Advisory: CLSA-2025:1754413251
OS: CentOS 8.4 ELS
Public date: 2025-08-05 17:00:53.357501
Project: git
Version: 2.27.0-1.el8.tuxcare.els8
Errata link: https://errata.tuxcare.com/els_os/centos8.4els/CLSA-2025-1754413251.html
- CVE-2025-27614: fix a vulnerability in Gitk that allowed arbitrary script execution via specially crafted filenames in a repository - CVE-2025-27614: fix a vulnerability in Gitk that allowed arbitrary file creation/truncation - CVE-2025-46835: fix a vulnerability in Git GUI where editing files in maliciously named directories could lead to arbitrary file overwrite
Update command: dnf update git*
git-2.27.0-1.el8.tuxcare.els8.x86_64.rpm git-all-2.27.0-1.el8.tuxcare.els8.noarch.rpm git-core-2.27.0-1.el8.tuxcare.els8.x86_64.rpm git-core-doc-2.27.0-1.el8.tuxcare.els8.noarch.rpm git-credential-libsecret-2.27.0-1.el8.tuxcare.els8.x86_64.rpm git-daemon-2.27.0-1.el8.tuxcare.els8.x86_64.rpm git-email-2.27.0-1.el8.tuxcare.els8.noarch.rpm git-gui-2.27.0-1.el8.tuxcare.els8.noarch.rpm git-instaweb-2.27.0-1.el8.tuxcare.els8.noarch.rpm git-subtree-2.27.0-1.el8.tuxcare.els8.x86_64.rpm git-svn-2.27.0-1.el8.tuxcare.els8.noarch.rpm gitk-2.27.0-1.el8.tuxcare.els8.noarch.rpm gitweb-2.27.0-1.el8.tuxcare.els8.noarch.rpm perl-Git-2.27.0-1.el8.tuxcare.els8.noarch.rpm perl-Git-SVN-2.27.0-1.el8.tuxcare.els8.noarch.rpm