CVE-2024-6257
Publication date 25 June 2024
Last updated 24 July 2024
Ubuntu priority
HashiCorp’s go-getter library can be coerced into executing Git update on an existing maliciously modified Git Configuration, potentially leading to arbitrary code execution.
Status
Package | Ubuntu Release | Status |
---|---|---|
golang-github-hashicorp-go-getter | 24.04 LTS noble |
Needs evaluation
|
22.04 LTS jammy |
Needs evaluation
|
|
20.04 LTS focal |
Needs evaluation
|
|
18.04 LTS bionic |
Needs evaluation
|