Ubuntu Security Notice USN-5871-2 ≈ Packet Storm

Home^[1] Files^[2] News^[3] &[SERVICES_TAB] Contact^[4] Add New^[5]

Change Mirror^[15] Download^[16]

        =========================================================================
Ubuntu Security Notice USN-5871-2
March 02, 2023
git regression
=========================================================================
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 18.04 LTS
Summary:
USN-5871-1 caused a regression.
Software Description:
- git: fast, scalable, distributed revision control system
Details:
USN-5871-1 fixed vulnerabilities in Git. A backport fixing
part of the vulnerability in CVE-2023-22490 was required.
This update fix this for Ubuntu 18.04 LTS.
Original advisory details:
It was discovered that Git incorrectly handled certain repositories.
An attacker could use this issue to make Git uses its local
clone optimization even when using a non-local transport.
(CVE-2023-22490)
Update instructions:
The problem can be corrected by updating your system to the following
package versions:
Ubuntu 18.04 LTS:
git                             1:2.17.1-1ubuntu0.17
In general, a standard system update will make all the necessary changes.
References:
https://ubuntu.com/security/notices/USN-5871-2
https://ubuntu.com/security/notices/USN-5871-1
CVE-2023-22490, https://launchpad.net/bugs/2008277
Package Information:
https://launchpad.net/ubuntu/+source/git/1:2.17.1-1ubuntu0.17

• Follow us on Twitter^[19]
• Subscribe to an RSS Feed^[20]

File Tags

• ActiveX^[21] (932)
• Advisory^[22] (80,392)
• Arbitrary^[23] (15,858)
• BBS^[24] (2,859)
• Bypass^[25] (1,647)
• CGI^[26] (1,020)
• Code Execution^[27] (7,017)
• Conference^[28] (675)
• Cracker^[29] (840)
• CSRF^[30] (3,303)
• DoS^[31] (22,850)
• Encryption^[32] (2,357)
• Exploit^[33] (50,604)
• File Inclusion^[34] (4,177)
• File Upload^[35] (950)
• Firewall^[36] (821)
• Info Disclosure^[37] (2,681)
• Intrusion Detection^[38] (875)
• Java^[39] (2,954)
• JavaScript^[40] (829)
• Kernel^[41] (6,402)
• Local^[42] (14,266)
• Magazine^[43] (586)
• Overflow^[44] (12,510)
• Perl^[45] (1,419)
• PHP^[46] (5,107)
• Proof of Concept^[47] (2,295)
• Protocol^[48] (3,465)
• Python^[49] (1,480)
• Remote^[50] (30,222)
• Root^[51] (3,527)
• Rootkit^[52] (502)
• Ruby^[53] (600)
• Scanner^[54] (1,633)
• Security Tool^[55] (7,817)
• Shell^[56] (3,124)
• Shellcode^[57] (1,206)
• Sniffer^[58] (890)
• Spoof^[59] (2,179)
• SQL Injection^[60] (16,156)
• TCP^[61] (2,383)
• Trojan^[62] (687)
• UDP^[63] (879)
• Virus^[64] (663)
• Vulnerability^[65] (31,332)
• Web^[66] (9,445)
• Whitepaper^[67] (3,737)
• x86^[68] (946)
• XSS^[69] (17,553)
• Other^[70]

File Archives

• March 2023^[71]
• February 2023^[72]
• January 2023^[73]
• December 2022^[74]
• November 2022^[75]
• October 2022^[76]
• September 2022^[77]
• August 2022^[78]
• July 2022^[79]
• June 2022^[80]
• May 2022^[81]
• April 2022^[82]
• Older^[83]

Systems

• AIX^[84] (426)
• Apple^[85] (1,950)
• BSD^[86] (370)
• CentOS^[87] (55)
• Cisco^[88] (1,918)
• Debian^[89] (6,701)
• Fedora^[90] (1,690)
• FreeBSD^[91] (1,242)
• Gentoo^[92] (4,288)
• HPUX^[93] (878)
• iOS^[94] (338)
• iPhone^[95] (108)
• IRIX^[96] (220)
• Juniper^[97] (67)
• Linux^[98] (44,931)
• Mac OS X^[99] (684)
• Mandriva^[100] (3,105)
• NetBSD^[101] (256)
• OpenBSD^[102] (480)
• RedHat^[103] (12,814)
• Slackware^[104] (941)
• Solaris^[105] (1,609)
• SUSE^[106] (1,444)
• Ubuntu^[107] (8,375)
• UNIX^[108] (9,201)
• UnixWare^[109] (185)
• Windows^[110] (6,529)
• Other^[111]

© 2022 Packet Storm. All rights reserved.

Read more https://packetstormsecurity.com/files/171224/USN-5871-2.txt