CVE-2018-11235
Publication date 30 May 2018
Last updated 24 July 2024
Ubuntu priority
In Git before 2.13.7, 2.14.x before 2.14.4, 2.15.x before 2.15.2, 2.16.x before 2.16.4, and 2.17.x before 2.17.1, remote code execution can occur. With a crafted .gitmodules file, a malicious project can execute an arbitrary script on a machine that runs "git clone --recurse-submodules" because submodule "names" are obtained from this file, and then appended to $GIT_DIR/modules, leading to directory traversal with "../" in a name. Finally, post-checkout hooks from a submodule are executed, bypassing the intended design in which hooks are not obtained from a remote server.
Status
| Package | Ubuntu Release | Status |
|---|---|---|
| git | 18.04 LTS bionic |
Fixed 1:2.17.1-1ubuntu0.1
|
| 16.04 LTS xenial |
Fixed 1:2.7.4-0ubuntu1.4
|
|
| 14.04 LTS trusty |
Fixed 1:1.9.1-1ubuntu0.8
|
Severity score breakdown
| Parameter | Value |
|---|---|
| Base score |
7.8 · High
|
| Attack vector | Local |
| Attack complexity | Low |
| Privileges required | None |
| User interaction | Required |
| Scope | Unchanged |
| Confidentiality | High |
| Integrity impact | High |
| Availability impact | High |
| Vector | CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H |
References
Related Ubuntu Security Notices (USN)
- USN-3671-1
- Git vulnerabilities
- 5 June 2018