CVE-2022-29187 vulnerability in Canonical and Other Products
Published on July 12, 2022

Bypass of safe.directory protections in Git

Git is a distributed revision control system. Git prior to versions 2.37.1, 2.36.2, 2.35.4, 2.34.4, 2.33.4, 2.32.3, 2.31.4, and 2.30.5, is vulnerable to privilege escalation in all platforms. An unsuspecting user could still be affected by the issue reported in CVE-2022-24765, for example when navigating as root into a shared tmp directory that is owned by them, but where an attacker could create a git repository. Versions 2.37.1, 2.36.2, 2.35.4, 2.34.4, 2.33.4, 2.32.3, 2.31.4, and 2.30.5 contain a patch for this issue. The simplest way to avoid being affected by the exploit described in the example is to avoid running git as root (or an Administrator in Windows), and if needed to reduce its use to a minimum. While a generic workaround is not possible, a system could be hardened from the exploit described in the example by removing any such repository if it exists already and creating one as root to block any future attacks.

Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory NVD

Vulnerability Analysis

CVE-2022-29187 can be exploited with local system access, and requires small amount of user privileges. This vulnerability is considered to have a low attack complexity. The potential impact of an exploit of this vulnerability is considered to be very high.

Attack Vector:

LOCAL

Attack Complexity:

LOW

Privileges Required:

LOW

User Interaction:

NONE

Scope:

UNCHANGED

Confidentiality Impact:

HIGH

Integrity Impact:

HIGH

Availability Impact:

HIGH

Weakness Types

Improper Ownership Management

The software assigns the wrong ownership, or does not properly verify the ownership, of an object or resource.

What is a DLL preloading Vulnerability?

The product uses a fixed or controlled search path to find resources, but one or more locations in that path can be under the control of unintended actors.

CVE-2022-29187 has been classified to as a DLL preloading vulnerability or weakness.

Products Associated with CVE-2022-29187

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2022-29187 are published in these products:

Canonical Ubuntu Linux

Git Scm Git

Fedora Project Fedora

Apple Xcode

Debian Linux

Affected Versions

git:

Version >= 2.30.3, < 2.30.5 is affected.
Version >= 2.31.2, < 2.31.4 is affected.
Version >= 2.32.1, < 2.32.3 is affected.
Version >= 2.33.2, < 2.33.4 is affected.
Version >= 2.34.2, < 2.34.4 is affected.
Version >= 2.35.2, < 2.35.4 is affected.
Version >= 2.36, < 2.36.2 is affected.
Version >= 2.37, < 2.37.1 is affected.

Exploit Probability

EPSS

0.06%

Percentile

19.68%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2022-29187 vulnerability in Canonical and Other ProductsPublished on July 12, 2022

Vulnerability Analysis

Weakness Types

Improper Ownership Management

What is a DLL preloading Vulnerability?

Products Associated with CVE-2022-29187

Affected Versions

Exploit Probability

CVE-2022-29187 vulnerability in Canonical and Other Products
Published on July 12, 2022