Advisory: CLSA-2026:1769507907
OS: Ubuntu 18.04 ELS
Public date: 2026-01-27 09:58:29.800876
Project: git
Version: 1:2.17.1-1ubuntu0.18+tuxcare.els10
Errata link: https://errata.tuxcare.com/els_os/ubuntu18.04els/CLSA-2026-1769507907.html
* SECURITY UPDATE: Confusing users into sending their passwords to sites under the attacker’s control using crafted URLs - debian/patches/CVE-2024-50349.patch: also encode <host>[:<port>] in credential_format(), sanitize the user prompt - CVE-2024-50349
Update command: apt-get update apt-get --only-upgrade install git*
git_2.17.1-1ubuntu0.18+tuxcare.els10_amd64.deb git-all_2.17.1-1ubuntu0.18+tuxcare.els10_all.deb git-cvs_2.17.1-1ubuntu0.18+tuxcare.els10_all.deb git-daemon-run_2.17.1-1ubuntu0.18+tuxcare.els10_all.deb git-daemon-sysvinit_2.17.1-1ubuntu0.18+tuxcare.els10_all.deb git-doc_2.17.1-1ubuntu0.18+tuxcare.els10_all.deb git-el_2.17.1-1ubuntu0.18+tuxcare.els10_all.deb git-email_2.17.1-1ubuntu0.18+tuxcare.els10_all.deb git-gui_2.17.1-1ubuntu0.18+tuxcare.els10_all.deb git-man_2.17.1-1ubuntu0.18+tuxcare.els10_all.deb git-mediawiki_2.17.1-1ubuntu0.18+tuxcare.els10_all.deb git-svn_2.17.1-1ubuntu0.18+tuxcare.els10_all.deb gitk_2.17.1-1ubuntu0.18+tuxcare.els10_all.deb gitweb_2.17.1-1ubuntu0.18+tuxcare.els10_all.deb