Git Patches Two Security Vulnerabilities
Linus Torvalds’ distributed version control system, ‘Git’ has patched two highly severe vulnerabilities that could permit threat actors to execute arbitrary code once they exploit heap-based buffer overflow weakness.
X41 and GitLab security experts have discovered and fixed the two vulnerabilities.
The two vulnerabilities CVE-2022-41903 and CVE-2022-23521 could allow threat actors to perform RCE attacks by exploiting the vulnerability.
The vulnerabilities exist in all of the version of Git as well as the v2.39.0. However; the updated version of Git i.e: v2.39.1 fixes the security vulnerabilities.
Git has rolled out update for older versions of the distributed version control system down to the v2.30 series.
Meanwhile, Git advises users to apply the update; who have the following versions:
- v2.30.7
- v2.31.6
- v2.32.5
- v2.33.6
- v2.34.6
- v2.35.6
- v2.36.4
- v2.37.5
- v2.37.3
- v2.38.3
- v2.39.1
Are you looking for more security updates? Subscribe to our newsletter for the latest security news.