CVE-2014-0177

CVE-2014-0177

EPSS 0.4%

The am function in lib/hub/commands.rb in hub before 1.12.1 allows local users to overwrite arbitrary files via a symlink attack on a temporary patch file.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://secunia.com/advisories/58273 https://github.com/github/hub/commit/016ec99d25b1cb83cb4367e541177aa431beb600