CVE

CVE-2016-2315 (git, leap, linux_enterprise_debuginfo, linux_enterprise_server, linux_enterprise_software_development_kit, openstack_cloud, opensuse)

CVE-2016-2315 (git, leap, linux_enterprise_debuginfo, linux_enterprise_server, linux_enterprise_software_development_kit, openstack_cloud, opensuse)

revision.c in git before 2.7.4 uses an incorrect integer data type, which allows remote attackers to execute arbitrary code via a (1) long filename or (2) many nested trees, leading to a heap-based buffer overflow.

Source: CVE-2016-2315 (git, leap, linux_enterprise_debuginfo, linux_enterprise_server, linux_enterprise_software_development_kit, openstack_cloud, opensuse)

Exit mobile version