Bug 2188337 (CVE-2023-25815) - CVE-2023-25815 git: malicious placement of crafted messages when git was compiled with runtime prefix
Summary: CVE-2023-25815 git: malicious placement of crafted messages when git was comp...
Keywords:
Status: CLOSED ERRATA
Alias: CVE-2023-25815
Product: Security Response
Classification: Other
Component: vulnerability
Version: unspecified
Hardware: All
OS: Linux
low
low
Target Milestone: ---
Assignee: Red Hat Product Security
QA Contact:
URL:
Whiteboard:
Depends On: 2188347 2188348 2188349 2188358 2188360 2188361 2188363 2188367 2188369 2188370 2188371 2188372 2188373 2188374 2188375 2189770 2189771 2189772
Blocks: 2188310
TreeView+ depends on / blocked
 
Reported: 2023-04-20 13:51 UTC by Sandipan Roy
Modified: 2023-06-26 18:13 UTC (History)
35 users (show)

Fixed In Version:
Doc Type: If docs needed, set a value
Doc Text:
A vulnerability was found in Git. This security flaw occurs when Git compiles with runtime prefix support and runs without translated messages, and it still uses the gettext machinery to display messages, which subsequently looks for translated messages in unexpected places. This flaw allows the malicious placement of crafted messages.
Clone Of:
Environment:
Last Closed: 2023-05-31 18:44:30 UTC
Embargoed:

Attachments (Terms of Use)


Links
System ID Private Priority Status Summary Last Updated
Red Hat Product Errata RHBA-2023:3250 0 None None None 2023-05-22 10:37:55 UTC
Red Hat Product Errata RHBA-2023:3251 0 None None None 2023-05-22 11:26:48 UTC
Red Hat Product Errata RHBA-2023:3252 0 None None None 2023-05-22 11:29:00 UTC
Red Hat Product Errata RHBA-2023:3253 0 None None None 2023-05-22 11:29:04 UTC
Red Hat Product Errata RHBA-2023:3254 0 None None None 2023-05-22 14:34:43 UTC
Red Hat Product Errata RHBA-2023:3255 0 None None None 2023-05-22 16:25:03 UTC
Red Hat Product Errata RHBA-2023:3274 0 None None None 2023-05-23 13:14:05 UTC
Red Hat Product Errata RHBA-2023:3284 0 None None None 2023-05-24 05:17:41 UTC
Red Hat Product Errata RHBA-2023:3285 0 None None None 2023-05-24 05:19:08 UTC
Red Hat Product Errata RHBA-2023:3312 0 None None None 2023-05-25 09:42:12 UTC
Red Hat Product Errata RHBA-2023:3313 0 None None None 2023-05-25 09:18:55 UTC
Red Hat Product Errata RHBA-2023:3314 0 None None None 2023-05-25 09:42:05 UTC
Red Hat Product Errata RHBA-2023:3315 0 None None None 2023-05-25 09:44:01 UTC
Red Hat Product Errata RHBA-2023:3316 0 None None None 2023-05-25 09:42:22 UTC
Red Hat Product Errata RHBA-2023:3317 0 None None None 2023-05-25 09:52:44 UTC
Red Hat Product Errata RHBA-2023:3324 0 None None None 2023-05-25 13:45:37 UTC
Red Hat Product Errata RHBA-2023:3337 0 None None None 2023-05-29 00:39:15 UTC
Red Hat Product Errata RHBA-2023:3405 0 None None None 2023-05-31 17:26:53 UTC
Red Hat Product Errata RHBA-2023:3417 0 None None None 2023-05-31 21:26:05 UTC
Red Hat Product Errata RHBA-2023:3643 0 None None None 2023-06-15 16:29:48 UTC
Red Hat Product Errata RHBA-2023:3659 0 None None None 2023-06-19 06:24:03 UTC
Red Hat Product Errata RHBA-2023:3806 0 None None None 2023-06-26 18:13:52 UTC
Red Hat Product Errata RHSA-2023:3192 0 None None None 2023-05-17 15:20:38 UTC
Red Hat Product Errata RHSA-2023:3243 0 None None None 2023-05-22 06:50:44 UTC
Red Hat Product Errata RHSA-2023:3245 0 None None None 2023-05-22 07:04:05 UTC
Red Hat Product Errata RHSA-2023:3246 0 None None None 2023-05-22 07:04:41 UTC
Red Hat Product Errata RHSA-2023:3247 0 None None None 2023-05-22 07:07:43 UTC
Red Hat Product Errata RHSA-2023:3248 0 None None None 2023-05-22 07:03:56 UTC
Red Hat Product Errata RHSA-2023:3280 0 None None None 2023-05-23 14:44:23 UTC
Red Hat Product Errata RHSA-2023:3382 0 None None None 2023-05-31 14:14:28 UTC

Description Sandipan Roy 2023-04-20 13:51:40 UTC 
CVE-2023-25815:
When Git is compiled with runtime prefix support and runs without translated messages, it still used the gettext machinery to display messages, which subsequently potentially looked for translated messages in unexpected places. This allowed for malicious placement of crafted messages.
Comment 4 Sandipan Roy 2023-04-26 05:59:14 UTC 
Created git tracking bugs for this issue:

Affects: fedora-36 [bug 2189770]
Affects: fedora-37 [bug 2189771]
Affects: fedora-38 [bug 2189772]
Comment 5 Todd Zullinger 2023-04-26 06:09:14 UTC 
Git is not compiled with a runtime prefix in Fedora.  Therefore this issue does not affect the Fedora git packages.  This is true for the RHEL packages as well, though I'm sure someone from Red Hat will want to make that assessment and update the bugs as needed.

I closed all the Fedora bugs.
Comment 10 errata-xmlrpc 2023-05-17 15:20:36 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8.1 Update Services for SAP Solutions

Via RHSA-2023:3192 https://access.redhat.com/errata/RHSA-2023:3192
Comment 11 errata-xmlrpc 2023-05-22 06:50:43 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8.4 Extended Update Support

Via RHSA-2023:3243 https://access.redhat.com/errata/RHSA-2023:3243
Comment 12 errata-xmlrpc 2023-05-22 07:03:54 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 9.0 Extended Update Support

Via RHSA-2023:3248 https://access.redhat.com/errata/RHSA-2023:3248
Comment 13 errata-xmlrpc 2023-05-22 07:04:03 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 9

Via RHSA-2023:3245 https://access.redhat.com/errata/RHSA-2023:3245
Comment 14 errata-xmlrpc 2023-05-22 07:04:39 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8

Via RHSA-2023:3246 https://access.redhat.com/errata/RHSA-2023:3246
Comment 15 errata-xmlrpc 2023-05-22 07:07:40 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8.6 Extended Update Support

Via RHSA-2023:3247 https://access.redhat.com/errata/RHSA-2023:3247
Comment 16 errata-xmlrpc 2023-05-23 14:44:21 UTC 
This issue has been addressed in the following products:

  Red Hat Software Collections for Red Hat Enterprise Linux 7

Via RHSA-2023:3280 https://access.redhat.com/errata/RHSA-2023:3280
Comment 17 errata-xmlrpc 2023-05-31 14:14:26 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8.2 Advanced Update Support

Via RHSA-2023:3382 https://access.redhat.com/errata/RHSA-2023:3382
Comment 18 Product Security DevOps Team 2023-05-31 18:44:26 UTC 
This bug is now closed. Further updates for individual products will be reflected on the CVE page(s):

https://access.redhat.com/security/cve/cve-2023-25815
Note You need to log in before you can comment on or make changes to this bug.