Remote code execution vulnerability in git - CVE-2018-1000021ID: oval:org.secpod.oval:def:44754 | Date: (C)2018-03-21 (M)2023-12-20 |
Class: VULNERABILITY | Family: unix |
GIT version 2.15.1 and earlier contains a Input Validation Error vulnerability in Client that can result in problems including messing up terminal configuration to RCE. This attack appear to be exploitable via The user must interact with a malicious git server, (or have their traffic modified in a MITM attack).
Platform: |
Debian 7.x |
Debian 8.x |
Debian 9.x |