Advisory: CLSA-2025:1754940060
OS: Ubuntu 18.04 ELS
Public date: 2025-08-11 19:21:03.457345
Project: git
Version: 1:2.17.1-1ubuntu0.18+tuxcare.els7
Errata link: https://errata.tuxcare.com/els_os/ubuntu18.04els/CLSA-2025-1754940060.html
* SECURITY UPDATE: multiple vulnerabilities in Gitk and Git GUI - debian/patches/CVE-2025-27614_CVE-2025-27613_CVE-2025-46835.patch: Prevent script execution via specially crafted filenames in Gitk. Sanitize filename handling to avoid unintended file creation/truncation. Validate directory names in Git GUI to prevent unsafe file overwrites when editing files - CVE-2025-27614, CVE-2025-27613, CVE-2025-46835
Update command: apt-get update apt-get --only-upgrade install git*
git_2.17.1-1ubuntu0.18+tuxcare.els7_amd64.deb git-all_2.17.1-1ubuntu0.18+tuxcare.els7_all.deb git-cvs_2.17.1-1ubuntu0.18+tuxcare.els7_all.deb git-daemon-run_2.17.1-1ubuntu0.18+tuxcare.els7_all.deb git-daemon-sysvinit_2.17.1-1ubuntu0.18+tuxcare.els7_all.deb git-doc_2.17.1-1ubuntu0.18+tuxcare.els7_all.deb git-el_2.17.1-1ubuntu0.18+tuxcare.els7_all.deb git-email_2.17.1-1ubuntu0.18+tuxcare.els7_all.deb git-gui_2.17.1-1ubuntu0.18+tuxcare.els7_all.deb git-man_2.17.1-1ubuntu0.18+tuxcare.els7_all.deb git-mediawiki_2.17.1-1ubuntu0.18+tuxcare.els7_all.deb git-svn_2.17.1-1ubuntu0.18+tuxcare.els7_all.deb gitk_2.17.1-1ubuntu0.18+tuxcare.els7_all.deb gitweb_2.17.1-1ubuntu0.18+tuxcare.els7_all.deb