Vulnerability Manager Plus

SUSE-SU-2017:1357-1(SUSE Linux Enterprise Server 12-SP1 ) git-core-debuginfo-2.12.3-26.1.x86_64.rpm

Risk Information

Base Score

8.8

MODERATE

Vector

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

EPSS Score

Exploitation Probability

72.73%

CVE Information

Source CVE
CVE-2017-8386

Associated CVE
CVE-2017-8386

Patch Details

No records found

References

http://lists.opensuse.org/opensuse-updates/2017-05/msg00090.html
http://public-inbox.org/git/xmqq8tm5ziat.fsf@gitster.mtv.corp.google.com/
http://www.debian.org/security/2017/dsa-3848
http://www.securityfocus.com/bid/98409
http://www.securitytracker.com/id/1038479
http://www.ubuntu.com/usn/USN-3287-1
https://access.redhat.com/errata/RHSA-2017:2004
https://access.redhat.com/errata/RHSA-2017:2491
https://insinuator.net/2017/05/git-shell-bypass-by-abusing-less-cve-2017-8386/
https://kernel.googlesource.com/pub/scm/git/git/+/3ec804490a265f4c418a321428c12f3f18b7eff5
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3ISHYFLM2ACYHHY3JHCLF75X7UF4ZMDM/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/DPYRN7APMHY4ZFDPAKD22J5R4QJFY2JP/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FDS3LSJJ3YGGQYIVPKQDVOCXWDSF6JGF/
https://security.gentoo.org/glsa/201706-04