Back to bug 2168160
| Who | When | What | Removed | Added |
|---|---|---|---|---|
| TEJ RATHI | 2023-02-08 10:44:14 UTC | CC | security-response-team | |
| TEJ RATHI | 2023-02-08 10:49:48 UTC | CC | acrosby, adudiak, bdettelb, caswilli, chazlett, dffrench, dkuc, drieden, fjansen, gzaronik, hbraun, hkataria, ikanias, jary, jburrell, jkoehler, jmitchel, jtanner, jwong, kaycoth, kshier, micjohns, ngough, opohorel, pjindal, psegedy, rgodfrey, rravi, sthirugn, tkasparek, tmeszaro, tohughes, tsasak | |
| TEJ RATHI | 2023-02-08 10:53:38 UTC | Blocks | 2168115 | |
| Sandipan Roy | 2023-02-08 12:47:30 UTC | Doc Text | A vulnerability was found in Git. Using a specially-crafted repository, Git can be tricked into using its local clone optimization even when using a non-local transport. Though Git will abort local clones whose source $GIT_DIR/objects directory contains symbolic links (c.f., CVE-2022-39253), the objects directory itself may still be a symbolic link. | |
| Sandipan Roy | 2023-02-08 12:48:16 UTC | Depends On | 2168199, 2168198 | |
| RaTasha Tillery-Smith | 2023-02-08 12:58:56 UTC | Doc Text | A vulnerability was found in Git. Using a specially-crafted repository, Git can be tricked into using its local clone optimization even when using a non-local transport. Though Git will abort local clones whose source $GIT_DIR/objects directory contains symbolic links (c.f., CVE-2022-39253), the objects directory itself may still be a symbolic link. | A vulnerability was found in Git. Using a specially-crafted repository, Git can be tricked into using its local clone optimization even when using a non-local transport. Though Git will abort local clones whose source $GIT_DIR/objects directory contains symbolic links (CVE-2022-39253), the objects directory may still be a symbolic link. |
| Sandipan Roy | 2023-02-17 15:46:06 UTC | CC | acrosby, adudiak, jmitchel, jtanner, jwong | |
| CC | tmeszaro | |||
| CC | dkuc, hbraun, micjohns, sthirugn | |||
| CC | dffrench, drieden, gzaronik, ikanias, jary, ngough, psegedy, rgodfrey, rravi, tkasparek, tohughes, tsasak | |||
| Deadline | 2023-02-14 | |||
| Summary | EMBARGOED CVE-2023-22490 git: data exfiltration with maliciously crafted repository | CVE-2023-22490 git: data exfiltration with maliciously crafted repository | ||
| Group | qe_staff, security | |||
| Sandipan Roy | 2023-02-17 15:46:44 UTC | Depends On | 2170907 | |
| Kazu Yoshida | 2023-04-20 06:45:08 UTC | CC | kyoshida | |
| Ondřej Pohořelský | 2023-04-26 09:35:05 UTC | Depends On | 2189872 | |
| RHEL Program Management Team | 2023-04-26 16:10:46 UTC | Depends On | 2189976 | |
| RHEL Program Management Team | 2023-04-27 10:24:08 UTC | Depends On | 2190157 | |
| errata-xmlrpc | 2023-05-22 07:04:00 UTC | Link ID | Red Hat Product Errata RHSA-2023:3245 | |
| errata-xmlrpc | 2023-05-22 07:04:36 UTC | Link ID | Red Hat Product Errata RHSA-2023:3246 | |
| errata-xmlrpc | 2023-05-22 10:37:53 UTC | Link ID | Red Hat Product Errata RHBA-2023:3250 | |
| errata-xmlrpc | 2023-05-22 11:26:46 UTC | Link ID | Red Hat Product Errata RHBA-2023:3251 | |
| errata-xmlrpc | 2023-05-22 11:28:57 UTC | Link ID | Red Hat Product Errata RHBA-2023:3252 | |
| errata-xmlrpc | 2023-05-22 11:29:02 UTC | Link ID | Red Hat Product Errata RHBA-2023:3253 | |
| Product Security DevOps Team | 2023-05-22 12:43:05 UTC | Resolution | --- | ERRATA |
| Status | NEW | CLOSED | ||
| Last Closed | 2023-05-22 12:43:05 UTC | |||
| errata-xmlrpc | 2023-05-22 14:34:41 UTC | Link ID | Red Hat Product Errata RHBA-2023:3254 | |
| errata-xmlrpc | 2023-05-22 16:25:00 UTC | Link ID | Red Hat Product Errata RHBA-2023:3255 | |
| errata-xmlrpc | 2023-05-23 13:14:02 UTC | Link ID | Red Hat Product Errata RHBA-2023:3274 | |
| errata-xmlrpc | 2023-05-24 05:17:39 UTC | Link ID | Red Hat Product Errata RHBA-2023:3284 | |
| errata-xmlrpc | 2023-05-24 05:19:05 UTC | Link ID | Red Hat Product Errata RHBA-2023:3285 | |
| errata-xmlrpc | 2023-05-25 09:42:03 UTC | Link ID | Red Hat Product Errata RHBA-2023:3314 | |
| errata-xmlrpc | 2023-05-25 09:42:09 UTC | Link ID | Red Hat Product Errata RHBA-2023:3312 | |
| errata-xmlrpc | 2023-05-25 09:42:20 UTC | Link ID | Red Hat Product Errata RHBA-2023:3316 | |
| errata-xmlrpc | 2023-05-25 09:43:58 UTC | Link ID | Red Hat Product Errata RHBA-2023:3315 | |
| errata-xmlrpc | 2023-05-25 09:52:41 UTC | Link ID | Red Hat Product Errata RHBA-2023:3317 | |
| errata-xmlrpc | 2023-05-25 13:45:35 UTC | Link ID | Red Hat Product Errata RHBA-2023:3324 | |
| errata-xmlrpc | 2023-05-29 00:39:14 UTC | Link ID | Red Hat Product Errata RHBA-2023:3337 | |
| errata-xmlrpc | 2023-05-31 21:26:02 UTC | Link ID | Red Hat Product Errata RHBA-2023:3417 | |
| errata-xmlrpc | 2023-06-15 16:29:45 UTC | Link ID | Red Hat Product Errata RHBA-2023:3643 | |
| errata-xmlrpc | 2023-06-19 06:24:02 UTC | Link ID | Red Hat Product Errata RHBA-2023:3659 | |
| errata-xmlrpc | 2023-06-26 18:13:52 UTC | Link ID | Red Hat Product Errata RHBA-2023:3806 |
Back to bug 2168160