{"id":"SUSE-RU-2025:20362-1","summary":"Recommended update for git","details":"This update for git fixes the following issues:\n\n- CVE-2024-50349: passwords for trusted sites could be sent to untrusted\n  sites (bsc#1235600)\n- CVE-2024-52006: Carriage Returns via the credential protocol to credential\n  helpers (bsc#1235601)\n","modified":"2026-03-23T04:48:24.485539Z","published":"2025-05-28T07:19:22Z","related":["CVE-2024-50349","CVE-2024-52006"],"upstream":["CVE-2024-50349","CVE-2024-52006"],"references":[{"type":"ADVISORY","url":"https://www.suse.com/support/update/announcement//suse-ru-202520362-1/"},{"type":"REPORT","url":"https://bugzilla.suse.com/1235600"},{"type":"REPORT","url":"https://bugzilla.suse.com/1235601"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2024-50349"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2024-52006"}],"affected":[{"package":{"name":"git","ecosystem":"SUSE:Linux Micro 6.1","purl":"pkg:rpm/suse/git&distro=SUSE%20Linux%20Micro%206.1"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2.46.0-slfo.1.1_2.1"}]}],"ecosystem_specific":{"binaries":[{"perl-Git":"2.46.0-slfo.1.1_2.1","git":"2.46.0-slfo.1.1_2.1","git-core":"2.46.0-slfo.1.1_2.1"}]},"database_specific":{"source":"https://ftp.suse.com/pub/projects/security/osv/SUSE-RU-2025:20362-1.json"}}],"schema_version":"1.7.5"}