Discussion
Loading...

#Tag
Log in
  • About
  • Code of conduct
  • Privacy
  • Users
  • Instances
  • About Bonfire
maco
maco boosted
David Leadbeater
@dgl@infosec.exchange  ·  activity timestamp last week

I found a vulnerability in git. CVE-2025-48384: Breaking git with a carriage return and cloning RCE - https://dgl.cx/2025/07/git-clone-submodule-cve-2025-48384

As the post explains this is one of my favourite classes of vulnerability, using characters that are old and sometimes forgotten.

#git #security #rce #ascii

  • Copy link
  • Flag this post
  • Block
Log in

bonfire.cafe

A space for Bonfire maintainers and contributors to communicate

bonfire.cafe: About · Code of conduct · Privacy · Users · Instances
Bonfire social · 1.0.0-rc.2.1 no JS en
Automatic federation enabled
  • Explore
  • About
  • Members
  • Code of Conduct