Карточка уязвимости
Характеристики уязвимости
Уровень опасности
Оценка CVSS
(AV:N/AC:M/Au:N/C:P/I:P/A:P)
Производитель ПО
Наименование ПО
git
(any)
git-arch
(any)
git-core
(any)
git-core-debuginfo
(any)
git-credential-gnome-keyring
(any)
git-credential-gnome-keyring-debuginfo
(any)
git-credential-libsecret
(any)
git-credential-libsecret-debuginfo
(any)
git-cvs
(any)
git-daemon
(any)
git-daemon-debuginfo
(any)
git-debuginfo
(any)
git-debugsource
(any)
git-doc
(any)
git-email
(any)
git-gui
(any)
gitk
(any)
git-p4
(any)
git-svn
(any)
git-svn-debuginfo
(any)
git-web
(any)
Описание
Уведомление безопасности об уязвимостях openSUSE Leap 15.0, openSUSE Leap 42.3
Как исправить
Проблема может быть решена обновлением операционной системы до следующих версий пакетов в зависимости от архитектуры:
openSUSE Leap 15.0:
i586, x86_64:
gitk - 2.16.4-lp150.2.3.1
git-gui - 2.16.4-lp150.2.3.1
git-svn-debuginfo - 2.16.4-lp150.2.3.1
git-p4 - 2.16.4-lp150.2.3.1
git-cvs - 2.16.4-lp150.2.3.1
git-debuginfo - 2.16.4-lp150.2.3.1
git-debugsource - 2.16.4-lp150.2.3.1
git-arch - 2.16.4-lp150.2.3.1
git-credential-libsecret - 2.16.4-lp150.2.3.1
git - 2.16.4-lp150.2.3.1
git-core-debuginfo - 2.16.4-lp150.2.3.1
git-web - 2.16.4-lp150.2.3.1
git-daemon - 2.16.4-lp150.2.3.1
git-email - 2.16.4-lp150.2.3.1
git-svn - 2.16.4-lp150.2.3.1
git-credential-gnome-keyring - 2.16.4-lp150.2.3.1
git-core - 2.16.4-lp150.2.3.1
git-daemon-debuginfo - 2.16.4-lp150.2.3.1
git-credential-gnome-keyring-debuginfo - 2.16.4-lp150.2.3.1
git-credential-libsecret-debuginfo - 2.16.4-lp150.2.3.1
openSUSE Leap 15.0:
noarch:
git-doc - 2.16.4-lp150.2.3.1
openSUSE Leap 42.3:
i586, x86_64:
git-core-debuginfo - 2.13.7-13.1
git-svn-debuginfo - 2.13.7-13.1
git-svn - 2.13.7-13.1
git-arch - 2.13.7-13.1
git-web - 2.13.7-13.1
git-credential-gnome-keyring-debuginfo - 2.13.7-13.1
git-cvs - 2.13.7-13.1
gitk - 2.13.7-13.1
git-debugsource - 2.13.7-13.1
git-daemon-debuginfo - 2.13.7-13.1
git-core - 2.13.7-13.1
git-email - 2.13.7-13.1
git-daemon - 2.13.7-13.1
git-gui - 2.13.7-13.1
git - 2.13.7-13.1
git-credential-gnome-keyring - 2.13.7-13.1
openSUSE Leap 42.3:
noarch:
git-doc - 2.13.7-13.1
openSUSE Leap 15.0:
i586, x86_64:
gitk - 2.16.4-lp150.2.3.1
git-gui - 2.16.4-lp150.2.3.1
git-svn-debuginfo - 2.16.4-lp150.2.3.1
git-p4 - 2.16.4-lp150.2.3.1
git-cvs - 2.16.4-lp150.2.3.1
git-debuginfo - 2.16.4-lp150.2.3.1
git-debugsource - 2.16.4-lp150.2.3.1
git-arch - 2.16.4-lp150.2.3.1
git-credential-libsecret - 2.16.4-lp150.2.3.1
git - 2.16.4-lp150.2.3.1
git-core-debuginfo - 2.16.4-lp150.2.3.1
git-web - 2.16.4-lp150.2.3.1
git-daemon - 2.16.4-lp150.2.3.1
git-email - 2.16.4-lp150.2.3.1
git-svn - 2.16.4-lp150.2.3.1
git-credential-gnome-keyring - 2.16.4-lp150.2.3.1
git-core - 2.16.4-lp150.2.3.1
git-daemon-debuginfo - 2.16.4-lp150.2.3.1
git-credential-gnome-keyring-debuginfo - 2.16.4-lp150.2.3.1
git-credential-libsecret-debuginfo - 2.16.4-lp150.2.3.1
openSUSE Leap 15.0:
noarch:
git-doc - 2.16.4-lp150.2.3.1
openSUSE Leap 42.3:
i586, x86_64:
git-core-debuginfo - 2.13.7-13.1
git-svn-debuginfo - 2.13.7-13.1
git-svn - 2.13.7-13.1
git-arch - 2.13.7-13.1
git-web - 2.13.7-13.1
git-credential-gnome-keyring-debuginfo - 2.13.7-13.1
git-cvs - 2.13.7-13.1
gitk - 2.13.7-13.1
git-debugsource - 2.13.7-13.1
git-daemon-debuginfo - 2.13.7-13.1
git-core - 2.13.7-13.1
git-email - 2.13.7-13.1
git-daemon - 2.13.7-13.1
git-gui - 2.13.7-13.1
git - 2.13.7-13.1
git-credential-gnome-keyring - 2.13.7-13.1
openSUSE Leap 42.3:
noarch:
git-doc - 2.13.7-13.1
Ссылки
http://lists.opensuse.org/opensuse-security-announce/2018-06/msg00004.html
https://bugzilla.suse.com/1095218
https://bugzilla.suse.com/1095219
Источник: CVE
Наименование: CVE-2018-11235
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11235
Источник: CVE
Наименование: CVE-2018-11233
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11233
https://bugzilla.suse.com/1095218
https://bugzilla.suse.com/1095219
Источник: CVE
Наименование: CVE-2018-11235
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11235
Источник: CVE
Наименование: CVE-2018-11233
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11233