Advisory: CLSA-2025:1754413156
OS: CentOS Stream 8 ELS
Public date: 2025-08-05 16:59:18.398937
Project: git
Version: 2.43.0-1.el8.tuxcare.els6
Errata link: https://errata.tuxcare.com/els_os/centos-stream8els/CLSA-2025-1754413156.html
- CVE-2025-27614: fix a vulnerability in Gitk that allowed arbitrary script execution via specially crafted filenames in a repository - CVE-2025-27614: fix a vulnerability in Gitk that allowed arbitrary file creation/truncation - CVE-2025-46835: fix a vulnerability in Git GUI where editing files in maliciously named directories could lead to arbitrary file overwrite
Update command: dnf update git*
git-2.43.0-1.el8.tuxcare.els6.x86_64.rpm git-all-2.43.0-1.el8.tuxcare.els6.noarch.rpm git-core-2.43.0-1.el8.tuxcare.els6.x86_64.rpm git-core-doc-2.43.0-1.el8.tuxcare.els6.noarch.rpm git-credential-libsecret-2.43.0-1.el8.tuxcare.els6.x86_64.rpm git-daemon-2.43.0-1.el8.tuxcare.els6.x86_64.rpm git-email-2.43.0-1.el8.tuxcare.els6.noarch.rpm git-gui-2.43.0-1.el8.tuxcare.els6.noarch.rpm git-instaweb-2.43.0-1.el8.tuxcare.els6.noarch.rpm git-subtree-2.43.0-1.el8.tuxcare.els6.x86_64.rpm git-svn-2.43.0-1.el8.tuxcare.els6.noarch.rpm gitk-2.43.0-1.el8.tuxcare.els6.noarch.rpm gitweb-2.43.0-1.el8.tuxcare.els6.noarch.rpm perl-Git-2.43.0-1.el8.tuxcare.els6.noarch.rpm perl-Git-SVN-2.43.0-1.el8.tuxcare.els6.noarch.rpm