| CVE-2025-31130 |
unknown |
— |
— |
|
|
|
1y ago |
gitoxide is an implementation of git written in Rust. Before 0.42.0, gitoxide uses SHA-1 hash implementations without any collision detection, leaving it vulnerable to hash collision attacks. gitoxid… |
| CVE-2025-22620 |
unknown |
— |
— |
|
|
|
1y ago |
gitoxide is an implementation of git written in Rust. Prior to 0.17.0, gix-worktree-state specifies 0777 permissions when checking out executable files, intending that the umask will restrict them ap… |
| CVE-2024-35186 |
unknown |
— |
— |
|
|
|
2y ago |
gitoxide is a pure Rust implementation of Git. During checkout, `gix-worktree-state` does not verify that paths point to locations in the working tree. A specially crafted repository can, when cloned… |
| CVE-2024-35197 |
unknown |
— |
— |
|
|
|
2y ago |
gitoxide is a pure Rust implementation of Git. On Windows, fetching refs that clash with legacy device names reads from the devices, and checking out paths that clash with such names writes arbitrary… |