CVE-2015-7545

CRITICAL

Git <2.3.10-2.6.1 - RCE

Title source: llm

Description

The (1) git-remote-ext and (2) unspecified other remote helper programs in Git before 2.3.10, 2.4.x before 2.4.10, 2.5.x before 2.5.4, and 2.6.x before 2.6.1 do not properly restrict the allowed protocols, which might allow remote attackers to execute arbitrary code via a URL in a (a) .gitmodules file or (b) unknown other sources in a submodule.

Exploits (1)

nomisec STUB 2 stars

by avuserow · poc

https://github.com/avuserow/bug-free-chainsaw

View Code ZIP pw:eip

References (21)

[Mailing List] http://lists.opensuse.org/opensuse-updates/2015-11/msg00066.html

[Vendor Advisory] http://rhn.redhat.com/errata/RHSA-2015-2515.html

[Vendor Advisory] http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html

[Vendor Advisory] http://www.oracle.com/technetwork/topics/security/linuxbulletinjan2016-2867209.html

[Vendor Advisory] http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/78711

[Third Party Advisory, VDB Entry] http://www.securitytracker.com/id/1034501

[Vendor Advisory] http://www.slackware.com/security/viewer.php?l=slackware-security&y=2016&m=slackware-security.533255

[Vendor Advisory] http://www.ubuntu.com/usn/USN-2835-1

[Issue Tracking] https://bugzilla.redhat.com/show_bug.cgi?id=1269794

[Patch, Vendor Advisory] https://github.com/git/git/blob/master/Documentation/RelNotes/2.3.10.txt

[Patch, Vendor Advisory] https://github.com/git/git/blob/master/Documentation/RelNotes/2.4.10.txt

[Patch, Vendor Advisory] https://github.com/git/git/blob/master/Documentation/RelNotes/2.5.4.txt

[Various Sources] https://github.com/git/git/blob/master/Documentation/RelNotes/2.6.1.txt

[Various Sources] https://kernel.googlesource.com/pub/scm/git/git/+/33cfccbbf35a56e190b79bdec5c85457c952a021

[Various Sources] https://lkml.org/lkml/2015/10/5/683

[Third Party Advisory] http://www.debian.org/security/2016/dsa-3435

[Third Party Advisory] https://security.gentoo.org/glsa/201605-01

[Mailing List] http://www.openwall.com/lists/oss-security/2015/12/08/5

[Mailing List] http://www.openwall.com/lists/oss-security/2015/12/09/8

... and 1 more

Scores

CVSS v3 9.8

EPSS 0.3473

EPSS Percentile 97.0%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-284 CWE-20

Status published

Products (23)

canonical/ubuntu_linux 12.04

canonical/ubuntu_linux 14.04

canonical/ubuntu_linux 15.04

canonical/ubuntu_linux 15.10

git_project/git 2.4.0

git_project/git 2.4.1

git_project/git 2.4.2

git_project/git 2.4.3

git_project/git 2.4.4

git_project/git 2.4.5

... and 13 more

Published Apr 13, 2016

Tracked Since Feb 18, 2026