CVE-2023-25652 By feeding specially crafted input to `git apply --reject`, a path outside the working tree can be overwritten with partially controlled contents corresponding to the rejected hunk(s) from the given patch).
Created git tracking bugs for this issue: Affects: fedora-36 [bug 2189765] Affects: fedora-37 [bug 2189766] Affects: fedora-38 [bug 2189767]
This issue has been addressed in the following products: Red Hat Enterprise Linux 8.1 Update Services for SAP Solutions Via RHSA-2023:3192 https://access.redhat.com/errata/RHSA-2023:3192
This issue has been addressed in the following products: Red Hat Enterprise Linux 8.4 Extended Update Support Via RHSA-2023:3243 https://access.redhat.com/errata/RHSA-2023:3243
This issue has been addressed in the following products: Red Hat Enterprise Linux 9.0 Extended Update Support Via RHSA-2023:3248 https://access.redhat.com/errata/RHSA-2023:3248
This issue has been addressed in the following products: Red Hat Enterprise Linux 9 Via RHSA-2023:3245 https://access.redhat.com/errata/RHSA-2023:3245
This issue has been addressed in the following products: Red Hat Enterprise Linux 8 Via RHSA-2023:3246 https://access.redhat.com/errata/RHSA-2023:3246
This issue has been addressed in the following products: Red Hat Enterprise Linux 8.6 Extended Update Support Via RHSA-2023:3247 https://access.redhat.com/errata/RHSA-2023:3247
This issue has been addressed in the following products: Red Hat Enterprise Linux 7 Via RHSA-2023:3263 https://access.redhat.com/errata/RHSA-2023:3263
This issue has been addressed in the following products: Red Hat Software Collections for Red Hat Enterprise Linux 7 Via RHSA-2023:3280 https://access.redhat.com/errata/RHSA-2023:3280
This issue has been addressed in the following products: Red Hat Enterprise Linux 8.2 Advanced Update Support Via RHSA-2023:3382 https://access.redhat.com/errata/RHSA-2023:3382
This bug is now closed. Further updates for individual products will be reflected on the CVE page(s): https://access.redhat.com/security/cve/cve-2023-25652