Advisories » MGASA-2022-0248

Updated ruby-git packages fix security vulnerability

Publication date: 05 Jul 2022
Modification date: 05 Jul 2022
Type: security
Affected Mageia releases : 8
CVE: CVE-2022-25648

Description

Command Injection via git argument injection (CVE-2022-25648)
                

References

• https://bugs.mageia.org/show_bug.cgi?id=30497
• https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/thread/Q2V3HOFU4ZVTQZHAVAVL3EX2KU53SP7R/
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-25648

SRPMS

8/core

• ruby-git-1.6.0-1.1.mga8