Fluid Attacks Database

Description

Argument Injection via the URL field in github.com/go-git/go-git Argument Injection via the URL field in github.com/go-git/go-git

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem	Package	Affected version	Patched versions
debian 13	golang-github-go-git-go-git	>=0 <5.13.2-1	5.13.2-1
go	github.com/go-git/go-git/v5	>=0 <5.13.0	5.13.0
debian 12	golang-github-go-git-go-git	=5.11.0-1 \|\| =5.11.0-2 \|\| =5.11.0-3 \|\| =5.11.0-4 \|\| =5.12.0-1 \|\| =5.13.2-1 \|\| =5.14.0-1 \|\| =5.16.2-1 \|\| =5.17.0-1 \|\| =5.17.1-1 \|\| =5.4.2-3 \|\| =5.4.2-4	-
debian 14	golang-github-go-git-go-git	>=0 <5.13.2-1	5.13.2-1
go	gopkg.in/src-d/go-git.v4	>=4.0.0 <=4.13.1	-
go	github.com/go-git/go-git/v4	>=4.0.0	-
go	github.com/go-git/go-git	>=4.0.0 <=4.13.1	-
rpm rhel8	grafana	<0:9.2.10-21.el8_10	0:9.2.10-21.el8_10
rpm rhel9.4	grafana	<0:9.2.10-21.el9_4	0:9.2.10-21.el9_4
rpm rhel9	grafana	-	-

Aliases

References

Does your application use this vulnerable software?

During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.