FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

git -- privilege escalation

Affected packages
git < 2.37.1

Details

VuXML ID b99f99f6-021e-11ed-8c6f-000c29ffbb6c
Discovery 2022-07-12
Entry 2022-07-12

The git project reports:

Git is vulnerable to privilege escalation in all platforms. An unsuspecting user could still be affected by the issue reported in CVE-2022-24765, for example when navigating as root into a shared tmp directory that is owned by them, but where an attacker could create a git repository.

References

CVE Name CVE-2022-29187
URL https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-29187