Critical RCE vulnerabilities found in git (CVE-2022-41903, CVE-2022-23251)

A source code audit has revealed two critical vulnerabilities affecting git, the popular distributed version control system for collaborative software development. The latest git vulnerabilities CVE-2022-41903 is an out-of-bounds memory write flaw in log formatting and CVE-2022-23251 is a truncated allocation leading to out-of-bounds write via large number of attributes. Both may result in remote code execution. More technical info about each of the flaws can be found in this post by X41 D-Sec researchers … More → The post Critical RCE vulnerabilities found in git (CVE-2022-41903, CVE-2022-23251) appeared first on Help Net Security.
http://news.poseidon-us.com/Sh73fZ

Critical RCE vulnerabilities found in git (CVE-2022-41903, CVE-2022-23251)

Like this:

Related

More Posts

Cisco Warns of Brute Force Attacks Targeting VPNs and Firewalls

Junior developers show early signs of AI dependence: report

LastPass users targeted by vishing attackers

AuditBoard expands executive team to support the next phase of growth

New infosec products of the week: April 19, 2024

Azure high-performance computing leads to developing amazing products at Microsoft Surface

Authorities take down LabHost, phishing-as-a-service platform

Who owns customer identity?

Five Australians arrested in global raid on phishing kit seller LabHost

ISC Stormcast For Thursday, April 18th, 2024 https://isc.sans.edu/podcastdetail/8944, (Thu, Apr 18th)

Share this:

Like this:

Related

More Posts