ALSA-2025:11534

[ALSA-2025:11534] Important: git security update

Type:

security

Severity:

important

Release date:

2025-07-23

Description:

Git is a distributed revision control system with a decentralized architecture. As opposed to centralized version control systems with a client-server model, Git ensures that each working copy of a Git repository is an exact copy with complete revision history. This not only allows the user to work on and contribute to projects without the need to have permission to push the changes to their official repositories, but also makes it possible for the user to work with no network connection.  

Security Fix(es):  

  * git: Git does not sanitize URLs when asking for credentials interactively (CVE-2024-50349)
  * git: Newline confusion in credential helpers can lead to credential exfiltration in git (CVE-2024-52006)
  * git: Git arbitrary code execution (CVE-2025-48384)
  * git: Git arbitrary file writes (CVE-2025-48385)
  * gitk: Git file creation flaw (CVE-2025-27613)
  * gitk: git script execution flaw (CVE-2025-27614)
  * git: Git GUI can create and overwrite files for which the user has write permission (CVE-2025-46835)


For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References:

Updated packages listed below:

Architecture	Package	Checksum
aarch64	git-2.43.7-1.el8_10.aarch64.rpm	1e586900a207e32b0eac20e91df6181701dfd0e023d75c0389d9ef272be64a9f
aarch64	git-subtree-2.43.7-1.el8_10.aarch64.rpm	36a49a8fb579a4c32c6291fc3e4e7a20d770acae2757459b539ca0e3ead08b6f
aarch64	git-daemon-2.43.7-1.el8_10.aarch64.rpm	424f3453bae8d8498bc5f0ac64f06e5d7b7a2c46809bc663d4201a898e52d1d3
aarch64	git-core-2.43.7-1.el8_10.aarch64.rpm	6ae3537821481e80ac37d8d826714c1ce90334e5aba80e8239915da83236db19
aarch64	git-credential-libsecret-2.43.7-1.el8_10.aarch64.rpm	e2012b1fffdda8dd8cb886eaea0dd1627e986a6f3afc2bcedf2b82e0014b930d
noarch	git-all-2.43.7-1.el8_10.noarch.rpm	3678d5abf5c8e0d8f1eba109dd36c26db2729e91574d3dd2b643382abe3d60fd
noarch	gitweb-2.43.7-1.el8_10.noarch.rpm	388934413486f13f838e37cf2d7be610b3edd0dcc904a90c82360e97587ea231
noarch	git-email-2.43.7-1.el8_10.noarch.rpm	449910bb35edd777707b96006d07e71e742222f41dbef9d892b1952c9bd96fee
noarch	git-svn-2.43.7-1.el8_10.noarch.rpm	4e323a417e7250302de8a93bdbca392f0386027df716a456d192944bfd40688d
noarch	git-instaweb-2.43.7-1.el8_10.noarch.rpm	539f090e76095933eb5f40616cc2ef61da1dcaf0bdc704070e276090a481c45b
noarch	perl-Git-SVN-2.43.7-1.el8_10.noarch.rpm	56486c8633ebc390f617a15f2fdf6661566cc2b4d53101bcf4ff545fd8777852
noarch	git-gui-2.43.7-1.el8_10.noarch.rpm	621b3cf9923cc3c2e825b3d1b1bd46422dbe72ae19c358bc7930e3a7dda600ba
noarch	gitk-2.43.7-1.el8_10.noarch.rpm	6bce245b0ebc7ed18744cdaaabb73fdddb37912828593476e1b7ecc528bcaf93
noarch	perl-Git-2.43.7-1.el8_10.noarch.rpm	f1da4bcc112d826cb799a0883984282fb0ffe353b00e666888a33575ec28e96b
noarch	git-core-doc-2.43.7-1.el8_10.noarch.rpm	f1e8739ca8b5c89b00150268df6589219b370b7e36cd1fe4be9114f9fc209218
ppc64le	git-credential-libsecret-2.43.7-1.el8_10.ppc64le.rpm	271bec68cf93842646534070dd35a94db652ae78227a390582c373edf97035c8
ppc64le	git-daemon-2.43.7-1.el8_10.ppc64le.rpm	447c8ade51e59e08fefb39322eb49e25773ea3fc384f5c1ac6d7de38e70714db
ppc64le	git-core-2.43.7-1.el8_10.ppc64le.rpm	67f28feb790758e524029a2170ca870588bf4e92d9f15347857067491b13b454
ppc64le	git-2.43.7-1.el8_10.ppc64le.rpm	a2d968326c7dda78ca71352df667f1c821e8a81284cdf53ae39661e36b44ee35
ppc64le	git-subtree-2.43.7-1.el8_10.ppc64le.rpm	d5d422d4f0b47c67aee35d235b1a6958f439af696d8f82f048611f957729faab
s390x	git-credential-libsecret-2.43.7-1.el8_10.s390x.rpm	0f05a1d19d158a5a64e76fe9752123fe08bbe14caebb868cefc84c7da881d931
s390x	git-core-2.43.7-1.el8_10.s390x.rpm	2bc1ea0f38a362b124a670702f68863e860d436df8ca5c932c2b664aeb4fcc12
s390x	git-daemon-2.43.7-1.el8_10.s390x.rpm	8738fc35bd20f499926e42abd4b914fb56294793e0c934a2f8a6fcd0342ff64f
s390x	git-2.43.7-1.el8_10.s390x.rpm	87e4f5d6141bcf7d7a896191dbfddc83a7194433a36f6ad3f11de1402acd6b8a
s390x	git-subtree-2.43.7-1.el8_10.s390x.rpm	9ad374cfa70563abb99ec580d01cb72ce593eb219337ba81176cacd15b276e6e
x86_64	git-daemon-2.43.7-1.el8_10.x86_64.rpm	05e3e88fd896ea8671c4b8ccee0341a0da82e3addd63a399f85a7b371ea1ab33
x86_64	git-core-2.43.7-1.el8_10.x86_64.rpm	76ca34adac0d770335b686b7ad9a3dfc387f826236b2548ddd23046d688c1ff1
x86_64	git-credential-libsecret-2.43.7-1.el8_10.x86_64.rpm	782ca90dde42863fe4cbf819799dbf8dc778b9ad73bf0d3a7848fb9c5a0acdf8
x86_64	git-2.43.7-1.el8_10.x86_64.rpm	7f6e7ddb3fcc06a75a033e18f6a9da6e7077204eea479d11e6abae7bc2b926b5
x86_64	git-subtree-2.43.7-1.el8_10.x86_64.rpm	b4caa4bd67c9605159d6c05ee1c1730e635f3b9defbf131c05b84fec66256eb3

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.