CVE-2014-9938 — Improper Encoding or Escaping of Output in GIT

CWE-116 — Improper Encoding or Escaping of Output CWE-78 — OS Command Injection10 documents8 sources

Severity

8.8HIGHNVD

EPSS

0.8%

top 26.81%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

GIT Git-scm GIT

Timeline

PublishedMar 20

Latest updateMay 13

Description

contrib/completion/git-prompt.sh in Git before 1.9.3 does not sanitize branch names in the PS1 variable, allowing a malicious repository to cause code execution.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 2.8 | Impact: 5.9

Affected Packages2 packages

▶NVDgit-scm/git< 1.9.3

▶Debiangit/git< 1:2.0.0~rc2-1+3

Patches

Patch: github.com ↗Patch: github.com ↗

🔴Vulnerability Details

GHSA

GHSA-6vhm-rfmv-gf4j: contrib/completion/git-prompt↗2022-05-13

▶

OSV

CVE-2014-9938: contrib/completion/git-prompt↗2017-03-20

▶

CVEList

CVE-2014-9938: contrib/completion/git-prompt↗2017-03-20

▶

📋Vendor Advisories

Ubuntu

Git vulnerability↗2017-03-23

▶

Red Hat

git: git-prompt.sh does not sanitize branch names in $PS1↗2014-04-22

▶

Debian

CVE-2014-9938: git - contrib/completion/git-prompt.sh in Git before 1.9.3 does not sanitize branch na...↗2014

▶

💬Community

Bugzilla

CVE-2014-9938 git: git-prompt.sh does not sanitize branch names in $PS1 [fedora-all]↗2017-03-21

▶

Bugzilla

CVE-2014-9938 git: git-prompt.sh does not sanitize branch names in $PS1 [epel-5]↗2017-03-21

▶

Bugzilla

CVE-2014-9938 git: git-prompt.sh does not sanitize branch names in $PS1↗2017-03-21

▶