{"id":"USN-7626-1","summary":"git vulnerabilities","details":"Avi Halachmi discovered that Git incorrectly managed file modification\nconstraints with Gitk. An attacker could possibly use this issue to create\nor write to arbitrary files on the system. (CVE-2025-27613)\n\nAvi Halachmi discovered that Git incorrectly handled arguments when\ninvoking the Gitk utility. If a user were tricked into cloning a malicious\nGit repository, an attacker could possibly use this issue to run arbitrary\ncommands. This issue only affected Ubuntu 24.04 LTS, Ubuntu 24.10, and\nUbuntu 25.04. (CVE-2025-27614)\n\nJohannes Sixt discovered that Git incorrectly managed file modification\nconstraints with Git GUI. If a user were tricked into editing a file in a\nmalicious Git repository, an attacker could possibly use this issue to\ncreate or write to arbitrary files on the system. (CVE-2025-46835)\n\nDavid Leadbeater discovered that Git incorrectly stripped CRLF characters\nwhen editing configuration files. An attacker could possibly use this issue\nto execute arbitrary code. (CVE-2025-48384)\n\nDavid Leadbeater discovered that Git incorrectly handled verification when\nfetching remote Git repositories. An attacker could possibly use this issue\nto perform protocol injection, leading to arbitrary code execution. This\nissue only affected Ubuntu 24.04 LTS, Ubuntu 24.10, and Ubuntu 25.04.\n(CVE-2025-48385)\n\nDavid Leadbeater discovered that Git incorrectly handled memory with the\nwincred credential helper. An attacker could possibly use this issue to\ncause a denial of service. (CVE-2025-48386)","modified":"2026-02-10T04:49:33Z","published":"2025-07-08T17:57:32Z","related":["UBUNTU-CVE-2025-27613","UBUNTU-CVE-2025-27614","UBUNTU-CVE-2025-46835","UBUNTU-CVE-2025-48384","UBUNTU-CVE-2025-48385","UBUNTU-CVE-2025-48386"],"upstream":["CVE-2025-27613","CVE-2025-27614","CVE-2025-46835","CVE-2025-48384","CVE-2025-48385","CVE-2025-48386","UBUNTU-CVE-2025-27613","UBUNTU-CVE-2025-27614","UBUNTU-CVE-2025-46835","UBUNTU-CVE-2025-48384","UBUNTU-CVE-2025-48385","UBUNTU-CVE-2025-48386"],"references":[{"type":"ADVISORY","url":"https://ubuntu.com/security/notices/USN-7626-1"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2025-27613"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2025-27614"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2025-46835"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2025-48384"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2025-48385"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2025-48386"}],"affected":[{"package":{"name":"git","ecosystem":"Ubuntu:Pro:16.04:LTS","purl":"pkg:deb/ubuntu/git@1:2.7.4-0ubuntu1.10+esm9?arch=source&distro=esm-infra/xenial"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1:2.7.4-0ubuntu1.10+esm9"}]}],"versions":["1:2.5.0-1","1:2.6.2-1","1:2.6.3-1","1:2.6.4-1","1:2.7.0~rc3-1","1:2.7.0-1","1:2.7.3-0ubuntu1","1:2.7.4-0ubuntu1","1:2.7.4-0ubuntu1.1","1:2.7.4-0ubuntu1.2","1:2.7.4-0ubuntu1.3","1:2.7.4-0ubuntu1.4","1:2.7.4-0ubuntu1.5","1:2.7.4-0ubuntu1.6","1:2.7.4-0ubuntu1.7","1:2.7.4-0ubuntu1.8","1:2.7.4-0ubuntu1.9","1:2.7.4-0ubuntu1.10","1:2.7.4-0ubuntu1.10+esm1","1:2.7.4-0ubuntu1.10+esm3","1:2.7.4-0ubuntu1.10+esm4","1:2.7.4-0ubuntu1.10+esm5","1:2.7.4-0ubuntu1.10+esm6","1:2.7.4-0ubuntu1.10+esm7","1:2.7.4-0ubuntu1.10+esm8"],"ecosystem_specific":{"availability":"Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro","binaries":[{"binary_version":"1:2.7.4-0ubuntu1.10+esm9","binary_name":"git"},{"binary_version":"1:2.7.4-0ubuntu1.10+esm9","binary_name":"git-all"},{"binary_version":"1:2.7.4-0ubuntu1.10+esm9","binary_name":"git-arch"},{"binary_version":"1:2.7.4-0ubuntu1.10+esm9","binary_name":"git-core"},{"binary_version":"1:2.7.4-0ubuntu1.10+esm9","binary_name":"git-cvs"},{"binary_version":"1:2.7.4-0ubuntu1.10+esm9","binary_name":"git-daemon-run"},{"binary_version":"1:2.7.4-0ubuntu1.10+esm9","binary_name":"git-daemon-sysvinit"},{"binary_version":"1:2.7.4-0ubuntu1.10+esm9","binary_name":"git-el"},{"binary_version":"1:2.7.4-0ubuntu1.10+esm9","binary_name":"git-email"},{"binary_version":"1:2.7.4-0ubuntu1.10+esm9","binary_name":"git-gui"},{"binary_version":"1:2.7.4-0ubuntu1.10+esm9","binary_name":"git-man"},{"binary_version":"1:2.7.4-0ubuntu1.10+esm9","binary_name":"git-mediawiki"},{"binary_version":"1:2.7.4-0ubuntu1.10+esm9","binary_name":"git-svn"},{"binary_version":"1:2.7.4-0ubuntu1.10+esm9","binary_name":"gitk"},{"binary_version":"1:2.7.4-0ubuntu1.10+esm9","binary_name":"gitweb"}]},"database_specific":{"cves_map":{"ecosystem":"Ubuntu:Pro:16.04:LTS","cves":[{"id":"CVE-2025-48384","severity":[{"score":"CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"high","type":"Ubuntu"}]},{"id":"CVE-2025-48386","severity":[{"score":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}]}]},"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-7626-1.json"}},{"package":{"name":"git","ecosystem":"Ubuntu:Pro:18.04:LTS","purl":"pkg:deb/ubuntu/git@1:2.17.1-1ubuntu0.18+esm2?arch=source&distro=esm-infra/bionic"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1:2.17.1-1ubuntu0.18+esm2"}]}],"versions":["1:2.14.1-1ubuntu4","1:2.15.1-1ubuntu2","1:2.17.0-1ubuntu1","1:2.17.1-1ubuntu0.1","1:2.17.1-1ubuntu0.3","1:2.17.1-1ubuntu0.4","1:2.17.1-1ubuntu0.5","1:2.17.1-1ubuntu0.6","1:2.17.1-1ubuntu0.7","1:2.17.1-1ubuntu0.8","1:2.17.1-1ubuntu0.9","1:2.17.1-1ubuntu0.10","1:2.17.1-1ubuntu0.11","1:2.17.1-1ubuntu0.12","1:2.17.1-1ubuntu0.13","1:2.17.1-1ubuntu0.14","1:2.17.1-1ubuntu0.15","1:2.17.1-1ubuntu0.16","1:2.17.1-1ubuntu0.17","1:2.17.1-1ubuntu0.18","1:2.17.1-1ubuntu0.18+esm1"],"ecosystem_specific":{"availability":"Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro","binaries":[{"binary_version":"1:2.17.1-1ubuntu0.18+esm2","binary_name":"git"},{"binary_version":"1:2.17.1-1ubuntu0.18+esm2","binary_name":"git-all"},{"binary_version":"1:2.17.1-1ubuntu0.18+esm2","binary_name":"git-cvs"},{"binary_version":"1:2.17.1-1ubuntu0.18+esm2","binary_name":"git-daemon-run"},{"binary_version":"1:2.17.1-1ubuntu0.18+esm2","binary_name":"git-daemon-sysvinit"},{"binary_version":"1:2.17.1-1ubuntu0.18+esm2","binary_name":"git-el"},{"binary_version":"1:2.17.1-1ubuntu0.18+esm2","binary_name":"git-email"},{"binary_version":"1:2.17.1-1ubuntu0.18+esm2","binary_name":"git-gui"},{"binary_version":"1:2.17.1-1ubuntu0.18+esm2","binary_name":"git-man"},{"binary_version":"1:2.17.1-1ubuntu0.18+esm2","binary_name":"git-mediawiki"},{"binary_version":"1:2.17.1-1ubuntu0.18+esm2","binary_name":"git-svn"},{"binary_version":"1:2.17.1-1ubuntu0.18+esm2","binary_name":"gitk"},{"binary_version":"1:2.17.1-1ubuntu0.18+esm2","binary_name":"gitweb"}]},"database_specific":{"cves_map":{"ecosystem":"Ubuntu:Pro:18.04:LTS","cves":[{"id":"CVE-2025-48384","severity":[{"score":"CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"high","type":"Ubuntu"}]},{"id":"CVE-2025-48386","severity":[{"score":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}]}]},"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-7626-1.json"}},{"package":{"name":"git","ecosystem":"Ubuntu:Pro:20.04:LTS","purl":"pkg:deb/ubuntu/git@1:2.25.1-1ubuntu3.14+esm1?arch=source&distro=esm-infra/focal"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1:2.25.1-1ubuntu3.14+esm1"}]}],"versions":["1:2.20.1-2ubuntu1","1:2.24.0-1ubuntu1","1:2.24.0-1ubuntu2","1:2.25.0-1ubuntu1","1:2.25.1-1ubuntu1","1:2.25.1-1ubuntu2","1:2.25.1-1ubuntu3","1:2.25.1-1ubuntu3.1","1:2.25.1-1ubuntu3.2","1:2.25.1-1ubuntu3.3","1:2.25.1-1ubuntu3.4","1:2.25.1-1ubuntu3.5","1:2.25.1-1ubuntu3.6","1:2.25.1-1ubuntu3.7","1:2.25.1-1ubuntu3.8","1:2.25.1-1ubuntu3.10","1:2.25.1-1ubuntu3.11","1:2.25.1-1ubuntu3.12","1:2.25.1-1ubuntu3.13","1:2.25.1-1ubuntu3.14"],"ecosystem_specific":{"availability":"Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro","binaries":[{"binary_version":"1:2.25.1-1ubuntu3.14+esm1","binary_name":"git"},{"binary_version":"1:2.25.1-1ubuntu3.14+esm1","binary_name":"git-all"},{"binary_version":"1:2.25.1-1ubuntu3.14+esm1","binary_name":"git-cvs"},{"binary_version":"1:2.25.1-1ubuntu3.14+esm1","binary_name":"git-daemon-run"},{"binary_version":"1:2.25.1-1ubuntu3.14+esm1","binary_name":"git-daemon-sysvinit"},{"binary_version":"1:2.25.1-1ubuntu3.14+esm1","binary_name":"git-el"},{"binary_version":"1:2.25.1-1ubuntu3.14+esm1","binary_name":"git-email"},{"binary_version":"1:2.25.1-1ubuntu3.14+esm1","binary_name":"git-gui"},{"binary_version":"1:2.25.1-1ubuntu3.14+esm1","binary_name":"git-man"},{"binary_version":"1:2.25.1-1ubuntu3.14+esm1","binary_name":"git-mediawiki"},{"binary_version":"1:2.25.1-1ubuntu3.14+esm1","binary_name":"git-svn"},{"binary_version":"1:2.25.1-1ubuntu3.14+esm1","binary_name":"gitk"},{"binary_version":"1:2.25.1-1ubuntu3.14+esm1","binary_name":"gitweb"}]},"database_specific":{"cves_map":{"ecosystem":"Ubuntu:Pro:20.04:LTS","cves":[{"id":"CVE-2025-48384","severity":[{"score":"CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"high","type":"Ubuntu"}]},{"id":"CVE-2025-48386","severity":[{"score":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}]}]},"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-7626-1.json"}},{"package":{"name":"git","ecosystem":"Ubuntu:22.04:LTS","purl":"pkg:deb/ubuntu/git@1:2.34.1-1ubuntu1.13?arch=source&distro=jammy"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1:2.34.1-1ubuntu1.13"}]}],"versions":["1:2.32.0-1ubuntu1","1:2.33.1-1ubuntu1","1:2.34.1-1ubuntu1","1:2.34.1-1ubuntu1.1","1:2.34.1-1ubuntu1.2","1:2.34.1-1ubuntu1.4","1:2.34.1-1ubuntu1.5","1:2.34.1-1ubuntu1.6","1:2.34.1-1ubuntu1.8","1:2.34.1-1ubuntu1.9","1:2.34.1-1ubuntu1.10","1:2.34.1-1ubuntu1.11","1:2.34.1-1ubuntu1.12"],"ecosystem_specific":{"availability":"No subscription required","binaries":[{"binary_version":"1:2.34.1-1ubuntu1.13","binary_name":"git"},{"binary_version":"1:2.34.1-1ubuntu1.13","binary_name":"git-all"},{"binary_version":"1:2.34.1-1ubuntu1.13","binary_name":"git-cvs"},{"binary_version":"1:2.34.1-1ubuntu1.13","binary_name":"git-daemon-run"},{"binary_version":"1:2.34.1-1ubuntu1.13","binary_name":"git-daemon-sysvinit"},{"binary_version":"1:2.34.1-1ubuntu1.13","binary_name":"git-email"},{"binary_version":"1:2.34.1-1ubuntu1.13","binary_name":"git-gui"},{"binary_version":"1:2.34.1-1ubuntu1.13","binary_name":"git-man"},{"binary_version":"1:2.34.1-1ubuntu1.13","binary_name":"git-mediawiki"},{"binary_version":"1:2.34.1-1ubuntu1.13","binary_name":"git-svn"},{"binary_version":"1:2.34.1-1ubuntu1.13","binary_name":"gitk"},{"binary_version":"1:2.34.1-1ubuntu1.13","binary_name":"gitweb"}]},"database_specific":{"cves_map":{"ecosystem":"Ubuntu:22.04:LTS","cves":[{"id":"CVE-2025-48384","severity":[{"score":"CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"high","type":"Ubuntu"}]},{"id":"CVE-2025-48386","severity":[{"score":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}]}]},"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-7626-1.json"}},{"package":{"name":"git","ecosystem":"Ubuntu:24.04:LTS","purl":"pkg:deb/ubuntu/git@1:2.43.0-1ubuntu7.3?arch=source&distro=noble"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1:2.43.0-1ubuntu7.3"}]}],"versions":["1:2.40.1-1ubuntu1","1:2.43.0-1ubuntu1","1:2.43.0-1ubuntu5","1:2.43.0-1ubuntu6","1:2.43.0-1ubuntu7","1:2.43.0-1ubuntu7.1","1:2.43.0-1ubuntu7.2"],"ecosystem_specific":{"availability":"No subscription required","binaries":[{"binary_version":"1:2.43.0-1ubuntu7.3","binary_name":"git"},{"binary_version":"1:2.43.0-1ubuntu7.3","binary_name":"git-all"},{"binary_version":"1:2.43.0-1ubuntu7.3","binary_name":"git-cvs"},{"binary_version":"1:2.43.0-1ubuntu7.3","binary_name":"git-daemon-run"},{"binary_version":"1:2.43.0-1ubuntu7.3","binary_name":"git-daemon-sysvinit"},{"binary_version":"1:2.43.0-1ubuntu7.3","binary_name":"git-email"},{"binary_version":"1:2.43.0-1ubuntu7.3","binary_name":"git-gui"},{"binary_version":"1:2.43.0-1ubuntu7.3","binary_name":"git-man"},{"binary_version":"1:2.43.0-1ubuntu7.3","binary_name":"git-mediawiki"},{"binary_version":"1:2.43.0-1ubuntu7.3","binary_name":"git-svn"},{"binary_version":"1:2.43.0-1ubuntu7.3","binary_name":"gitk"},{"binary_version":"1:2.43.0-1ubuntu7.3","binary_name":"gitweb"}]},"database_specific":{"cves_map":{"ecosystem":"Ubuntu:24.04:LTS","cves":[{"id":"CVE-2025-27613","severity":[{"score":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:N/I:L/A:N","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}]},{"id":"CVE-2025-27614","severity":[{"score":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}]},{"id":"CVE-2025-46835","severity":[{"score":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:L","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}]},{"id":"CVE-2025-48384","severity":[{"score":"CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H","type":"CVSS_V3"},{"score":"high","type":"Ubuntu"}]},{"id":"CVE-2025-48385","severity":[{"score":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N","type":"CVSS_V4"},{"score":"medium","type":"Ubuntu"}]},{"id":"CVE-2025-48386","severity":[{"score":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N","type":"CVSS_V3"},{"score":"medium","type":"Ubuntu"}]}]},"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-7626-1.json"}}],"schema_version":"1.7.3"}