Debian Gh vulnerabilities

CVE-2025-25204 [MEDIUM] CVE-2025-25204: gh - `gh` is GitHub’s official command line tool. Starting in version 2.49.0 and prio... `gh` is GitHub’s official command line tool. Starting in version 2.49.0 and prior to version 2.67.0, under certain conditions, a bug in GitHub's Artifact Attestation cli tool `gh attestation verify` causes it to return a zero exit status when no attestations are present. This behavior is incorrect: When no attestations are present, `gh attestation verify` should return

CVE-2024-52308 [HIGH] CVE-2024-52308: gh - The GitHub CLI version 2.6.1 and earlier are vulnerable to remote code execution... The GitHub CLI version 2.6.1 and earlier are vulnerable to remote code execution through a malicious codespace SSH server when using `gh codespace ssh` or `gh codespace logs` commands. This has been patched in the cli v2.62.0. Developers connect to remote codespaces through an SSH server running within the devcontainer, which is generally provided through the [default de

CVE-2024-54132 [MEDIUM] CVE-2024-54132: gh - The GitHub CLI is GitHub’s official command line tool. A security vulnerability ... The GitHub CLI is GitHub’s official command line tool. A security vulnerability has been identified in GitHub CLI that could create or overwrite files in unintended directories when users download a malicious GitHub Actions workflow artifact through gh run download. This vulnerability stems from a GitHub Actions workflow artifact named .. when downloaded using gh run d

CVE-2024-53858 [MEDIUM] CVE-2024-53858: gh - The gh cli is GitHub’s official command line tool. A security vulnerability has ... The gh cli is GitHub’s official command line tool. A security vulnerability has been identified in the GitHub CLI that could leak authentication tokens when cloning repositories containing `git` submodules hosted outside of GitHub.com and ghe.com. This vulnerability stems from several `gh` commands used to clone a repository with submodules from a non-GitHub host inclu