FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-11-23 05:42:14 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
8c342a6c-563f-11ef-a77e-901b0e9408dc	soft-serve -- Remote code execution vulnerability soft-serve team reports: Arbitrary code execution by crafting git ssh requests It is possible for a user who can commit files to a repository hosted by Soft Serve to execute arbitrary code via environment manipulation and Git. Discovery 2024-08-01 Entry 2024-08-09 soft-serve < 0.7.5 CVE-2024-41956 https://github.com/charmbracelet/soft-serve/security/advisories/GHSA-m445-w3xr-vp2f

VuXML ID

Description

8c342a6c-563f-11ef-a77e-901b0e9408dc

soft-serve -- Remote code execution vulnerability

soft-serve team reports:

Arbitrary code execution by crafting git ssh requests

It is possible for a user who can commit files to a repository hosted by Soft Serve to execute arbitrary code via environment manipulation and Git.

Discovery 2024-08-01
Entry 2024-08-09
soft-serve

< 0.7.5

CVE-2024-41956
https://github.com/charmbracelet/soft-serve/security/advisories/GHSA-m445-w3xr-vp2f