DevGuard Logo

🛡️ DevGuard
Group
/🧩 DevGuard CI-Components
Repository

Overview
Compliance
Artifacts
Code Risks
Dependency Risks
License Risks
Dependencies

CVE-2025-48384

Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full access to internals. When reading a config value, Git strips any trailing carriage return and line feed (CRLF). When writing a config entry, values with a trailing CR are not quoted, causing the CR to be lost when the config is later read. When initializing a submodule, if the submodule path contains a trailing CR, the altered path is read resulting in the submodule being checked out to an incorrect location. If a symlink exists that points the altered path to the submodule hooks directory, and the submodule contains an executable post-checkout hook, the script may be unintentionally executed after checkout. This vulnerability is fixed in v2.43.7, v2.44.4, v2.45.4, v2.46.4, v2.47.3, v2.48.2, v2.49.1, and v2.50.1.

Open
MEDIUM (4.0)
  • logo

    System detected CVE-2025-48384 with a risk of 3.85

    attest
  • logo

    System detected CVE-2025-48384 with a risk of 3.85

    chore/adds-additional-env-flags
  • logo

    System detected CVE-2025-48384 with a risk of 3.85

    main
  • logo

    System

    add/artifact-name-input
  • logo

    System

    add/artifact-name-input
  • logo

    System

    add/artifact-name-input
  • logo

    System

    add/artifact-name-input
  • S

    Sebastian Kawelke updated the risk assessment from 3.85 to 3.7

    0.11.1

    Confidentiality Requirement updated: medium -> low, Integrity Requirement updated: medium -> high, Availability Requirement updated: medium -> high

  • S

    Sebastian Kawelke updated the risk assessment from 3.85 to 3.7

    examples

    Confidentiality Requirement updated: medium -> low, Integrity Requirement updated: medium -> high, Availability Requirement updated: medium -> high

  • S

    Sebastian Kawelke updated the risk assessment from 3.85 to 3.7

    attest

    Confidentiality Requirement updated: medium -> low, Integrity Requirement updated: medium -> high, Availability Requirement updated: medium -> high

  • S

    Sebastian Kawelke updated the risk assessment from 3.85 to 3.7

    add/artifact-name-input

    Confidentiality Requirement updated: medium -> low, Integrity Requirement updated: medium -> high, Availability Requirement updated: medium -> high

  • S

    Sebastian Kawelke updated the risk assessment from 3.85 to 3.7

    chore/adds-additional-env-flags

    Confidentiality Requirement updated: medium -> low, Integrity Requirement updated: medium -> high, Availability Requirement updated: medium -> high

  • S

    Sebastian Kawelke updated the risk assessment from 3.85 to 3.7

    revert-c7057e5e

    Confidentiality Requirement updated: medium -> low, Integrity Requirement updated: medium -> high, Availability Requirement updated: medium -> high

  • S

    Sebastian Kawelke updated the risk assessment from 3.85 to 3.7

    0.9.0

    Confidentiality Requirement updated: medium -> low, Integrity Requirement updated: medium -> high, Availability Requirement updated: medium -> high

  • logo

    System updated the risk assessment from 3.7 to 3.85

    attest

    System recalculated raw risk assessment

  • logo

    System updated the risk assessment from 3.7 to 3.85

    revert-c7057e5e

    System recalculated raw risk assessment

  • logo

    System updated the risk assessment from 3.7 to 3.85

    0.11.1

    System recalculated raw risk assessment

  • logo

    System updated the risk assessment from 3.7 to 3.85

    0.9.0

    System recalculated raw risk assessment

  • logo

    System updated the risk assessment from 3.7 to 3.85

    add/artifact-name-input

    System recalculated raw risk assessment

  • logo

    System updated the risk assessment from 3.7 to 3.85

    chore/adds-additional-env-flags

    System recalculated raw risk assessment

  • logo

    System updated the risk assessment from 3.7 to 3.85

    examples

    System recalculated raw risk assessment

  • logo

    System updated the risk assessment from 3.85 to 4

    add/artifact-name-input

    System recalculated raw risk assessment

  • logo

    System updated the risk assessment from 3.85 to 4

    0.11.1

    System recalculated raw risk assessment

  • logo

    System updated the risk assessment from 3.85 to 4

    0.9.0

    System recalculated raw risk assessment

  • logo

    System updated the risk assessment from 3.85 to 4

    revert-c7057e5e

    System recalculated raw risk assessment

  • logo

    System updated the risk assessment from 3.85 to 4

    chore/adds-additional-env-flags

    System recalculated raw risk assessment

  • logo

    System updated the risk assessment from 3.85 to 4

    examples

    System recalculated raw risk assessment

  • logo

    System updated the risk assessment from 3.85 to 4

    attest

    System recalculated raw risk assessment

  • logo

    System fixed CVE-2025-48384

    add/artifact-name-input
  • logo

    System fixed CVE-2025-48384

    attest
  • logo

    System fixed CVE-2025-48384

    0.11.1
  • logo

    System fixed CVE-2025-48384

    examples
  • logo

    System fixed CVE-2025-48384

    0.9.0
  • logo

    System fixed CVE-2025-48384

    chore/adds-additional-env-flags
  • logo

    System fixed CVE-2025-48384

    revert-c7057e5e
  • logo

    System detected CVE-2025-48384 with a risk of 4

    add/artifact-name-input
  • logo

    System updated the risk assessment from 4 to 4.01

    revert-c7057e5e

    System recalculated raw risk assessment

Add a comment

Mark as False Positive
Last calculated at:

Affected component

debian/git

Installed version:
2.39.5-0
Fixed in:
no patch available
Show in dependency graph

Management decisions across the organization

GitHubImprintTerms of UsePrivacy
Copyright © 2025 L3montree GmbH and the DevGuard Contributors. All rights reserved. Version 2ab7b793efd72421aea8c3a994ac60202bf1b3a5