Detections
Analytics

SUSE SLES15 Security Update : git (SUSE-SU-2022:2535-1)

high Nessus Plugin ID 163428

Language:

Synopsis

The remote SUSE host is missing a security update.

Description

The remote SUSE Linux SLES15 / SLES_SAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2022:2535-1 advisory.

 - Git is a distributed revision control system. Git prior to versions 2.37.1, 2.36.2, 2.35.4, 2.34.4, 2.33.4, 2.32.3, 2.31.4, and 2.30.5, is vulnerable to privilege escalation in all platforms. An unsuspecting user could still be affected by the issue reported in CVE-2022-24765, for example when navigating as root into a shared tmp directory that is owned by them, but where an attacker could create a git repository. Versions 2.37.1, 2.36.2, 2.35.4, 2.34.4, 2.33.4, 2.32.3, 2.31.4, and 2.30.5 contain a patch for this issue. The simplest way to avoid being affected by the exploit described in the example is to avoid running git as root (or an Administrator in Windows), and if needed to reduce its use to a minimum. While a generic workaround is not possible, a system could be hardened from the exploit described in the example by removing any such repository if it exists already and creating one as root to block any future attacks. (CVE-2022-29187)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

Solution

Update the affected packages.

See Also

https://bugzilla.suse.com/1200119

https://bugzilla.suse.com/1201431

https://www.suse.com/security/cve/CVE-2022-29187

http://www.nessus.org/u?e0e702f2

Plugin Details

Severity: High

ID: 163428

File Name: suse_SU-2022-2535-1.nasl

Version: 1.5

Type: local

Agent: unix

Published: 7/23/2022

Updated: 7/13/2023

Supported Sensors: Agentless Assessment, Continuous Assessment, Frictionless Assessment Agent, Frictionless Assessment AWS, Frictionless Assessment Azure, Nessus Agent, Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 6.7

CVSS v2

Risk Factor: Medium

Base Score: 6.9

Temporal Score: 5.1

Vector: CVSS2#AV:L/AC:M/Au:N/C:C/I:C/A:C

CVSS Score Source: CVE-2022-29187

CVSS v3

Risk Factor: High

Base Score: 7.8

Temporal Score: 6.8

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C

Vulnerability Information

CPE: p-cpe:/a:novell:suse_linux:git-email, p-cpe:/a:novell:suse_linux:git-web, p-cpe:/a:novell:suse_linux:git-doc, p-cpe:/a:novell:suse_linux:git-daemon, p-cpe:/a:novell:suse_linux:git-core, p-cpe:/a:novell:suse_linux:git, p-cpe:/a:novell:suse_linux:gitk, cpe:/o:novell:suse_linux:15, p-cpe:/a:novell:suse_linux:git-cvs, p-cpe:/a:novell:suse_linux:git-arch, p-cpe:/a:novell:suse_linux:git-gui, p-cpe:/a:novell:suse_linux:git-svn

Required KB Items: Host/local_checks_enabled, Host/cpu, Host/SuSE/release, Host/SuSE/rpm-list

Exploit Ease: No known exploits are available

Patch Publication Date: 7/22/2022

Vulnerability Publication Date: 7/12/2022

Reference Information

CVE: CVE-2022-29187

SuSE: SUSE-SU-2022:2535-1