製品・ソフトウェアに関する情報

JVN脆弱性詳細

git の git-shell における権限を取得される脆弱性

Title	git の git-shell における権限を取得される脆弱性
Summary	git の git-shell には、権限を取得される脆弱性が存在します。
Possible impacts	リモート認証されたユーザにより、- (ダッシュ) 文字で始まるリポジトリ名を介して、権限を取得される可能性があります。
Solution	ベンダより正式な対策が公開されています。ベンダ情報を参照して適切な対策を実施してください。
Publication Date	May 5, 2017, midnight
Registration Date	July 3, 2017, 12:22 p.m.
Last Update	July 3, 2017, 12:22 p.m.

CVSS3.0 : 重要
Score	8.8
Vector	CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CVSS2.0 : 警告
Score	6.5
Vector	AV:N/AC:L/Au:S/C:P/I:P/A:P

Affected System

Debian

Debian GNU/Linux 8.0

Fedora Project

Fedora 24

Fedora 25

Fedora 26

Canonical

Ubuntu 14.04 LTS

Ubuntu 16.04 LTS

Ubuntu 16.10

Ubuntu 17.04

openSUSE project

openSUSE Leap 42.2

Git project

Git 2.10.3 未満の 2.10.x

Git 2.11.2 未満の 2.11.x

Git 2.12.3 未満の 2.12.x

Git 2.4.12

Git 2.5.6 未満の 2.5.x

Git 2.6.7 未満の 2.6.x

Git 2.7.5 未満の 2.7.x

Git 2.8.5 未満の 2.8.x

Git 2.9.4 未満の 2.9.x

CVE (情報セキュリティ共通脆弱性識別子)

No	Name	URL
Common Vulnerabilities and Exposures (CVE)
1	CVE-2017-8386	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8386
National Vulnerability Database (NVD)
2	CVE-2017-8386	https://nvd.nist.gov/vuln/detail/CVE-2017-8386

CWE (共通脆弱性タイプ一覧)

No	Name	URL
JVNDB
1	CWE-264	https://jvndb.jvn.jp/ja/cwe/CWE-264.html

ベンダー情報

No	Name	URL
Debian Security Advisory
1	DSA-3848	https://www.debian.org/security/2017/dsa-3848
Fedora Update Notification
2	FEDORA-2017-01a7989fc0	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3ISHYFLM2ACYHHY3JHCLF75X7UF4ZMDM/
3	FEDORA-2017-7ea0e02914	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FDS3LSJJ3YGGQYIVPKQDVOCXWDSF6JGF/
4	FEDORA-2017-f4319b6dfc	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/DPYRN7APMHY4ZFDPAKD22J5R4QJFY2JP/
Google Git
5	shell: disallow repo names beginning with dash	https://kernel.googlesource.com/pub/scm/git/git/+/3ec804490a265f4c418a321428c12f3f18b7eff5
opensuse-updates
6	openSUSE-SU-2017:1422-1	https://lists.opensuse.org/opensuse-updates/2017-05/msg00090.html
Ubuntu Security Notice
7	USN-3287-1	https://www.ubuntu.com/usn/USN-3287-1/

Change Log

No	Changed Details	Date of change
0	[2017年07月03日] 掲載	Feb. 17, 2018, 10:37 a.m.

NVD Vulnerability Information

CVE-2017-8386

Summary	git-shell in git before 2.4.12, 2.5.x before 2.5.6, 2.6.x before 2.6.7, 2.7.x before 2.7.5, 2.8.x before 2.8.5, 2.9.x before 2.9.4, 2.10.x before 2.10.3, 2.11.x before 2.11.2, and 2.12.x before 2.12.3 might allow remote authenticated users to gain privileges via a repository name that starts with a - (dash) character.
Publication Date	June 2, 2017, 1:29 a.m.
Registration Date	Jan. 26, 2021, 1:29 p.m.
Last Update	Nov. 21, 2024, 12:33 p.m.

Affected software configurations

Configuration1		or higher	or less	more than	less than
cpe:2.3:a:git:git-shell:-:::::::*

Configuration2		or higher	or less	more than	less than
cpe:2.3:o:opensuse:leap:42.1:::::::*

Configuration3		or higher	or less	more than	less than
cpe:2.3:o:debian:debian_linux:8.0:::::::*

Configuration4	or higher	or less	more than	less than
cpe:2.3:o:canonical:ubuntu_linux:16.10:::::::*
cpe:2.3:o:canonical:ubuntu_linux:16.04::::lts:::
cpe:2.3:o:canonical:ubuntu_linux:14.04::::lts:::
cpe:2.3:o:canonical:ubuntu_linux:17.04:::::::*

Configuration5	or higher	or less	more than	less than
cpe:2.3:o:fedoraproject:fedora:26:::::::*
cpe:2.3:o:fedoraproject:fedora:25:::::::*
cpe:2.3:o:fedoraproject:fedora:24:::::::*

Related information, measures and tools

No	URL	タグ
1	http://lists.opensuse.org/opensuse-updates/2017-05/msg00090.html	Mailing List Third Party Advisory
2	http://lists.opensuse.org/opensuse-updates/2017-05/msg00090.html	Mailing List Third Party Advisory
3	http://public-inbox.org/git/xmqq8tm5ziat.fsf%40gitster.mtv.corp.google.com/
4	http://public-inbox.org/git/xmqq8tm5ziat.fsf%40gitster.mtv.corp.google.com/
5	http://www.debian.org/security/2017/dsa-3848	Third Party Advisory VDB Entry
6	http://www.debian.org/security/2017/dsa-3848	Third Party Advisory VDB Entry
7	http://www.securityfocus.com/bid/98409	Third Party Advisory VDB Entry
8	http://www.securityfocus.com/bid/98409	Third Party Advisory VDB Entry
9	http://www.securitytracker.com/id/1038479	Third Party Advisory
10	http://www.securitytracker.com/id/1038479	Third Party Advisory
11	http://www.ubuntu.com/usn/USN-3287-1	Exploit Third Party Advisory
12	http://www.ubuntu.com/usn/USN-3287-1	Exploit Third Party Advisory
13	https://access.redhat.com/errata/RHSA-2017:2004
14	https://access.redhat.com/errata/RHSA-2017:2004
15	https://access.redhat.com/errata/RHSA-2017:2491
16	https://access.redhat.com/errata/RHSA-2017:2491
17	https://insinuator.net/2017/05/git-shell-bypass-by-abusing-less-cve-2017-8386/	Mitigation Third Party Advisory
18	https://insinuator.net/2017/05/git-shell-bypass-by-abusing-less-cve-2017-8386/	Mitigation Third Party Advisory
19	https://kernel.googlesource.com/pub/scm/git/git/+/3ec804490a265f4c418a321428c12f3f18b7eff5	Third Party Advisory
20	https://kernel.googlesource.com/pub/scm/git/git/+/3ec804490a265f4c418a321428c12f3f18b7eff5	Third Party Advisory
21	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3ISHYFLM2ACYHHY3JHCLF75X7UF4ZMDM/
22	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3ISHYFLM2ACYHHY3JHCLF75X7UF4ZMDM/
23	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DPYRN7APMHY4ZFDPAKD22J5R4QJFY2JP/
24	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DPYRN7APMHY4ZFDPAKD22J5R4QJFY2JP/
25	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FDS3LSJJ3YGGQYIVPKQDVOCXWDSF6JGF/
26	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FDS3LSJJ3YGGQYIVPKQDVOCXWDSF6JGF/
27	https://security.gentoo.org/glsa/201706-04
28	https://security.gentoo.org/glsa/201706-04

Common Vulnerabilities List