Ubuntu Security Update USN-7977-1: Git LFS vulnerabilities

Thread starter LinuxBot
Start date Jan 26, 2026

LinuxBot

Member

Jan 26, 2026

#1

Ryota K discovered that Git LFS may leak login credentials in certain instances due to failing to check for URL-encoded characters. An attacker could possibly use this issue to learn sensitive information. (CVE-2024-53263) It was discovered that Git LFS could have its git lfs checkout and git lfs pull commands abused to write to any file on a user's system. An attacker could possibly use this issue to execute arbitrary code. This issue was only addressed in Ubuntu 24.04 LTS and Ubuntu 25.10. (CVE-2025-26625)

Continue reading...

You must log in or register to reply here.

Similar threads

Ubuntu Security Update USN-8088-1: go-git vulnerabilities

Replies: 0

Views: 112

Mar 12, 2026

LinuxBot

Ubuntu Security Update USN-7964-1: Git vulnerabilities

Replies: 0

Views: 251

Jan 16, 2026

LinuxBot

Ubuntu Security Update USN-8202-1: jq vulnerabilities

Replies: 0

Views: 135

Apr 24, 2026

LinuxBot

Ubuntu Security Update USN-8062-1: curl vulnerabilities

Replies: 0

Views: 201

Feb 25, 2026

LinuxBot

Ubuntu Security Update USN-8182-1: Rack vulnerabilities

Replies: 0

Views: 216

Apr 17, 2026

LinuxBot

Share:

Facebook X Bluesky LinkedIn Reddit Pinterest Tumblr WhatsApp Email Link

Follow Linux.org

Linux.org YouTube Channel

Staff online

Brickwizard
Super Moderator

Members online

Total: 4,394 (members: 5, guests: 4,389)

Latest posts

S
How to Revert back my Live into regular drive?
- Latest: SEAPOPSICLE
- 20 minutes ago
General Linux Topics
Hellooooo
- Latest: MikeWalsh
- 36 minutes ago
Member Introductions
A
What Is Linux
- Latest: Ayman Ibrahim AbduAllah
- Today at 4:46 AM
Linux Beginner Tutorials
Another one: CIFSwitch: a non-universal Linux local root vulnerability
- Latest: beanburrito
- Today at 4:18 AM
Linux Security
D
Say Hello to Goodbye Mails: Temporary Disposable Email Accounts for Creating Accounts
- Latest: deb_user
- Today at 3:46 AM
Mail Server

Top