-2025-43356",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43356"
},
{
"name": "CVE-2025-43330",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43330"
},
{
"name": "CVE-2025-43272",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43272"
},
{
"name": "CVE-2025-31259",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-31259"
},
{
"name": "CVE-2025-31268",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-31268"
},
{
"name": "CVE-2025-43366",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43366"
},
{
"name": "CVE-2025-43298",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43298"
},
{
"name": "CVE-2025-43369",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43369"
},
{
"name": "CVE-2025-43308",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43308"
},
{
"name": "CVE-2025-43346",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43346"
},
{
"name": "CVE-2025-40909",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40909"
},
{
"name": "CVE-2025-43337",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43337"
},
{
"name": "CVE-2025-24133",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-24133"
},
{
"name": "CVE-2025-43279",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43279"
},
{
"name": "CVE-2025-43314",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43314"
},
{
"name": "CVE-2025-43300",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43300"
},
{
"name": "CVE-2025-43342",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43342"
},
{
"name": "CVE-2025-43349",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43349"
},
{
"name": "CVE-2025-43341",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43341"
},
{
"name": "CVE-2025-43301",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43301"
},
{
"name": "CVE-2025-43318",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43318"
},
{
"name": "CVE-2025-43344",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43344"
},
{
"name": "CVE-2025-43311",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43311"
},
{
"name": "CVE-2025-43287",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43287"
},
{
"name": "CVE-2025-43303",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43303"
},
{
"name": "CVE-2025-43304",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43304"
},
{
"name": "CVE-2025-43291",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43291"
},
{
"name": "CVE-2025-43329",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43329"
},
{
"name": "CVE-2025-43357",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43357"
},
{
"name": "CVE-2025-43367",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43367"
},
{
"name": "CVE-2025-43371",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43371"
},
{
"name": "CVE-2025-43295",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43295"
},
{
"name": "CVE-2025-43305",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43305"
}
],
"initial_release_date": "2025-09-16T00:00:00",
"last_revision_date": "2025-09-16T00:00:00",
"links": [],
"reference": "CERTFR-2025-AVI-0791",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2025-09-16T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits Apple. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance, une \u00e9l\u00e9vation de privil\u00e8ges et une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es.\n\nApple indique que la vuln\u00e9rabilit\u00e9 CVE-2025-43300 est activement exploit\u00e9e.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Apple",
"vendor_advisories": [
{
"published_at": "2025-09-15",
"title": "Bulletin de s\u00e9curit\u00e9 Apple 125112",
"url": "https://support.apple.com/en-us/125112"
},
{
"published_at": "2025-09-15",
"title": "Bulletin de s\u00e9curit\u00e9 Apple 125116",
"url": "https://support.apple.com/en-us/125116"
},
{
"published_at": "2025-09-15",
"title": "Bulletin de s\u00e9curit\u00e9 Apple 125110",
"url": "https://support.apple.com/en-us/125110"
},
{
"published_at": "2025-09-15",
"title": "Bulletin de s\u00e9curit\u00e9 Apple 125115",
"url": "https://support.apple.com/en-us/125115"
},
{
"published_at": "2025-09-15",
"title": "Bulletin de s\u00e9curit\u00e9 Apple 125141",
"url": "https://support.apple.com/en-us/125141"
},
{
"published_at": "2025-09-15",
"title": "Bulletin de s\u00e9curit\u00e9 Apple 125117",
"url": "https://support.apple.com/en-us/125117"
},
{
"published_at": "2025-09-15",
"title": "Bulletin de s\u00e9curit\u00e9 Apple 125114",
"url": "https://support.apple.com/en-us/125114"
},
{
"published_at": "2025-09-15",
"title": "Bulletin de s\u00e9curit\u00e9 Apple 125108",
"url": "https://support.apple.com/en-us/125108"
},
{
"published_at": "2025-09-15",
"title": "Bulletin de s\u00e9curit\u00e9 Apple 125111",
"url": "https://support.apple.com/en-us/125111"
},
{
"published_at": "2025-09-15",
"title": "Bulletin de s\u00e9curit\u00e9 Apple 125109",
"url": "https://support.apple.com/en-us/125109"
},
{
"published_at": "2025-09-15",
"title": "Bulletin de s\u00e9curit\u00e9 Apple 125142",
"url": "https://support.apple.com/en-us/125142"
},
{
"published_at": "2025-09-15",
"title": "Bulletin de s\u00e9curit\u00e9 Apple 125113",
"url": "https://support.apple.com/en-us/125113"
}
]
}
opensuse-su-2025:15337-1
Vulnerability from csaf_opensuse
Published
2025-07-11 00:00
Modified
2025-07-11 00:00
Summary
git-2.50.1-1.1 on GA media
Notes
Title of the patch
git-2.50.1-1.1 on GA media
Description of the patch
These are all security issues fixed in the git-2.50.1-1.1 package on the GA media of openSUSE Tumbleweed.
Patchnames
openSUSE-Tumbleweed-2025-15337
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "git-2.50.1-1.1 on GA media",
"title": "Title of the patch"
},
{
"category": "description",
"text": "These are all security issues fixed in the git-2.50.1-1.1 package on the GA media of openSUSE Tumbleweed.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Tumbleweed-2025-15337",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2025_15337-1.json"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-27613 page",
"url": "https://www.suse.com/security/cve/CVE-2025-27613/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-27614 page",
"url": "https://www.suse.com/security/cve/CVE-2025-27614/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-46334 page",
"url": "https://www.suse.com/security/cve/CVE-2025-46334/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-46835 page",
"url": "https://www.suse.com/security/cve/CVE-2025-46835/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-48384 page",
"url": "https://www.suse.com/security/cve/CVE-2025-48384/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-48385 page",
"url": "https://www.suse.com/security/cve/CVE-2025-48385/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-48386 page",
"url": "https://www.suse.com/security/cve/CVE-2025-48386/"
}
],
"title": "git-2.50.1-1.1 on GA media",
"tracking": {
"current_release_date": "2025-07-11T00:00:00Z",
"generator": {
"date": "2025-07-11T00:00:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2025:15337-1",
"initial_release_date": "2025-07-11T00:00:00Z",
"revision_history": [
{
"date": "2025-07-11T00:00:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "git-2.50.1-1.1.aarch64",
"product": {
"name": "git-2.50.1-1.1.aarch64",
"product_id": "git-2.50.1-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-arch-2.50.1-1.1.aarch64",
"product": {
"name": "git-arch-2.50.1-1.1.aarch64",
"product_id": "git-arch-2.50.1-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-core-2.50.1-1.1.aarch64",
"product": {
"name": "git-core-2.50.1-1.1.aarch64",
"product_id": "git-core-2.50.1-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-2.50.1-1.1.aarch64",
"product": {
"name": "git-credential-libsecret-2.50.1-1.1.aarch64",
"product_id": "git-credential-libsecret-2.50.1-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-cvs-2.50.1-1.1.aarch64",
"product": {
"name": "git-cvs-2.50.1-1.1.aarch64",
"product_id": "git-cvs-2.50.1-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-daemon-2.50.1-1.1.aarch64",
"product": {
"name": "git-daemon-2.50.1-1.1.aarch64",
"product_id": "git-daemon-2.50.1-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-doc-2.50.1-1.1.aarch64",
"product": {
"name": "git-doc-2.50.1-1.1.aarch64",
"product_id": "git-doc-2.50.1-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-email-2.50.1-1.1.aarch64",
"product": {
"name": "git-email-2.50.1-1.1.aarch64",
"product_id": "git-email-2.50.1-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-gui-2.50.1-1.1.aarch64",
"product": {
"name": "git-gui-2.50.1-1.1.aarch64",
"product_id": "git-gui-2.50.1-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-p4-2.50.1-1.1.aarch64",
"product": {
"name": "git-p4-2.50.1-1.1.aarch64",
"product_id": "git-p4-2.50.1-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-svn-2.50.1-1.1.aarch64",
"product": {
"name": "git-svn-2.50.1-1.1.aarch64",
"product_id": "git-svn-2.50.1-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "git-web-2.50.1-1.1.aarch64",
"product": {
"name": "git-web-2.50.1-1.1.aarch64",
"product_id": "git-web-2.50.1-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "gitk-2.50.1-1.1.aarch64",
"product": {
"name": "gitk-2.50.1-1.1.aarch64",
"product_id": "gitk-2.50.1-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "perl-Git-2.50.1-1.1.aarch64",
"product": {
"name": "perl-Git-2.50.1-1.1.aarch64",
"product_id": "perl-Git-2.50.1-1.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "git-2.50.1-1.1.ppc64le",
"product": {
"name": "git-2.50.1-1.1.ppc64le",
"product_id": "git-2.50.1-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-arch-2.50.1-1.1.ppc64le",
"product": {
"name": "git-arch-2.50.1-1.1.ppc64le",
"product_id": "git-arch-2.50.1-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-core-2.50.1-1.1.ppc64le",
"product": {
"name": "git-core-2.50.1-1.1.ppc64le",
"product_id": "git-core-2.50.1-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-2.50.1-1.1.ppc64le",
"product": {
"name": "git-credential-libsecret-2.50.1-1.1.ppc64le",
"product_id": "git-credential-libsecret-2.50.1-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-cvs-2.50.1-1.1.ppc64le",
"product": {
"name": "git-cvs-2.50.1-1.1.ppc64le",
"product_id": "git-cvs-2.50.1-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-daemon-2.50.1-1.1.ppc64le",
"product": {
"name": "git-daemon-2.50.1-1.1.ppc64le",
"product_id": "git-daemon-2.50.1-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-doc-2.50.1-1.1.ppc64le",
"product": {
"name": "git-doc-2.50.1-1.1.ppc64le",
"product_id": "git-doc-2.50.1-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-email-2.50.1-1.1.ppc64le",
"product": {
"name": "git-email-2.50.1-1.1.ppc64le",
"product_id": "git-email-2.50.1-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-gui-2.50.1-1.1.ppc64le",
"product": {
"name": "git-gui-2.50.1-1.1.ppc64le",
"product_id": "git-gui-2.50.1-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-p4-2.50.1-1.1.ppc64le",
"product": {
"name": "git-p4-2.50.1-1.1.ppc64le",
"product_id": "git-p4-2.50.1-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-svn-2.50.1-1.1.ppc64le",
"product": {
"name": "git-svn-2.50.1-1.1.ppc64le",
"product_id": "git-svn-2.50.1-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "git-web-2.50.1-1.1.ppc64le",
"product": {
"name": "git-web-2.50.1-1.1.ppc64le",
"product_id": "git-web-2.50.1-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "gitk-2.50.1-1.1.ppc64le",
"product": {
"name": "gitk-2.50.1-1.1.ppc64le",
"product_id": "gitk-2.50.1-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "perl-Git-2.50.1-1.1.ppc64le",
"product": {
"name": "perl-Git-2.50.1-1.1.ppc64le",
"product_id": "perl-Git-2.50.1-1.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "git-2.50.1-1.1.s390x",
"product": {
"name": "git-2.50.1-1.1.s390x",
"product_id": "git-2.50.1-1.1.s390x"
}
},
{
"category": "product_version",
"name": "git-arch-2.50.1-1.1.s390x",
"product": {
"name": "git-arch-2.50.1-1.1.s390x",
"product_id": "git-arch-2.50.1-1.1.s390x"
}
},
{
"category": "product_version",
"name": "git-core-2.50.1-1.1.s390x",
"product": {
"name": "git-core-2.50.1-1.1.s390x",
"product_id": "git-core-2.50.1-1.1.s390x"
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-2.50.1-1.1.s390x",
"product": {
"name": "git-credential-libsecret-2.50.1-1.1.s390x",
"product_id": "git-credential-libsecret-2.50.1-1.1.s390x"
}
},
{
"category": "product_version",
"name": "git-cvs-2.50.1-1.1.s390x",
"product": {
"name": "git-cvs-2.50.1-1.1.s390x",
"product_id": "git-cvs-2.50.1-1.1.s390x"
}
},
{
"category": "product_version",
"name": "git-daemon-2.50.1-1.1.s390x",
"product": {
"name": "git-daemon-2.50.1-1.1.s390x",
"product_id": "git-daemon-2.50.1-1.1.s390x"
}
},
{
"category": "product_version",
"name": "git-doc-2.50.1-1.1.s390x",
"product": {
"name": "git-doc-2.50.1-1.1.s390x",
"product_id": "git-doc-2.50.1-1.1.s390x"
}
},
{
"category": "product_version",
"name": "git-email-2.50.1-1.1.s390x",
"product": {
"name": "git-email-2.50.1-1.1.s390x",
"product_id": "git-email-2.50.1-1.1.s390x"
}
},
{
"category": "product_version",
"name": "git-gui-2.50.1-1.1.s390x",
"product": {
"name": "git-gui-2.50.1-1.1.s390x",
"product_id": "git-gui-2.50.1-1.1.s390x"
}
},
{
"category": "product_version",
"name": "git-p4-2.50.1-1.1.s390x",
"product": {
"name": "git-p4-2.50.1-1.1.s390x",
"product_id": "git-p4-2.50.1-1.1.s390x"
}
},
{
"category": "product_version",
"name": "git-svn-2.50.1-1.1.s390x",
"product": {
"name": "git-svn-2.50.1-1.1.s390x",
"product_id": "git-svn-2.50.1-1.1.s390x"
}
},
{
"category": "product_version",
"name": "git-web-2.50.1-1.1.s390x",
"product": {
"name": "git-web-2.50.1-1.1.s390x",
"product_id": "git-web-2.50.1-1.1.s390x"
}
},
{
"category": "product_version",
"name": "gitk-2.50.1-1.1.s390x",
"product": {
"name": "gitk-2.50.1-1.1.s390x",
"product_id": "gitk-2.50.1-1.1.s390x"
}
},
{
"category": "product_version",
"name": "perl-Git-2.50.1-1.1.s390x",
"product": {
"name": "perl-Git-2.50.1-1.1.s390x",
"product_id": "perl-Git-2.50.1-1.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "git-2.50.1-1.1.x86_64",
"product": {
"name": "git-2.50.1-1.1.x86_64",
"product_id": "git-2.50.1-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-arch-2.50.1-1.1.x86_64",
"product": {
"name": "git-arch-2.50.1-1.1.x86_64",
"product_id": "git-arch-2.50.1-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-core-2.50.1-1.1.x86_64",
"product": {
"name": "git-core-2.50.1-1.1.x86_64",
"product_id": "git-core-2.50.1-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-credential-libsecret-2.50.1-1.1.x86_64",
"product": {
"name": "git-credential-libsecret-2.50.1-1.1.x86_64",
"product_id": "git-credential-libsecret-2.50.1-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-cvs-2.50.1-1.1.x86_64",
"product": {
"name": "git-cvs-2.50.1-1.1.x86_64",
"product_id": "git-cvs-2.50.1-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-daemon-2.50.1-1.1.x86_64",
"product": {
"name": "git-daemon-2.50.1-1.1.x86_64",
"product_id": "git-daemon-2.50.1-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-doc-2.50.1-1.1.x86_64",
"product": {
"name": "git-doc-2.50.1-1.1.x86_64",
"product_id": "git-doc-2.50.1-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-email-2.50.1-1.1.x86_64",
"product": {
"name": "git-email-2.50.1-1.1.x86_64",
"product_id": "git-email-2.50.1-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-gui-2.50.1-1.1.x86_64",
"product": {
"name": "git-gui-2.50.1-1.1.x86_64",
"product_id": "git-gui-2.50.1-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-p4-2.50.1-1.1.x86_64",
"product": {
"name": "git-p4-2.50.1-1.1.x86_64",
"product_id": "git-p4-2.50.1-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-svn-2.50.1-1.1.x86_64",
"product": {
"name": "git-svn-2.50.1-1.1.x86_64",
"product_id": "git-svn-2.50.1-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "git-web-2.50.1-1.1.x86_64",
"product": {
"name": "git-web-2.50.1-1.1.x86_64",
"product_id": "git-web-2.50.1-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "gitk-2.50.1-1.1.x86_64",
"product": {
"name": "gitk-2.50.1-1.1.x86_64",
"product_id": "gitk-2.50.1-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "perl-Git-2.50.1-1.1.x86_64",
"product": {
"name": "perl-Git-2.50.1-1.1.x86_64",
"product_id": "perl-Git-2.50.1-1.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Tumbleweed",
"product": {
"name": "openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:tumbleweed"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.50.1-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:git-2.50.1-1.1.aarch64"
},
"product_reference": "git-2.50.1-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.50.1-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:git-2.50.1-1.1.ppc64le"
},
"product_reference": "git-2.50.1-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.50.1-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:git-2.50.1-1.1.s390x"
},
"product_reference": "git-2.50.1-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-2.50.1-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:git-2.50.1-1.1.x86_64"
},
"product_reference": "git-2.50.1-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-arch-2.50.1-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:git-arch-2.50.1-1.1.aarch64"
},
"product_reference": "git-arch-2.50.1-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-arch-2.50.1-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:git-arch-2.50.1-1.1.ppc64le"
},
"product_reference": "git-arch-2.50.1-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-arch-2.50.1-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:git-arch-2.50.1-1.1.s390x"
},
"product_reference": "git-arch-2.50.1-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-arch-2.50.1-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:git-arch-2.50.1-1.1.x86_64"
},
"product_reference": "git-arch-2.50.1-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.50.1-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:git-core-2.50.1-1.1.aarch64"
},
"product_reference": "git-core-2.50.1-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.50.1-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:git-core-2.50.1-1.1.ppc64le"
},
"product_reference": "git-core-2.50.1-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.50.1-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:git-core-2.50.1-1.1.s390x"
},
"product_reference": "git-core-2.50.1-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-core-2.50.1-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:git-core-2.50.1-1.1.x86_64"
},
"product_reference": "git-core-2.50.1-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-2.50.1-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:git-credential-libsecret-2.50.1-1.1.aarch64"
},
"product_reference": "git-credential-libsecret-2.50.1-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-2.50.1-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:git-credential-libsecret-2.50.1-1.1.ppc64le"
},
"product_reference": "git-credential-libsecret-2.50.1-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-2.50.1-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:git-credential-libsecret-2.50.1-1.1.s390x"
},
"product_reference": "git-credential-libsecret-2.50.1-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-credential-libsecret-2.50.1-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:git-credential-libsecret-2.50.1-1.1.x86_64"
},
"product_reference": "git-credential-libsecret-2.50.1-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.50.1-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:git-cvs-2.50.1-1.1.aarch64"
},
"product_reference": "git-cvs-2.50.1-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.50.1-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:git-cvs-2.50.1-1.1.ppc64le"
},
"product_reference": "git-cvs-2.50.1-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.50.1-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:git-cvs-2.50.1-1.1.s390x"
},
"product_reference": "git-cvs-2.50.1-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-cvs-2.50.1-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:git-cvs-2.50.1-1.1.x86_64"
},
"product_reference": "git-cvs-2.50.1-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.50.1-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:git-daemon-2.50.1-1.1.aarch64"
},
"product_reference": "git-daemon-2.50.1-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.50.1-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:git-daemon-2.50.1-1.1.ppc64le"
},
"product_reference": "git-daemon-2.50.1-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.50.1-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:git-daemon-2.50.1-1.1.s390x"
},
"product_reference": "git-daemon-2.50.1-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-daemon-2.50.1-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:git-daemon-2.50.1-1.1.x86_64"
},
"product_reference": "git-daemon-2.50.1-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-doc-2.50.1-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:git-doc-2.50.1-1.1.aarch64"
},
"product_reference": "git-doc-2.50.1-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-doc-2.50.1-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:git-doc-2.50.1-1.1.ppc64le"
},
"product_reference": "git-doc-2.50.1-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-doc-2.50.1-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:git-doc-2.50.1-1.1.s390x"
},
"product_reference": "git-doc-2.50.1-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-doc-2.50.1-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:git-doc-2.50.1-1.1.x86_64"
},
"product_reference": "git-doc-2.50.1-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.50.1-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:git-email-2.50.1-1.1.aarch64"
},
"product_reference": "git-email-2.50.1-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.50.1-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:git-email-2.50.1-1.1.ppc64le"
},
"product_reference": "git-email-2.50.1-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.50.1-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:git-email-2.50.1-1.1.s390x"
},
"product_reference": "git-email-2.50.1-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-email-2.50.1-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:git-email-2.50.1-1.1.x86_64"
},
"product_reference": "git-email-2.50.1-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.50.1-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:git-gui-2.50.1-1.1.aarch64"
},
"product_reference": "git-gui-2.50.1-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.50.1-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:git-gui-2.50.1-1.1.ppc64le"
},
"product_reference": "git-gui-2.50.1-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.50.1-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:git-gui-2.50.1-1.1.s390x"
},
"product_reference": "git-gui-2.50.1-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-gui-2.50.1-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:git-gui-2.50.1-1.1.x86_64"
},
"product_reference": "git-gui-2.50.1-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-p4-2.50.1-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:git-p4-2.50.1-1.1.aarch64"
},
"product_reference": "git-p4-2.50.1-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-p4-2.50.1-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:git-p4-2.50.1-1.1.ppc64le"
},
"product_reference": "git-p4-2.50.1-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-p4-2.50.1-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:git-p4-2.50.1-1.1.s390x"
},
"product_reference": "git-p4-2.50.1-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-p4-2.50.1-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:git-p4-2.50.1-1.1.x86_64"
},
"product_reference": "git-p4-2.50.1-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.50.1-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:git-svn-2.50.1-1.1.aarch64"
},
"product_reference": "git-svn-2.50.1-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.50.1-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:git-svn-2.50.1-1.1.ppc64le"
},
"product_reference": "git-svn-2.50.1-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.50.1-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:git-svn-2.50.1-1.1.s390x"
},
"product_reference": "git-svn-2.50.1-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-svn-2.50.1-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:git-svn-2.50.1-1.1.x86_64"
},
"product_reference": "git-svn-2.50.1-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.50.1-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:git-web-2.50.1-1.1.aarch64"
},
"product_reference": "git-web-2.50.1-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.50.1-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:git-web-2.50.1-1.1.ppc64le"
},
"product_reference": "git-web-2.50.1-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.50.1-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:git-web-2.50.1-1.1.s390x"
},
"product_reference": "git-web-2.50.1-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "git-web-2.50.1-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:git-web-2.50.1-1.1.x86_64"
},
"product_reference": "git-web-2.50.1-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.50.1-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:gitk-2.50.1-1.1.aarch64"
},
"product_reference": "gitk-2.50.1-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.50.1-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:gitk-2.50.1-1.1.ppc64le"
},
"product_reference": "gitk-2.50.1-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.50.1-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:gitk-2.50.1-1.1.s390x"
},
"product_reference": "gitk-2.50.1-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gitk-2.50.1-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:gitk-2.50.1-1.1.x86_64"
},
"product_reference": "gitk-2.50.1-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.50.1-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:perl-Git-2.50.1-1.1.aarch64"
},
"product_reference": "perl-Git-2.50.1-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.50.1-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:perl-Git-2.50.1-1.1.ppc64le"
},
"product_reference": "perl-Git-2.50.1-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.50.1-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:perl-Git-2.50.1-1.1.s390x"
},
"product_reference": "perl-Git-2.50.1-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perl-Git-2.50.1-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:perl-Git-2.50.1-1.1.x86_64"
},
"product_reference": "perl-Git-2.50.1-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-27613",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-27613"
}
],
"notes": [
{
"category": "general",
"text": "Gitk is a Tcl/Tk based Git history browser. Starting with 1.7.0, when a user clones an untrusted repository and runs gitk without additional command arguments, files for which the user has write permission can be created and truncated. The option Support per-file encoding must have been enabled before in Gitk\u0027s Preferences. This option is disabled by default. The same happens when Show origin of this line is used in the main window (regardless of whether Support per-file encoding is enabled or not). This vulnerability is fixed in 2.43.7, 2.44.4, 2.45.4, 2.46.4, 2.47.3, 2.48.2, 2.49.1, and 2.50.1.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:git-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-arch-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-arch-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-arch-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-arch-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-core-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-core-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-core-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-core-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-credential-libsecret-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-credential-libsecret-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-credential-libsecret-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-credential-libsecret-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-cvs-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-cvs-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-cvs-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-cvs-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-daemon-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-daemon-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-daemon-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-daemon-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-doc-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-doc-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-doc-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-doc-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-email-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-email-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-email-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-email-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-gui-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-gui-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-gui-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-gui-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-p4-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-p4-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-p4-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-p4-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-svn-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-svn-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-svn-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-svn-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-web-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-web-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-web-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-web-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:gitk-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:gitk-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:gitk-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:gitk-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:perl-Git-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:perl-Git-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:perl-Git-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:perl-Git-2.50.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-27613",
"url": "https://www.suse.com/security/cve/CVE-2025-27613"
},
{
"category": "external",
"summary": "SUSE Bug 1245938 for CVE-2025-27613",
"url": "https://bugzilla.suse.com/1245938"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:git-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-arch-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-arch-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-arch-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-arch-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-core-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-core-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-core-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-core-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-credential-libsecret-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-credential-libsecret-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-credential-libsecret-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-credential-libsecret-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-cvs-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-cvs-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-cvs-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-cvs-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-daemon-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-daemon-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-daemon-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-daemon-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-doc-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-doc-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-doc-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-doc-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-email-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-email-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-email-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-email-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-gui-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-gui-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-gui-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-gui-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-p4-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-p4-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-p4-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-p4-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-svn-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-svn-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-svn-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-svn-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-web-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-web-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-web-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-web-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:gitk-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:gitk-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:gitk-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:gitk-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:perl-Git-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:perl-Git-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:perl-Git-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:perl-Git-2.50.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:git-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-arch-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-arch-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-arch-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-arch-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-core-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-core-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-core-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-core-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-credential-libsecret-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-credential-libsecret-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-credential-libsecret-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-credential-libsecret-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-cvs-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-cvs-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-cvs-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-cvs-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-daemon-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-daemon-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-daemon-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-daemon-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-doc-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-doc-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-doc-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-doc-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-email-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-email-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-email-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-email-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-gui-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-gui-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-gui-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-gui-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-p4-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-p4-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-p4-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-p4-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-svn-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-svn-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-svn-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-svn-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-web-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-web-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-web-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-web-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:gitk-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:gitk-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:gitk-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:gitk-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:perl-Git-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:perl-Git-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:perl-Git-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:perl-Git-2.50.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-07-11T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2025-27613"
},
{
"cve": "CVE-2025-27614",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-27614"
}
],
"notes": [
{
"category": "general",
"text": "Gitk is a Tcl/Tk based Git history browser. Starting with 2.41.0, a Git repository can be crafted in such a way that with some social engineering a user who has cloned the repository can be tricked into running any script (e.g., Bourne shell, Perl, Python, ...) supplied by the attacker by invoking gitk filename, where filename has a particular structure. The script is run with the privileges of the user. This vulnerability is fixed in 2.43.7, 2.44.4, 2.45.4, 2.46.4, 2.47.3, 2.48.2, 2.49.1, and 2.50.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:git-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-arch-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-arch-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-arch-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-arch-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-core-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-core-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-core-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-core-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-credential-libsecret-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-credential-libsecret-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-credential-libsecret-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-credential-libsecret-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-cvs-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-cvs-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-cvs-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-cvs-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-daemon-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-daemon-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-daemon-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-daemon-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-doc-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-doc-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-doc-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-doc-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-email-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-email-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-email-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-email-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-gui-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-gui-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-gui-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-gui-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-p4-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-p4-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-p4-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-p4-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-svn-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-svn-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-svn-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-svn-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-web-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-web-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-web-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-web-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:gitk-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:gitk-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:gitk-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:gitk-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:perl-Git-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:perl-Git-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:perl-Git-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:perl-Git-2.50.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-27614",
"url": "https://www.suse.com/security/cve/CVE-2025-27614"
},
{
"category": "external",
"summary": "SUSE Bug 1245939 for CVE-2025-27614",
"url": "https://bugzilla.suse.com/1245939"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:git-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-arch-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-arch-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-arch-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-arch-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-core-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-core-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-core-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-core-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-credential-libsecret-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-credential-libsecret-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-credential-libsecret-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-credential-libsecret-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-cvs-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-cvs-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-cvs-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-cvs-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-daemon-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-daemon-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-daemon-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-daemon-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-doc-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-doc-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-doc-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-doc-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-email-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-email-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-email-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-email-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-gui-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-gui-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-gui-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-gui-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-p4-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-p4-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-p4-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-p4-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-svn-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-svn-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-svn-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-svn-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-web-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-web-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-web-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-web-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:gitk-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:gitk-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:gitk-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:gitk-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:perl-Git-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:perl-Git-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:perl-Git-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:perl-Git-2.50.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:git-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-arch-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-arch-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-arch-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-arch-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-core-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-core-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-core-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-core-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-credential-libsecret-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-credential-libsecret-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-credential-libsecret-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-credential-libsecret-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-cvs-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-cvs-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-cvs-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-cvs-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-daemon-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-daemon-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-daemon-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-daemon-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-doc-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-doc-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-doc-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-doc-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-email-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-email-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-email-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-email-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-gui-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-gui-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-gui-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-gui-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-p4-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-p4-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-p4-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-p4-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-svn-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-svn-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-svn-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-svn-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-web-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-web-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-web-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-web-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:gitk-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:gitk-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:gitk-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:gitk-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:perl-Git-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:perl-Git-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:perl-Git-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:perl-Git-2.50.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-07-11T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2025-27614"
},
{
"cve": "CVE-2025-46334",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-46334"
}
],
"notes": [
{
"category": "general",
"text": "Git GUI allows you to use the Git source control management tools via a GUI. A malicious repository can ship versions of sh.exe or typical textconv filter programs such as astextplain. Due to the unfortunate design of Tcl on Windows, the search path when looking for an executable always includes the current directory. The mentioned programs are invoked when the user selects Git Bash or Browse Files from the menu. This vulnerability is fixed in 2.43.7, 2.44.4, 2.45.4, 2.46.4, 2.47.3, 2.48.2, 2.49.1, and 2.50.1.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:git-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-arch-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-arch-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-arch-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-arch-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-core-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-core-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-core-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-core-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-credential-libsecret-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-credential-libsecret-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-credential-libsecret-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-credential-libsecret-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-cvs-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-cvs-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-cvs-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-cvs-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-daemon-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-daemon-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-daemon-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-daemon-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-doc-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-doc-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-doc-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-doc-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-email-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-email-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-email-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-email-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-gui-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-gui-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-gui-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-gui-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-p4-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-p4-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-p4-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-p4-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-svn-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-svn-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-svn-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-svn-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-web-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-web-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-web-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-web-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:gitk-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:gitk-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:gitk-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:gitk-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:perl-Git-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:perl-Git-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:perl-Git-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:perl-Git-2.50.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-46334",
"url": "https://www.suse.com/security/cve/CVE-2025-46334"
},
{
"category": "external",
"summary": "SUSE Bug 1245940 for CVE-2025-46334",
"url": "https://bugzilla.suse.com/1245940"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:git-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-arch-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-arch-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-arch-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-arch-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-core-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-core-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-core-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-core-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-credential-libsecret-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-credential-libsecret-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-credential-libsecret-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-credential-libsecret-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-cvs-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-cvs-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-cvs-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-cvs-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-daemon-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-daemon-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-daemon-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-daemon-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-doc-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-doc-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-doc-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-doc-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-email-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-email-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-email-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-email-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-gui-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-gui-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-gui-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-gui-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-p4-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-p4-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-p4-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-p4-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-svn-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-svn-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-svn-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-svn-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-web-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-web-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-web-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-web-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:gitk-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:gitk-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:gitk-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:gitk-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:perl-Git-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:perl-Git-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:perl-Git-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:perl-Git-2.50.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-07-11T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2025-46334"
},
{
"cve": "CVE-2025-46835",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-46835"
}
],
"notes": [
{
"category": "general",
"text": "Git GUI allows you to use the Git source control management tools via a GUI. When a user clones an untrusted repository and is tricked into editing a file located in a maliciously named directory in the repository, then Git GUI can create and overwrite files for which the user has write permission. This vulnerability is fixed in 2.43.7, 2.44.4, 2.45.4, 2.46.4, 2.47.3, 2.48.2, 2.49.1, and 2.50.1.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:git-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-arch-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-arch-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-arch-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-arch-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-core-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-core-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-core-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-core-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-credential-libsecret-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-credential-libsecret-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-credential-libsecret-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-credential-libsecret-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-cvs-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-cvs-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-cvs-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-cvs-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-daemon-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-daemon-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-daemon-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-daemon-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-doc-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-doc-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-doc-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-doc-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-email-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-email-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-email-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-email-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-gui-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-gui-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-gui-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-gui-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-p4-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-p4-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-p4-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-p4-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-svn-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-svn-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-svn-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-svn-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-web-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-web-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-web-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-web-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:gitk-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:gitk-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:gitk-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:gitk-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:perl-Git-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:perl-Git-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:perl-Git-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:perl-Git-2.50.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-46835",
"url": "https://www.suse.com/security/cve/CVE-2025-46835"
},
{
"category": "external",
"summary": "SUSE Bug 1245942 for CVE-2025-46835",
"url": "https://bugzilla.suse.com/1245942"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:git-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-arch-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-arch-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-arch-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-arch-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-core-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-core-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-core-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-core-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-credential-libsecret-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-credential-libsecret-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-credential-libsecret-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-credential-libsecret-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-cvs-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-cvs-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-cvs-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-cvs-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-daemon-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-daemon-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-daemon-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-daemon-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-doc-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-doc-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-doc-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-doc-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-email-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-email-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-email-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-email-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-gui-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-gui-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-gui-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-gui-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-p4-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-p4-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-p4-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-p4-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-svn-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-svn-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-svn-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-svn-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-web-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-web-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-web-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-web-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:gitk-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:gitk-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:gitk-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:gitk-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:perl-Git-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:perl-Git-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:perl-Git-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:perl-Git-2.50.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:git-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-arch-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-arch-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-arch-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-arch-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-core-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-core-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-core-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-core-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-credential-libsecret-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-credential-libsecret-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-credential-libsecret-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-credential-libsecret-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-cvs-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-cvs-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-cvs-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-cvs-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-daemon-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-daemon-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-daemon-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-daemon-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-doc-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-doc-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-doc-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-doc-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-email-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-email-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-email-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-email-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-gui-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-gui-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-gui-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-gui-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-p4-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-p4-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-p4-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-p4-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-svn-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-svn-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-svn-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-svn-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-web-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-web-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-web-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-web-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:gitk-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:gitk-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:gitk-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:gitk-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:perl-Git-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:perl-Git-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:perl-Git-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:perl-Git-2.50.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-07-11T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2025-46835"
},
{
"cve": "CVE-2025-48384",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-48384"
}
],
"notes": [
{
"category": "general",
"text": "Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full access to internals. When reading a config value, Git strips any trailing carriage return and line feed (CRLF). When writing a config entry, values with a trailing CR are not quoted, causing the CR to be lost when the config is later read. When initializing a submodule, if the submodule path contains a trailing CR, the altered path is read resulting in the submodule being checked out to an incorrect location. If a symlink exists that points the altered path to the submodule hooks directory, and the submodule contains an executable post-checkout hook, the script may be unintentionally executed after checkout. This vulnerability is fixed in v2.43.7, v2.44.4, v2.45.4, v2.46.4, v2.47.3, v2.48.2, v2.49.1, and v2.50.1.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:git-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-arch-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-arch-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-arch-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-arch-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-core-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-core-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-core-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-core-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-credential-libsecret-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-credential-libsecret-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-credential-libsecret-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-credential-libsecret-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-cvs-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-cvs-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-cvs-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-cvs-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-daemon-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-daemon-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-daemon-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-daemon-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-doc-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-doc-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-doc-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-doc-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-email-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-email-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-email-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-email-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-gui-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-gui-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-gui-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-gui-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-p4-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-p4-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-p4-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-p4-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-svn-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-svn-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-svn-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-svn-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-web-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-web-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-web-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-web-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:gitk-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:gitk-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:gitk-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:gitk-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:perl-Git-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:perl-Git-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:perl-Git-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:perl-Git-2.50.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-48384",
"url": "https://www.suse.com/security/cve/CVE-2025-48384"
},
{
"category": "external",
"summary": "SUSE Bug 1245943 for CVE-2025-48384",
"url": "https://bugzilla.suse.com/1245943"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:git-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-arch-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-arch-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-arch-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-arch-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-core-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-core-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-core-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-core-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-credential-libsecret-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-credential-libsecret-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-credential-libsecret-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-credential-libsecret-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-cvs-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-cvs-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-cvs-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-cvs-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-daemon-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-daemon-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-daemon-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-daemon-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-doc-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-doc-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-doc-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-doc-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-email-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-email-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-email-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-email-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-gui-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-gui-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-gui-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-gui-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-p4-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-p4-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-p4-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-p4-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-svn-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-svn-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-svn-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-svn-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-web-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-web-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-web-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-web-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:gitk-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:gitk-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:gitk-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:gitk-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:perl-Git-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:perl-Git-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:perl-Git-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:perl-Git-2.50.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:git-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-arch-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-arch-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-arch-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-arch-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-core-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-core-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-core-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-core-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-credential-libsecret-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-credential-libsecret-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-credential-libsecret-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-credential-libsecret-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-cvs-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-cvs-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-cvs-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-cvs-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-daemon-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-daemon-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-daemon-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-daemon-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-doc-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-doc-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-doc-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-doc-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-email-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-email-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-email-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-email-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-gui-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-gui-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-gui-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-gui-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-p4-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-p4-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-p4-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-p4-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-svn-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-svn-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-svn-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-svn-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-web-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-web-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-web-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-web-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:gitk-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:gitk-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:gitk-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:gitk-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:perl-Git-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:perl-Git-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:perl-Git-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:perl-Git-2.50.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-07-11T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2025-48384"
},
{
"cve": "CVE-2025-48385",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-48385"
}
],
"notes": [
{
"category": "general",
"text": "Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full access to internals. When cloning a repository Git knows to optionally fetch a bundle advertised by the remote server, which allows the server-side to offload parts of the clone to a CDN. The Git client does not perform sufficient validation of the advertised bundles, which allows the remote side to perform protocol injection. This protocol injection can cause the client to write the fetched bundle to a location controlled by the adversary. The fetched content is fully controlled by the server, which can in the worst case lead to arbitrary code execution. The use of bundle URIs is not enabled by default and can be controlled by the bundle.heuristic config option. Some cases of the vulnerability require that the adversary is in control of where a repository will be cloned to. This either requires social engineering or a recursive clone with submodules. These cases can thus be avoided by disabling recursive clones. This vulnerability is fixed in v2.43.7, v2.44.4, v2.45.4, v2.46.4, v2.47.3, v2.48.2, v2.49.1, and v2.50.1.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:git-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-arch-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-arch-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-arch-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-arch-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-core-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-core-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-core-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-core-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-credential-libsecret-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-credential-libsecret-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-credential-libsecret-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-credential-libsecret-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-cvs-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-cvs-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-cvs-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-cvs-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-daemon-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-daemon-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-daemon-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-daemon-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-doc-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-doc-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-doc-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-doc-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-email-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-email-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-email-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-email-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-gui-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-gui-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-gui-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-gui-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-p4-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-p4-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-p4-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-p4-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-svn-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-svn-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-svn-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-svn-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-web-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-web-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-web-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-web-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:gitk-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:gitk-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:gitk-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:gitk-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:perl-Git-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:perl-Git-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:perl-Git-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:perl-Git-2.50.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-48385",
"url": "https://www.suse.com/security/cve/CVE-2025-48385"
},
{
"category": "external",
"summary": "SUSE Bug 1245946 for CVE-2025-48385",
"url": "https://bugzilla.suse.com/1245946"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:git-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-arch-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-arch-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-arch-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-arch-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-core-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-core-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-core-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-core-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-credential-libsecret-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-credential-libsecret-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-credential-libsecret-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-credential-libsecret-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-cvs-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-cvs-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-cvs-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-cvs-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-daemon-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-daemon-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-daemon-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-daemon-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-doc-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-doc-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-doc-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-doc-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-email-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-email-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-email-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-email-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-gui-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-gui-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-gui-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-gui-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-p4-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-p4-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-p4-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-p4-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-svn-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-svn-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-svn-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-svn-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-web-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-web-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-web-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-web-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:gitk-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:gitk-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:gitk-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:gitk-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:perl-Git-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:perl-Git-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:perl-Git-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:perl-Git-2.50.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:git-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-arch-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-arch-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-arch-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-arch-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-core-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-core-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-core-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-core-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-credential-libsecret-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-credential-libsecret-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-credential-libsecret-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-credential-libsecret-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-cvs-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-cvs-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-cvs-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-cvs-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-daemon-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-daemon-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-daemon-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-daemon-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-doc-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-doc-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-doc-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-doc-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-email-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-email-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-email-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-email-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-gui-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-gui-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-gui-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-gui-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-p4-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-p4-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-p4-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-p4-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-svn-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-svn-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-svn-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-svn-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-web-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-web-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-web-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-web-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:gitk-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:gitk-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:gitk-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:gitk-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:perl-Git-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:perl-Git-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:perl-Git-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:perl-Git-2.50.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-07-11T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2025-48385"
},
{
"cve": "CVE-2025-48386",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-48386"
}
],
"notes": [
{
"category": "general",
"text": "Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full access to internals. The wincred credential helper uses a static buffer (target) as a unique key for storing and comparing against internal storage. This credential helper does not properly bounds check the available space remaining in the buffer before appending to it with wcsncat(), leading to potential buffer overflows. This vulnerability is fixed in v2.43.7, v2.44.4, v2.45.4, v2.46.4, v2.47.3, v2.48.2, v2.49.1, and v2.50.1.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:git-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-arch-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-arch-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-arch-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-arch-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-core-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-core-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-core-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-core-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-credential-libsecret-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-credential-libsecret-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-credential-libsecret-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-credential-libsecret-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-cvs-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-cvs-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-cvs-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-cvs-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-daemon-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-daemon-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-daemon-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-daemon-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-doc-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-doc-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-doc-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-doc-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-email-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-email-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-email-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-email-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-gui-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-gui-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-gui-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-gui-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-p4-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-p4-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-p4-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-p4-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-svn-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-svn-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-svn-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-svn-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-web-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-web-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-web-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-web-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:gitk-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:gitk-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:gitk-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:gitk-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:perl-Git-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:perl-Git-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:perl-Git-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:perl-Git-2.50.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-48386",
"url": "https://www.suse.com/security/cve/CVE-2025-48386"
},
{
"category": "external",
"summary": "SUSE Bug 1245947 for CVE-2025-48386",
"url": "https://bugzilla.suse.com/1245947"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:git-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-arch-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-arch-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-arch-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-arch-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-core-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-core-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-core-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-core-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-credential-libsecret-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-credential-libsecret-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-credential-libsecret-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-credential-libsecret-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-cvs-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-cvs-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-cvs-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-cvs-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-daemon-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-daemon-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-daemon-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-daemon-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-doc-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-doc-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-doc-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-doc-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-email-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-email-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-email-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-email-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-gui-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-gui-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-gui-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-gui-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-p4-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-p4-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-p4-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-p4-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-svn-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-svn-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-svn-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-svn-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-web-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-web-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-web-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-web-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:gitk-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:gitk-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:gitk-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:gitk-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:perl-Git-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:perl-Git-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:perl-Git-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:perl-Git-2.50.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:git-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-arch-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-arch-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-arch-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-arch-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-core-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-core-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-core-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-core-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-credential-libsecret-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-credential-libsecret-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-credential-libsecret-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-credential-libsecret-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-cvs-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-cvs-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-cvs-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-cvs-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-daemon-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-daemon-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-daemon-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-daemon-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-doc-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-doc-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-doc-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-doc-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-email-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-email-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-email-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-email-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-gui-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-gui-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-gui-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-gui-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-p4-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-p4-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-p4-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-p4-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-svn-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-svn-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-svn-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-svn-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:git-web-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:git-web-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:git-web-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:git-web-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:gitk-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:gitk-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:gitk-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:gitk-2.50.1-1.1.x86_64",
"openSUSE Tumbleweed:perl-Git-2.50.1-1.1.aarch64",
"openSUSE Tumbleweed:perl-Git-2.50.1-1.1.ppc64le",
"openSUSE Tumbleweed:perl-Git-2.50.1-1.1.s390x",
"openSUSE Tumbleweed:perl-Git-2.50.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-07-11T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2025-48386"
}
]
}
fkie_cve-2025-48384
Vulnerability from fkie_nvd
Published
2025-07-08 19:15
Modified
2025-11-06 14:52
Severity ?
Summary
Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full access to internals. When reading a config value, Git strips any trailing carriage return and line feed (CRLF). When writing a config entry, values with a trailing CR are not quoted, causing the CR to be lost when the config is later read. When initializing a submodule, if the submodule path contains a trailing CR, the altered path is read resulting in the submodule being checked out to an incorrect location. If a symlink exists that points the altered path to the submodule hooks directory, and the submodule contains an executable post-checkout hook, the script may be unintentionally executed after checkout. This vulnerability is fixed in v2.43.7, v2.44.4, v2.45.4, v2.46.4, v2.47.3, v2.48.2, v2.49.1, and v2.50.1.
References
| URL | Tags | ||
|---|---|---|---|
| security-advisories@github.com | https://github.com/git/git/security/advisories/GHSA-vwqx-4fm8-6qc9 | Vendor Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://seclists.org/fulldisclosure/2025/Sep/60 | Mailing List, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://www.openwall.com/lists/oss-security/2025/07/08/4 | Mailing List | |
| af854a3a-2127-422b-91ae-364da2661108 | https://lists.debian.org/debian-lts-announce/2025/10/msg00003.html | Mailing List, Third Party Advisory | |
| 134c704f-9b21-4f2e-91b3-4a467353bcc0 | https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2025-48384 | US Government Resource |
Impacted products
{
"cisaActionDue": "2025-09-15",
"cisaExploitAdd": "2025-08-25",
"cisaRequiredAction": "Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.",
"cisaVulnerabilityName": "Git Link Following Vulnerability",
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:git-scm:git:*:*:*:*:*:*:*:*",
"matchCriteriaId": "BB276680-D286-4DF6-BCB7-CAC1D9D77E08",
"versionEndExcluding": "2.43.7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:git-scm:git:*:*:*:*:*:*:*:*",
"matchCriteriaId": "856A8970-74E2-4F8F-A1A6-2AB1C0C87E45",
"versionEndExcluding": "2.44.4",
"versionStartIncluding": "2.44.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:git-scm:git:*:*:*:*:*:*:*:*",
"matchCriteriaId": "6D1DB9BA-3D91-4F7D-931E-A664737129F0",
"versionEndExcluding": "2.45.4",
"versionStartIncluding": "2.45.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:git-scm:git:*:*:*:*:*:*:*:*",
"matchCriteriaId": "01BDA55C-F398-4286-ABC6-979A783BDC65",
"versionEndExcluding": "2.46.4",
"versionStartIncluding": "2.46.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:git-scm:git:*:*:*:*:*:*:*:*",
"matchCriteriaId": "FF4A2ACC-0996-4869-884D-734D6006C032",
"versionEndExcluding": "2.47.3",
"versionStartIncluding": "2.47.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:git-scm:git:*:*:*:*:*:*:*:*",
"matchCriteriaId": "0DD21A83-8D62-4EE4-914B-B5ACA19A84A2",
"versionEndExcluding": "2.48.2",
"versionStartIncluding": "2.48.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:git-scm:git:*:*:*:*:*:*:*:*",
"matchCriteriaId": "95C1825C-B7A2-46E9-93D7-2D196DB2515E",
"versionEndExcluding": "2.49.1",
"versionStartIncluding": "2.49.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:git-scm:git:*:*:*:*:*:*:*:*",
"matchCriteriaId": "18F948AD-22C0-4B2E-B497-899F3A94B70A",
"versionEndExcluding": "2.50.1",
"versionStartIncluding": "2.50.0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*",
"matchCriteriaId": "FA6FEEC2-9F11-4643-8827-749718254FED",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:apple:xcode:*:*:*:*:*:*:*:*",
"matchCriteriaId": "37CC7F40-CC3A-4AEB-9260-B621FE64735A",
"versionEndExcluding": "26.0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full access to internals. When reading a config value, Git strips any trailing carriage return and line feed (CRLF). When writing a config entry, values with a trailing CR are not quoted, causing the CR to be lost when the config is later read. When initializing a submodule, if the submodule path contains a trailing CR, the altered path is read resulting in the submodule being checked out to an incorrect location. If a symlink exists that points the altered path to the submodule hooks directory, and the submodule contains an executable post-checkout hook, the script may be unintentionally executed after checkout. This vulnerability is fixed in v2.43.7, v2.44.4, v2.45.4, v2.46.4, v2.47.3, v2.48.2, v2.49.1, and v2.50.1."
},
{
"lang": "es",
"value": "Git es un sistema de control de versiones distribuido, r\u00e1pido y escalable, con un conjunto de comandos excepcionalmente completo que proporciona operaciones de alto nivel y acceso completo a su funcionamiento interno. Al leer un valor de configuraci\u00f3n, Git elimina cualquier retorno de carro y avance de l\u00ednea (CRLF) final. Al escribir una entrada de configuraci\u00f3n, los valores con un CR final no se entrecomillan, lo que provoca que el CR se pierda al leer la configuraci\u00f3n posteriormente. Al inicializar un subm\u00f3dulo, si la ruta del subm\u00f3dulo contiene un CR final, se lee la ruta modificada, lo que provoca que el subm\u00f3dulo se extraiga a una ubicaci\u00f3n incorrecta. Si existe un enlace simb\u00f3lico que apunta la ruta modificada al directorio de ganchos del subm\u00f3dulo, y este contiene un gancho ejecutable posterior a la extracci\u00f3n, el script podr\u00eda ejecutarse accidentalmente despu\u00e9s de la extracci\u00f3n. Esta vulnerabilidad se ha corregido en v2.43.7, v2.44.4, v2.45.4, v2.46.4, v2.47.3, v2.48.2, v2.49.1 y v2.50.1."
}
],
"id": "CVE-2025-48384",
"lastModified": "2025-11-06T14:52:47.590",
"metrics": {
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.0,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"exploitabilityScore": 1.3,
"impactScore": 6.0,
"source": "security-advisories@github.com",
"type": "Secondary"
}
]
},
"published": "2025-07-08T19:15:42.800",
"references": [
{
"source": "security-advisories@github.com",
"tags": [
"Vendor Advisory"
],
"url": "https://github.com/git/git/security/advisories/GHSA-vwqx-4fm8-6qc9"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://seclists.org/fulldisclosure/2025/Sep/60"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mailing List"
],
"url": "http://www.openwall.com/lists/oss-security/2025/07/08/4"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "https://lists.debian.org/debian-lts-announce/2025/10/msg00003.html"
},
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"tags": [
"US Government Resource"
],
"url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2025-48384"
}
],
"sourceIdentifier": "security-advisories@github.com",
"vulnStatus": "Analyzed",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-59"
},
{
"lang": "en",
"value": "CWE-436"
}
],
"source": "security-advisories@github.com",
"type": "Secondary"
}
]
}
ncsc-2025-0217
Vulnerability from csaf_ncscnl
Published
2025-07-08 18:26
Modified
2025-07-08 18:26
Summary
Kwetsbaarheden verholpen in Microsoft Visual Studio
Notes
The Netherlands Cyber Security Center (henceforth: NCSC-NL) maintains this page to enhance access to its information and security advisories. The use of this security advisory is subject to the following terms and conditions:
NCSC-NL makes every reasonable effort to ensure that the content of this page is kept up to date, and that it is accurate and complete. Nevertheless, NCSC-NL cannot entirely rule out the possibility of errors, and therefore cannot give any warranty in respect of its completeness, accuracy or continuous keeping up-to-date. The information contained in this security advisory is intended solely for the purpose of providing general information to professional users. No rights can be derived from the information provided therein.
NCSC-NL and the Kingdom of the Netherlands assume no legal liability or responsibility for any damage resulting from either the use or inability of use of this security advisory. This includes damage resulting from the inaccuracy of incompleteness of the information contained in the advisory.
This security advisory is subject to Dutch law. All disputes related to or arising from the use of this advisory will be submitted to the competent court in The Hague. This choice of means also applies to the court in summary proceedings.
Feiten
Microsoft heeft kwetsbaarheden verholpen in Visual Studio.
Interpretaties
Een kwaadwillende kan de kwetsbaarheden misbruiken om zich verhoogde rechten toe te kennen, of willekeurige code uit te voeren.
Een deel van de kwetsbaarheden zijn eerder verholpen in de code van diverse open source projecten gerelateerd aan GIT. Visual Studio maakt gebruik van deze code.
Voor succesvol misbruik moet de kwaadwillende het slachtoffer misleiden malafide code te importeren en uitvoeren.
Oplossingen
Microsoft heeft updates beschikbaar gesteld waarmee de beschreven kwetsbaarheden worden verholpen. We raden u aan om deze updates te installeren. Meer informatie over de kwetsbaarheden, de installatie van de updates en eventuele work-arounds vindt u op:
https://portal.msrc.microsoft.com/en-us/security-guidance
Kans
medium
Schade
high
CWE-59
Improper Link Resolution Before File Access ('Link Following')
CWE-501
Trust Boundary Violation
{
"document": {
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE"
}
},
"lang": "nl",
"notes": [
{
"category": "legal_disclaimer",
"text": "The Netherlands Cyber Security Center (henceforth: NCSC-NL) maintains this page to enhance access to its information and security advisories. The use of this security advisory is subject to the following terms and conditions:\n\n NCSC-NL makes every reasonable effort to ensure that the content of this page is kept up to date, and that it is accurate and complete. Nevertheless, NCSC-NL cannot entirely rule out the possibility of errors, and therefore cannot give any warranty in respect of its completeness, accuracy or continuous keeping up-to-date. The information contained in this security advisory is intended solely for the purpose of providing general information to professional users. No rights can be derived from the information provided therein.\n\n NCSC-NL and the Kingdom of the Netherlands assume no legal liability or responsibility for any damage resulting from either the use or inability of use of this security advisory. This includes damage resulting from the inaccuracy of incompleteness of the information contained in the advisory.\n This security advisory is subject to Dutch law. All disputes related to or arising from the use of this advisory will be submitted to the competent court in The Hague. This choice of means also applies to the court in summary proceedings."
},
{
"category": "description",
"text": "Microsoft heeft kwetsbaarheden verholpen in Visual Studio.",
"title": "Feiten"
},
{
"category": "description",
"text": "Een kwaadwillende kan de kwetsbaarheden misbruiken om zich verhoogde rechten toe te kennen, of willekeurige code uit te voeren.\n\nEen deel van de kwetsbaarheden zijn eerder verholpen in de code van diverse open source projecten gerelateerd aan GIT. Visual Studio maakt gebruik van deze code.\n\nVoor succesvol misbruik moet de kwaadwillende het slachtoffer misleiden malafide code te importeren en uitvoeren.\n",
"title": "Interpretaties"
},
{
"category": "description",
"text": "Microsoft heeft updates beschikbaar gesteld waarmee de beschreven kwetsbaarheden worden verholpen. We raden u aan om deze updates te installeren. Meer informatie over de kwetsbaarheden, de installatie van de updates en eventuele work-arounds vindt u op:\n\nhttps://portal.msrc.microsoft.com/en-us/security-guidance",
"title": "Oplossingen"
},
{
"category": "general",
"text": "medium",
"title": "Kans"
},
{
"category": "general",
"text": "high",
"title": "Schade"
},
{
"category": "general",
"text": "Improper Link Resolution Before File Access (\u0027Link Following\u0027)",
"title": "CWE-59"
},
{
"category": "general",
"text": "Trust Boundary Violation",
"title": "CWE-501"
}
],
"publisher": {
"category": "coordinator",
"contact_details": "cert@ncsc.nl",
"name": "Nationaal Cyber Security Centrum",
"namespace": "https://www.ncsc.nl/"
},
"title": "Kwetsbaarheden verholpen in Microsoft Visual Studio",
"tracking": {
"current_release_date": "2025-07-08T18:26:14.881161Z",
"generator": {
"date": "2025-06-05T14:45:00Z",
"engine": {
"name": "V.A.",
"version": "1.1"
}
},
"id": "NCSC-2025-0217",
"initial_release_date": "2025-07-08T18:26:14.881161Z",
"revision_history": [
{
"date": "2025-07-08T18:26:14.881161Z",
"number": "1.0.0",
"summary": "Initiele versie"
}
],
"status": "final",
"version": "1.0.0"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/14.0.0|\u003c14.0.27564.0",
"product": {
"name": "vers:unknown/14.0.0|\u003c14.0.27564.0",
"product_id": "CSAFPID-2965185"
}
}
],
"category": "product_name",
"name": "Microsoft Visual Studio 2015 Update 3"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/15.9.0|\u003c15.9.75",
"product": {
"name": "vers:unknown/15.9.0|\u003c15.9.75",
"product_id": "CSAFPID-2965180"
}
}
],
"category": "product_name",
"name": "Microsoft Visual Studio 2017 version 15.9 (includes 15.0 - 15.8)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/16.11.0|\u003c16.11.49",
"product": {
"name": "vers:unknown/16.11.0|\u003c16.11.49",
"product_id": "CSAFPID-2965181"
}
}
],
"category": "product_name",
"name": "Microsoft Visual Studio 2019 version 16.11 (includes 16.0 - 16.10)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/17.10.0|\u003c17.10.17",
"product": {
"name": "vers:unknown/17.10.0|\u003c17.10.17",
"product_id": "CSAFPID-2965184"
}
}
],
"category": "product_name",
"name": "Microsoft Visual Studio 2022 version 17.10"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/17.12.0|\u003c17.12.10",
"product": {
"name": "vers:unknown/17.12.0|\u003c17.12.10",
"product_id": "CSAFPID-2965182"
}
}
],
"category": "product_name",
"name": "Microsoft Visual Studio 2022 version 17.12"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/17.14.0|\u003c17.14.8",
"product": {
"name": "vers:unknown/17.14.0|\u003c17.14.8",
"product_id": "CSAFPID-2965186"
}
}
],
"category": "product_name",
"name": "Microsoft Visual Studio 2022 version 17.14"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/17.8.0|\u003c17.8.23",
"product": {
"name": "vers:unknown/17.8.0|\u003c17.8.23",
"product_id": "CSAFPID-2965183"
}
}
],
"category": "product_name",
"name": "Microsoft Visual Studio 2022 version 17.8"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/2020|\u003c2025.8.1",
"product": {
"name": "vers:unknown/2020|\u003c2025.8.1",
"product_id": "CSAFPID-2965264"
}
}
],
"category": "product_name",
"name": "Python extension for Visual Studio Code"
}
],
"category": "vendor",
"name": "Microsoft"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-27613",
"product_status": {
"known_affected": [
"CSAFPID-2965185",
"CSAFPID-2965180",
"CSAFPID-2965181",
"CSAFPID-2965184",
"CSAFPID-2965182",
"CSAFPID-2965186",
"CSAFPID-2965183",
"CSAFPID-2965264"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-27613 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-27613.json"
}
],
"title": "CVE-2025-27613"
},
{
"cve": "CVE-2025-27614",
"product_status": {
"known_affected": [
"CSAFPID-2965185",
"CSAFPID-2965180",
"CSAFPID-2965181",
"CSAFPID-2965184",
"CSAFPID-2965182",
"CSAFPID-2965186",
"CSAFPID-2965183",
"CSAFPID-2965264"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-27614 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-27614.json"
}
],
"title": "CVE-2025-27614"
},
{
"cve": "CVE-2025-46334",
"product_status": {
"known_affected": [
"CSAFPID-2965185",
"CSAFPID-2965180",
"CSAFPID-2965181",
"CSAFPID-2965184",
"CSAFPID-2965182",
"CSAFPID-2965186",
"CSAFPID-2965183",
"CSAFPID-2965264"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-46334 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-46334.json"
}
],
"title": "CVE-2025-46334"
},
{
"cve": "CVE-2025-46835",
"product_status": {
"known_affected": [
"CSAFPID-2965185",
"CSAFPID-2965180",
"CSAFPID-2965181",
"CSAFPID-2965184",
"CSAFPID-2965182",
"CSAFPID-2965186",
"CSAFPID-2965183",
"CSAFPID-2965264"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-46835 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-46835.json"
}
],
"title": "CVE-2025-46835"
},
{
"cve": "CVE-2025-48384",
"product_status": {
"known_affected": [
"CSAFPID-2965185",
"CSAFPID-2965180",
"CSAFPID-2965181",
"CSAFPID-2965184",
"CSAFPID-2965182",
"CSAFPID-2965186",
"CSAFPID-2965183",
"CSAFPID-2965264"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-48384 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-48384.json"
}
],
"title": "CVE-2025-48384"
},
{
"cve": "CVE-2025-48385",
"product_status": {
"known_affected": [
"CSAFPID-2965185",
"CSAFPID-2965180",
"CSAFPID-2965181",
"CSAFPID-2965184",
"CSAFPID-2965182",
"CSAFPID-2965186",
"CSAFPID-2965183",
"CSAFPID-2965264"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-48385 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-48385.json"
}
],
"title": "CVE-2025-48385"
},
{
"cve": "CVE-2025-48386",
"product_status": {
"known_affected": [
"CSAFPID-2965185",
"CSAFPID-2965180",
"CSAFPID-2965181",
"CSAFPID-2965184",
"CSAFPID-2965182",
"CSAFPID-2965186",
"CSAFPID-2965183",
"CSAFPID-2965264"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-48386 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-48386.json"
}
],
"title": "CVE-2025-48386"
},
{
"cve": "CVE-2025-49714",
"cwe": {
"id": "CWE-501",
"name": "Trust Boundary Violation"
},
"notes": [
{
"category": "other",
"text": "Trust Boundary Violation",
"title": "CWE-501"
}
],
"product_status": {
"known_affected": [
"CSAFPID-2965185",
"CSAFPID-2965180",
"CSAFPID-2965181",
"CSAFPID-2965184",
"CSAFPID-2965182",
"CSAFPID-2965186",
"CSAFPID-2965183",
"CSAFPID-2965264"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-49714 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-49714.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-2965185",
"CSAFPID-2965180",
"CSAFPID-2965181",
"CSAFPID-2965184",
"CSAFPID-2965182",
"CSAFPID-2965186",
"CSAFPID-2965183",
"CSAFPID-2965264"
]
}
],
"title": "CVE-2025-49714"
},
{
"cve": "CVE-2025-49739",
"cwe": {
"id": "CWE-59",
"name": "Improper Link Resolution Before File Access (\u0027Link Following\u0027)"
},
"notes": [
{
"category": "other",
"text": "Improper Link Resolution Before File Access (\u0027Link Following\u0027)",
"title": "CWE-59"
}
],
"product_status": {
"known_affected": [
"CSAFPID-2965185",
"CSAFPID-2965180",
"CSAFPID-2965181",
"CSAFPID-2965184",
"CSAFPID-2965182",
"CSAFPID-2965186",
"CSAFPID-2965183",
"CSAFPID-2965264"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-49739 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-49739.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-2965185",
"CSAFPID-2965180",
"CSAFPID-2965181",
"CSAFPID-2965184",
"CSAFPID-2965182",
"CSAFPID-2965186",
"CSAFPID-2965183",
"CSAFPID-2965264"
]
}
],
"title": "CVE-2025-49739"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.
Loading…
Loading…