CVE-2016-2315
CRITICALCVSS 9.8/10EPSS 17.98%
Last modified
CVE-2016-2315 is a critical-severity vulnerability rated 9.8/10 on the CVSS scale. revision.c in git before 2.7.4 uses an incorrect integer data type, which allows remote attackers to execute arbitrary code via a (1) long filename or (2) many nested trees, leading to a heap-based buffer overflow.. EPSS estimates a 17.98% chance of exploitation in the next 30 days.
Description
revision.c in git before 2.7.4 uses an incorrect integer data type, which allows remote attackers to execute arbitrary code via a (1) long filename or (2) many nested trees, leading to a heap-based buffer overflow.
Metrics
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Weakness Enumeration
Affected Software
| Vendor | Product | Versions | Update |
|---|---|---|---|
| Suse | Linux Enterprise Debuginfo | 11 | Sp4 |
| Suse | Openstack Cloud | 5 | — |
| Opensuse | Leap | 42.1 | — |
| Opensuse | Opensuse | 13.2 | — |
| Suse | Linux Enterprise Server | 12 | Sp1 |
| Suse | Linux Enterprise Software Development Kit | 11 | Sp4 |
| Suse | Linux Enterprise Software Development Kit | 12 | — |
| Suse | Suse Linux Enterprise Server | 12 | — |
| Git-Scm | Git | 2.7.3 | — |
References
- http://lists.fedoraproject.org/pipermail/package-announce/2016-April/183147.htmlMailing List, Third Party Advisory
- http://lists.fedoraproject.org/pipermail/package-announce/2016-March/179121.htmlMailing List, Third Party Advisory
- http://lists.fedoraproject.org/pipermail/package-announce/2016-March/180763.htmlMailing List, Third Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00059.htmlMailing List, Vendor Advisory
- http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00061.htmlMailing List, Vendor Advisory
- http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00062.htmlMailing List, Vendor Advisory
- http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00071.htmlMailing List, Vendor Advisory
- http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00074.htmlMailing List, Vendor Advisory
- http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00076.htmlMailing List, Vendor Advisory
- http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00077.htmlMailing List, Vendor Advisory
- http://lists.opensuse.org/opensuse-updates/2016-04/msg00011.htmlMailing List, Vendor Advisory
- http://pastebin.com/UX2P2jjgThird Party Advisory
- http://rhn.redhat.com/errata/RHSA-2016-0496.htmlThird Party Advisory
- http://www.debian.org/security/2016/dsa-3521Third Party Advisory
- http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.htmlThird Party Advisory
- http://www.securityfocus.com/bid/84355Third Party Advisory, VDB Entry
- http://www.securitytracker.com/id/1035290Third Party Advisory, VDB Entry
- http://www.ubuntu.com/usn/USN-2938-1Third Party Advisory
- https://github.com/git/git/commit/34fa79a6cde56d6d428ab0d3160cb094ebad3305Patch, Third Party Advisory
- https://github.com/git/git/commit/de1e67d0703894cb6ea782e36abb63976ab07e60Patch, Third Party Advisory
- https://security.gentoo.org/glsa/201605-01Third Party Advisory
- http://lists.fedoraproject.org/pipermail/package-announce/2016-April/183147.htmlMailing List, Third Party Advisory
- http://lists.fedoraproject.org/pipermail/package-announce/2016-March/179121.htmlMailing List, Third Party Advisory
- http://lists.fedoraproject.org/pipermail/package-announce/2016-March/180763.htmlMailing List, Third Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00059.htmlMailing List, Vendor Advisory
- http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00061.htmlMailing List, Vendor Advisory
- http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00062.htmlMailing List, Vendor Advisory
- http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00071.htmlMailing List, Vendor Advisory
- http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00074.htmlMailing List, Vendor Advisory
- http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00076.htmlMailing List, Vendor Advisory
- http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00077.htmlMailing List, Vendor Advisory
- http://lists.opensuse.org/opensuse-updates/2016-04/msg00011.htmlMailing List, Vendor Advisory
- http://pastebin.com/UX2P2jjgThird Party Advisory
- http://rhn.redhat.com/errata/RHSA-2016-0496.htmlThird Party Advisory
- http://www.debian.org/security/2016/dsa-3521Third Party Advisory
- http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.htmlThird Party Advisory
- http://www.securityfocus.com/bid/84355Third Party Advisory, VDB Entry
- http://www.securitytracker.com/id/1035290Third Party Advisory, VDB Entry
- http://www.ubuntu.com/usn/USN-2938-1Third Party Advisory
- https://github.com/git/git/commit/34fa79a6cde56d6d428ab0d3160cb094ebad3305Patch, Third Party Advisory
- https://github.com/git/git/commit/de1e67d0703894cb6ea782e36abb63976ab07e60Patch, Third Party Advisory
- https://security.gentoo.org/glsa/201605-01Third Party Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2016-2315?
revision.c in git before 2.7.4 uses an incorrect integer data type, which allows remote attackers to execute arbitrary code via a (1) long filename or (2) many nested trees, leading to a heap-based buffer overflow.
How severe is CVE-2016-2315?
CVE-2016-2315 has a CVSS score of 9.8/10 (CRITICAL severity). The EPSS model estimates a 17.98% probability of exploitation in the next 30 days.
How do I fix CVE-2016-2315?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.
Are you affected by CVE-2016-2315?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST