git-core vulnerabilities

Direct Vulnerabilities

Known vulnerabilities in the git-core package. This does not include vulnerabilities belonging to this package’s dependencies.

How to fix?

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Fix for free
VulnerabilityVulnerable Version
  • H
Arbitrary Code Injection

<2.26.2-150000.50.1
  • H
Use of Externally-Controlled Format String

<2.26.2-150000.50.1
  • H
Directory Traversal

<2.26.2-150000.50.1
  • M
Directory Traversal

<2.26.2-150000.47.1
  • M
Link Following

<2.26.2-150000.47.1
  • M
Heap-based Buffer Overflow

<2.26.2-150000.47.1
  • M
Link Following

<2.26.2-150000.47.1
  • H
Integer Overflow or Wraparound

<2.26.2-150000.44.1
  • H
Integer Overflow or Wraparound

<2.26.2-150000.44.1
  • H
Improper Ownership Management

<2.26.2-150000.41.1
  • H
Uncontrolled Search Path Element

<2.26.2-150000.36.1
  • C
OS Command Injection

<2.16.4-3.17.2
  • H
CVE-2019-1387

<2.16.4-3.17.2
  • L
Improper Input Validation

<2.16.4-3.17.2
  • C
CVE-2019-1353

<2.16.4-3.17.2
  • C
Improper Input Validation

<2.16.4-3.17.2
  • H
Use of Incorrectly-Resolved Name or Reference

<2.16.4-3.17.2
  • C
Improper Input Validation

<2.16.4-3.17.2
  • C
Improper Input Validation

<2.16.4-3.17.2
  • L
CVE-2019-1348

<2.16.4-3.17.2
  • M
Insufficiently Protected Credentials

<2.26.1-3.25.2
  • C
OS Command Injection

<2.26.1-3.25.2
  • H
Insufficiently Protected Credentials

<2.26.1-3.25.2
  • H
CVE-2019-1387

<2.26.1-3.25.2
  • H
Insufficiently Protected Credentials

<2.16.4-3.20.1
  • L
Improper Input Validation

<2.26.1-3.25.2
  • H
Directory Traversal

<2.26.1-3.25.2
  • C
CVE-2019-1353

<2.26.1-3.25.2
  • C
Improper Input Validation

<2.26.1-3.25.2
  • M
Resource Exhaustion

<2.26.1-3.25.2
  • H
Use of Incorrectly-Resolved Name or Reference

<2.26.1-3.25.2
  • C
Improper Input Validation

<2.26.1-3.25.2
  • C
Improper Input Validation

<2.26.1-3.25.2
  • L
CVE-2019-1348

<2.26.1-3.25.2
  • H
Arbitrary Argument Injection

<2.26.1-3.25.2
  • H
Out-of-bounds Read

<2.26.1-3.25.2
  • H
Link Following

<2.26.2-3.31.1