CVE-2024-50349

EUVD-2024-44589

14.01.2025, 19:15

Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full access to internals. When Git asks for credentials via a terminal prompt (i.e. without using any credential helper), it prints out the host name for which the user is expected to provide a username and/or a password. At this stage, any URL-encoded parts have been decoded already, and are printed verbatim. This allows attackers to craft URLs that contain ANSI escape sequences that the terminal interpret to confuse users e.g. into providing passwords for trusted Git hosting sites when in fact they are then sent to untrusted sites that are under the attacker's control. This issue has been patch via commits `7725b81` and `c903985` which are included in release versions v2.48.1, v2.47.2, v2.46.3, v2.45.3, v2.44.3, v2.43.6, v2.42.4, v2.41.3, and v2.40.4. Users are advised to upgrade. Users unable to upgrade should avoid cloning from untrusted URLs, especially recursive clones.

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	Primary	4.7 MEDIUM	NETWORK	LOW	NONE	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:L/A:N

Base Score

CVSS 3.x

EPSS Score

Percentile: 78%

Affected Products (NVD)

Vendor	Product	Version
git	git	𝑥 < 2.40.4
git	git	2.41.0 ≤ 𝑥 < 2.41.3
git	git	2.42.0 ≤ 𝑥 < 2.42.4
git	git	2.43.0 ≤ 𝑥 < 2.43.6
git	git	2.44.3 ≤ 𝑥 < 2.44.3
git	git	2.45.3 ≤ 𝑥 < 2.45.3
git	git	2.46.3 ≤ 𝑥 < 2.46.3
git	git	2.47.0 ≤ 𝑥 < 2.47.2
git	git	2.48.0
debian	debian_linux	11.0

𝑥

= Vulnerable software versions

Debian Releases

Debian Product

Codename

git

bookworm	1:2.39.5-0+deb12u2 fixed
bookworm (security)	1:2.39.5-0+deb12u2 fixed
bullseye	vulnerable
bullseye (security)	1:2.30.2-1+deb11u5 fixed
forky	1:2.51.0-1 fixed
sid	1:2.51.0-1 fixed
trixie	1:2.47.3-0+deb13u1 fixed

Ubuntu Releases

Ubuntu Product

Codename

git

bionic	needs-triage
focal	Fixed 1:2.25.1-1ubuntu3.14 released
jammy	Fixed 1:2.34.1-1ubuntu1.12 released
noble	Fixed 1:2.43.0-1ubuntu7.2 released
oracular	Fixed 1:2.45.2-1ubuntu1.1 released
plucky	Fixed 1:2.47.1-1ubuntu1 released
questing	Fixed 1:2.47.1-1ubuntu1 released
xenial	needs-triage

openSUSE / SLES Releases

openSUSE Product

Release

git

suse enterprise desktop 15 SP6	2.43.0-150600.3.9.1 fixed
suse enterprise desktop 15 SP7	2.43.0-150600.3.9.1 fixed
suse enterprise sap 15 SP4	2.35.3-150300.10.48.1 fixed
suse enterprise sap 15 SP5	2.35.3-150300.10.48.1 fixed
suse enterprise sap 15 SP6	2.43.0-150600.3.9.1 fixed
suse enterprise sap 15 SP7	2.43.0-150600.3.9.1 fixed
suse enterprise server 12 SP3	2.26.2-27.78.1 fixed
suse enterprise server 12 SP5	2.26.2-27.78.1 fixed
suse enterprise server 15 SP2	2.26.2-150000.64.1 fixed
suse enterprise server 15 SP3	2.35.3-150300.10.48.1 fixed
suse enterprise server 15 SP4	2.35.3-150300.10.48.1 fixed
suse enterprise server 15 SP5	2.35.3-150300.10.48.1 fixed
suse enterprise server 15 SP6	2.43.0-150600.3.9.1 fixed
suse enterprise server 15 SP7	2.43.0-150600.3.9.1 fixed

git-arch

suse enterprise desktop 15 SP6	2.43.0-150600.3.9.1 fixed
suse enterprise desktop 15 SP7	2.43.0-150600.3.9.1 fixed
suse enterprise sap 15 SP4	2.35.3-150300.10.48.1 fixed
suse enterprise sap 15 SP5	2.35.3-150300.10.48.1 fixed
suse enterprise sap 15 SP6	2.43.0-150600.3.9.1 fixed
suse enterprise sap 15 SP7	2.43.0-150600.3.9.1 fixed
suse enterprise server 15 SP2	2.26.2-150000.64.1 fixed
suse enterprise server 15 SP3	2.35.3-150300.10.48.1 fixed
suse enterprise server 15 SP4	2.35.3-150300.10.48.1 fixed
suse enterprise server 15 SP5	2.35.3-150300.10.48.1 fixed
suse enterprise server 15 SP6	2.43.0-150600.3.9.1 fixed
suse enterprise server 15 SP7	2.43.0-150600.3.9.1 fixed

git-core

suse enterprise sap 15 SP4	2.35.3-150300.10.48.1 fixed
suse enterprise sap 15 SP5	2.35.3-150300.10.48.1 fixed
suse enterprise server 12 SP3	2.26.2-27.78.1 fixed
suse enterprise server 12 SP5	2.26.2-27.78.1 fixed
suse enterprise server 15 SP2	2.26.2-150000.64.1 fixed
suse enterprise server 15 SP3	2.35.3-150300.10.48.1 fixed
suse enterprise server 15 SP4	2.35.3-150300.10.48.1 fixed
suse enterprise server 15 SP5	2.35.3-150300.10.48.1 fixed

git-cvs

suse enterprise desktop 15 SP6	2.43.0-150600.3.9.1 fixed
suse enterprise desktop 15 SP7	2.43.0-150600.3.9.1 fixed
suse enterprise sap 15 SP4	2.35.3-150300.10.48.1 fixed
suse enterprise sap 15 SP5	2.35.3-150300.10.48.1 fixed
suse enterprise sap 15 SP6	2.43.0-150600.3.9.1 fixed
suse enterprise sap 15 SP7	2.43.0-150600.3.9.1 fixed
suse enterprise server 12 SP3	2.26.2-27.78.1 fixed
suse enterprise server 12 SP5	2.26.2-27.78.1 fixed
suse enterprise server 15 SP2	2.26.2-150000.64.1 fixed
suse enterprise server 15 SP3	2.35.3-150300.10.48.1 fixed
suse enterprise server 15 SP4	2.35.3-150300.10.48.1 fixed
suse enterprise server 15 SP5	2.35.3-150300.10.48.1 fixed
suse enterprise server 15 SP6	2.43.0-150600.3.9.1 fixed
suse enterprise server 15 SP7	2.43.0-150600.3.9.1 fixed

git-daemon

suse enterprise desktop 15 SP6	2.43.0-150600.3.9.1 fixed
suse enterprise desktop 15 SP7	2.43.0-150600.3.9.1 fixed
suse enterprise sap 15 SP4	2.35.3-150300.10.48.1 fixed
suse enterprise sap 15 SP5	2.35.3-150300.10.48.1 fixed
suse enterprise sap 15 SP6	2.43.0-150600.3.9.1 fixed
suse enterprise sap 15 SP7	2.43.0-150600.3.9.1 fixed
suse enterprise server 12 SP3	2.26.2-27.78.1 fixed
suse enterprise server 12 SP5	2.26.2-27.78.1 fixed
suse enterprise server 15 SP2	2.26.2-150000.64.1 fixed
suse enterprise server 15 SP3	2.35.3-150300.10.48.1 fixed
suse enterprise server 15 SP4	2.35.3-150300.10.48.1 fixed
suse enterprise server 15 SP5	2.35.3-150300.10.48.1 fixed
suse enterprise server 15 SP6	2.43.0-150600.3.9.1 fixed
suse enterprise server 15 SP7	2.43.0-150600.3.9.1 fixed

git-doc

suse enterprise desktop 15 SP6	2.43.0-150600.3.9.1 fixed
suse enterprise desktop 15 SP7	2.43.0-150600.3.9.1 fixed
suse enterprise sap 15 SP4	2.35.3-150300.10.48.1 fixed
suse enterprise sap 15 SP5	2.35.3-150300.10.48.1 fixed
suse enterprise sap 15 SP6	2.43.0-150600.3.9.1 fixed
suse enterprise sap 15 SP7	2.43.0-150600.3.9.1 fixed
suse enterprise server 15 SP2	2.26.2-150000.64.1 fixed
suse enterprise server 15 SP3	2.35.3-150300.10.48.1 fixed
suse enterprise server 15 SP4	2.35.3-150300.10.48.1 fixed
suse enterprise server 15 SP5	2.35.3-150300.10.48.1 fixed
suse enterprise server 15 SP6	2.43.0-150600.3.9.1 fixed
suse enterprise server 15 SP7	2.43.0-150600.3.9.1 fixed

git-email

suse enterprise desktop 15 SP6	2.43.0-150600.3.9.1 fixed
suse enterprise desktop 15 SP7	2.43.0-150600.3.9.1 fixed
suse enterprise sap 15 SP4	2.35.3-150300.10.48.1 fixed
suse enterprise sap 15 SP5	2.35.3-150300.10.48.1 fixed
suse enterprise sap 15 SP6	2.43.0-150600.3.9.1 fixed
suse enterprise sap 15 SP7	2.43.0-150600.3.9.1 fixed
suse enterprise server 12 SP3	2.26.2-27.78.1 fixed
suse enterprise server 12 SP5	2.26.2-27.78.1 fixed
suse enterprise server 15 SP2	2.26.2-150000.64.1 fixed
suse enterprise server 15 SP3	2.35.3-150300.10.48.1 fixed
suse enterprise server 15 SP4	2.35.3-150300.10.48.1 fixed
suse enterprise server 15 SP5	2.35.3-150300.10.48.1 fixed
suse enterprise server 15 SP6	2.43.0-150600.3.9.1 fixed
suse enterprise server 15 SP7	2.43.0-150600.3.9.1 fixed

git-gui

suse enterprise desktop 15 SP6	2.43.0-150600.3.9.1 fixed
suse enterprise desktop 15 SP7	2.43.0-150600.3.9.1 fixed
suse enterprise sap 15 SP4	2.35.3-150300.10.48.1 fixed
suse enterprise sap 15 SP5	2.35.3-150300.10.48.1 fixed
suse enterprise sap 15 SP6	2.43.0-150600.3.9.1 fixed
suse enterprise sap 15 SP7	2.43.0-150600.3.9.1 fixed
suse enterprise server 12 SP3	2.26.2-27.78.1 fixed
suse enterprise server 12 SP5	2.26.2-27.78.1 fixed
suse enterprise server 15 SP2	2.26.2-150000.64.1 fixed
suse enterprise server 15 SP3	2.35.3-150300.10.48.1 fixed
suse enterprise server 15 SP4	2.35.3-150300.10.48.1 fixed
suse enterprise server 15 SP5	2.35.3-150300.10.48.1 fixed
suse enterprise server 15 SP6	2.43.0-150600.3.9.1 fixed
suse enterprise server 15 SP7	2.43.0-150600.3.9.1 fixed

git-svn

suse enterprise desktop 15 SP6	2.43.0-150600.3.9.1 fixed
suse enterprise desktop 15 SP7	2.43.0-150600.3.9.1 fixed
suse enterprise sap 15 SP4	2.35.3-150300.10.48.1 fixed
suse enterprise sap 15 SP5	2.35.3-150300.10.48.1 fixed
suse enterprise sap 15 SP6	2.43.0-150600.3.9.1 fixed
suse enterprise sap 15 SP7	2.43.0-150600.3.9.1 fixed
suse enterprise server 12 SP3	2.26.2-27.78.1 fixed
suse enterprise server 12 SP5	2.26.2-27.78.1 fixed
suse enterprise server 15 SP2	2.26.2-150000.64.1 fixed
suse enterprise server 15 SP3	2.35.3-150300.10.48.1 fixed
suse enterprise server 15 SP4	2.35.3-150300.10.48.1 fixed
suse enterprise server 15 SP5	2.35.3-150300.10.48.1 fixed
suse enterprise server 15 SP6	2.43.0-150600.3.9.1 fixed
suse enterprise server 15 SP7	2.43.0-150600.3.9.1 fixed

git-web

suse enterprise desktop 15 SP6	2.43.0-150600.3.9.1 fixed
suse enterprise desktop 15 SP7	2.43.0-150600.3.9.1 fixed
suse enterprise sap 15 SP4	2.35.3-150300.10.48.1 fixed
suse enterprise sap 15 SP5	2.35.3-150300.10.48.1 fixed
suse enterprise sap 15 SP6	2.43.0-150600.3.9.1 fixed
suse enterprise sap 15 SP7	2.43.0-150600.3.9.1 fixed
suse enterprise server 12 SP3	2.26.2-27.78.1 fixed
suse enterprise server 12 SP5	2.26.2-27.78.1 fixed
suse enterprise server 15 SP2	2.26.2-150000.64.1 fixed
suse enterprise server 15 SP3	2.35.3-150300.10.48.1 fixed
suse enterprise server 15 SP4	2.35.3-150300.10.48.1 fixed
suse enterprise server 15 SP5	2.35.3-150300.10.48.1 fixed
suse enterprise server 15 SP6	2.43.0-150600.3.9.1 fixed
suse enterprise server 15 SP7	2.43.0-150600.3.9.1 fixed

gitk

suse enterprise desktop 15 SP6	2.43.0-150600.3.9.1 fixed
suse enterprise desktop 15 SP7	2.43.0-150600.3.9.1 fixed
suse enterprise sap 15 SP4	2.35.3-150300.10.48.1 fixed
suse enterprise sap 15 SP5	2.35.3-150300.10.48.1 fixed
suse enterprise sap 15 SP6	2.43.0-150600.3.9.1 fixed
suse enterprise sap 15 SP7	2.43.0-150600.3.9.1 fixed
suse enterprise server 12 SP3	2.26.2-27.78.1 fixed
suse enterprise server 12 SP5	2.26.2-27.78.1 fixed
suse enterprise server 15 SP2	2.26.2-150000.64.1 fixed
suse enterprise server 15 SP3	2.35.3-150300.10.48.1 fixed
suse enterprise server 15 SP4	2.35.3-150300.10.48.1 fixed
suse enterprise server 15 SP5	2.35.3-150300.10.48.1 fixed
suse enterprise server 15 SP6	2.43.0-150600.3.9.1 fixed
suse enterprise server 15 SP7	2.43.0-150600.3.9.1 fixed

perl-Git

suse enterprise desktop 15 SP6	2.43.0-150600.3.9.1 fixed
suse enterprise desktop 15 SP7	2.43.0-150600.3.9.1 fixed
suse enterprise sap 15 SP4	2.35.3-150300.10.48.1 fixed
suse enterprise sap 15 SP5	2.35.3-150300.10.48.1 fixed
suse enterprise sap 15 SP6	2.43.0-150600.3.9.1 fixed
suse enterprise sap 15 SP7	2.43.0-150600.3.9.1 fixed
suse enterprise server 15 SP3	2.35.3-150300.10.48.1 fixed
suse enterprise server 15 SP4	2.35.3-150300.10.48.1 fixed
suse enterprise server 15 SP5	2.35.3-150300.10.48.1 fixed
suse enterprise server 15 SP6	2.43.0-150600.3.9.1 fixed
suse enterprise server 15 SP7	2.43.0-150600.3.9.1 fixed

Red Hat Enterprise Linux Releases

Red Hat Product

Release

git

RHEL 8	0:2.43.7-1.el8_10 fixed
RHEL 9	0:2.47.3-1.el9_6 fixed

git-all

RHEL 8	0:2.43.7-1.el8_10 fixed
RHEL 9	0:2.47.3-1.el9_6 fixed

git-core

RHEL 8	0:2.43.7-1.el8_10 fixed
RHEL 9	0:2.47.3-1.el9_6 fixed

git-core-doc

RHEL 8	0:2.43.7-1.el8_10 fixed
RHEL 9	0:2.47.3-1.el9_6 fixed

git-credential-libsecret

RHEL 8	0:2.43.7-1.el8_10 fixed
RHEL 9	0:2.47.3-1.el9_6 fixed

git-daemon

RHEL 8	0:2.43.7-1.el8_10 fixed
RHEL 9	0:2.47.3-1.el9_6 fixed

git-email

RHEL 8	0:2.43.7-1.el8_10 fixed
RHEL 9	0:2.47.3-1.el9_6 fixed

git-gui

RHEL 8	0:2.43.7-1.el8_10 fixed
RHEL 9	0:2.47.3-1.el9_6 fixed

git-instaweb

RHEL 8	0:2.43.7-1.el8_10 fixed
RHEL 9	0:2.47.3-1.el9_6 fixed

git-subtree

RHEL 8	0:2.43.7-1.el8_10 fixed
RHEL 9	0:2.47.3-1.el9_6 fixed

git-svn

RHEL 8	0:2.43.7-1.el8_10 fixed
RHEL 9	0:2.47.3-1.el9_6 fixed

gitk

RHEL 8	0:2.43.7-1.el8_10 fixed
RHEL 9	0:2.47.3-1.el9_6 fixed

gitweb

RHEL 8	0:2.43.7-1.el8_10 fixed
RHEL 9	0:2.47.3-1.el9_6 fixed

perl-Git

RHEL 8	0:2.43.7-1.el8_10 fixed
RHEL 9	0:2.47.3-1.el9_6 fixed

perl-Git-SVN

RHEL 8	0:2.43.7-1.el8_10 fixed
RHEL 9	0:2.47.3-1.el9_6 fixed

Common Weakness Enumeration

CWE-116 - Improper Encoding or Escaping of Output
The software prepares a structured message for communication with another component, but encoding or escaping of the data is either missing or done incorrectly. As a result, the intended structure of the message is not preserved.

References

https://github.com/git/git/commit/7725b8100ffbbff2750ee4d61a0fcc1f53a086e8

https://github.com/git/git/commit/c903985bf7e772e2d08275c1a95c8a55ab011577

https://github.com/git/git/security/advisories/GHSA-hmg8-h7qf-7cxr

https://lists.debian.org/debian-lts-announce/2025/01/msg00025.html