Vulnerability Database
Blog
FAQ
Docs
arrow_forward
search
RHSA-2025:11533
See a problem?
Please try reporting it
to the source
first.
Source
https://access.redhat.com/errata/RHSA-2025:11533
Import Source
https://security.access.redhat.com/data/osv/RHSA-2025:11533.json
JSON Data
https://api.test.osv.dev/v1/vulns/RHSA-2025:11533
Upstream
CVE-2024-50349
CVE-2024-52006
CVE-2025-27613
CVE-2025-27614
CVE-2025-46835
CVE-2025-48384
CVE-2025-48385
Published
2025-07-23T10:02:49Z
Modified
2025-07-28T10:02:57Z
Severity
8.3 (High)
CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:L
CVSS Calculator
Summary
Red Hat Security Advisory: git security update
Details
References
https://access.redhat.com/errata/RHSA-2025:11533
https://access.redhat.com/security/updates/classification/#important
https://bugzilla.redhat.com/show_bug.cgi?id=2337824
https://bugzilla.redhat.com/show_bug.cgi?id=2337956
https://bugzilla.redhat.com/show_bug.cgi?id=2378806
https://bugzilla.redhat.com/show_bug.cgi?id=2378808
https://bugzilla.redhat.com/show_bug.cgi?id=2379124
https://bugzilla.redhat.com/show_bug.cgi?id=2379125
https://bugzilla.redhat.com/show_bug.cgi?id=2379326
https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_11533.json
https://access.redhat.com/security/cve/CVE-2024-50349
https://www.cve.org/CVERecord?id=CVE-2024-50349
https://nvd.nist.gov/vuln/detail/CVE-2024-50349
https://github.com/git/git/commit/7725b8100ffbbff2750ee4d61a0fcc1f53a086e8
https://github.com/git/git/commit/c903985bf7e772e2d08275c1a95c8a55ab011577
https://github.com/git/git/security/advisories/GHSA-hmg8-h7qf-7cxr
https://access.redhat.com/security/cve/CVE-2024-52006
https://www.cve.org/CVERecord?id=CVE-2024-52006
https://nvd.nist.gov/vuln/detail/CVE-2024-52006
https://github.com/git-ecosystem/git-credential-manager/security/advisories/GHSA-86c2-4x57-wc8g
https://github.com/git/git/commit/b01b9b81d36759cdcd07305e78765199e1bc2060
https://github.com/git/git/security/advisories/GHSA-qm7j-c969-7j4q
https://github.com/git/git/security/advisories/GHSA-r5ph-xg7q-xfrp
https://access.redhat.com/security/cve/CVE-2025-27613
https://www.cve.org/CVERecord?id=CVE-2025-27613
https://nvd.nist.gov/vuln/detail/CVE-2025-27613
https://github.com/j6t/gitk/security/advisories/GHSA-f3cw-xrj3-wr2v
https://lore.kernel.org/git/xmqq5xg2wrd1.fsf@gitster.g/
https://www.openwall.com/lists/oss-security/2025/07/08/4
https://access.redhat.com/security/cve/CVE-2025-27614
https://www.cve.org/CVERecord?id=CVE-2025-27614
https://nvd.nist.gov/vuln/detail/CVE-2025-27614
https://access.redhat.com/security/cve/CVE-2025-46835
https://www.cve.org/CVERecord?id=CVE-2025-46835
https://nvd.nist.gov/vuln/detail/CVE-2025-46835
https://github.com/j6t/git-gui/compare/dcda716dbc9c90bcac4611bd1076747671ee0906..a437f5bc93330a70b42a230e52f3bd036ca1b1da
https://github.com/j6t/git-gui/security/advisories/GHSA-xfx7-68v4-v8fg
https://access.redhat.com/security/cve/CVE-2025-48384
https://www.cve.org/CVERecord?id=CVE-2025-48384
https://nvd.nist.gov/vuln/detail/CVE-2025-48384
https://dgl.cx/2025/07/git-clone-submodule-cve-2025-48384
https://github.com/git/git/commit/05e9cd64ee23bbadcea6bcffd6660ed02b8eab89
https://github.com/git/git/security/advisories/GHSA-vwqx-4fm8-6qc9
https://access.redhat.com/security/cve/CVE-2025-48385
https://www.cve.org/CVERecord?id=CVE-2025-48385
https://nvd.nist.gov/vuln/detail/CVE-2025-48385
https://github.com/git/git/security/advisories/GHSA-m98c-vgpc-9655
Affected packages
Red Hat:enterprise_linux:10.0
/
git
Package
Name
git
Purl
pkg:rpm/redhat/git
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:2.47.3-1.el10_0
Red Hat:enterprise_linux:10.0
/
git-all
Package
Name
git-all
Purl
pkg:rpm/redhat/git-all
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:2.47.3-1.el10_0
Red Hat:enterprise_linux:10.0
/
git-core
Package
Name
git-core
Purl
pkg:rpm/redhat/git-core
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:2.47.3-1.el10_0
Red Hat:enterprise_linux:10.0
/
git-core-debuginfo
Package
Name
git-core-debuginfo
Purl
pkg:rpm/redhat/git-core-debuginfo
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:2.47.3-1.el10_0
Red Hat:enterprise_linux:10.0
/
git-core-doc
Package
Name
git-core-doc
Purl
pkg:rpm/redhat/git-core-doc
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:2.47.3-1.el10_0
Red Hat:enterprise_linux:10.0
/
git-credential-libsecret
Package
Name
git-credential-libsecret
Purl
pkg:rpm/redhat/git-credential-libsecret
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:2.47.3-1.el10_0
Red Hat:enterprise_linux:10.0
/
git-credential-libsecret-debuginfo
Package
Name
git-credential-libsecret-debuginfo
Purl
pkg:rpm/redhat/git-credential-libsecret-debuginfo
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:2.47.3-1.el10_0
Red Hat:enterprise_linux:10.0
/
git-daemon
Package
Name
git-daemon
Purl
pkg:rpm/redhat/git-daemon
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:2.47.3-1.el10_0
Red Hat:enterprise_linux:10.0
/
git-daemon-debuginfo
Package
Name
git-daemon-debuginfo
Purl
pkg:rpm/redhat/git-daemon-debuginfo
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:2.47.3-1.el10_0
Red Hat:enterprise_linux:10.0
/
git-debuginfo
Package
Name
git-debuginfo
Purl
pkg:rpm/redhat/git-debuginfo
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:2.47.3-1.el10_0
Red Hat:enterprise_linux:10.0
/
git-debugsource
Package
Name
git-debugsource
Purl
pkg:rpm/redhat/git-debugsource
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:2.47.3-1.el10_0
Red Hat:enterprise_linux:10.0
/
git-email
Package
Name
git-email
Purl
pkg:rpm/redhat/git-email
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:2.47.3-1.el10_0
Red Hat:enterprise_linux:10.0
/
git-gui
Package
Name
git-gui
Purl
pkg:rpm/redhat/git-gui
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:2.47.3-1.el10_0
Red Hat:enterprise_linux:10.0
/
git-instaweb
Package
Name
git-instaweb
Purl
pkg:rpm/redhat/git-instaweb
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:2.47.3-1.el10_0
Red Hat:enterprise_linux:10.0
/
git-subtree
Package
Name
git-subtree
Purl
pkg:rpm/redhat/git-subtree
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:2.47.3-1.el10_0
Red Hat:enterprise_linux:10.0
/
git-svn
Package
Name
git-svn
Purl
pkg:rpm/redhat/git-svn
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:2.47.3-1.el10_0
Red Hat:enterprise_linux:10.0
/
gitk
Package
Name
gitk
Purl
pkg:rpm/redhat/gitk
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:2.47.3-1.el10_0
Red Hat:enterprise_linux:10.0
/
gitweb
Package
Name
gitweb
Purl
pkg:rpm/redhat/gitweb
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:2.47.3-1.el10_0
Red Hat:enterprise_linux:10.0
/
perl-Git
Package
Name
perl-Git
Purl
pkg:rpm/redhat/perl-Git
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:2.47.3-1.el10_0
Red Hat:enterprise_linux:10.0
/
perl-Git-SVN
Package
Name
perl-Git-SVN
Purl
pkg:rpm/redhat/perl-Git-SVN
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:2.47.3-1.el10_0
RHSA-2025:11533 - OSV