VDB

GCVE-VVD-MAGEIA-2019-199

GCVE-VVD-MAGEIA-2019-199
Advisory Published
Vulnetix · Advisory published November 7, 2019
Git before 2.19.2 on Linux and UNIX executes commands from the current working directory (as if '.' were at the end of $PATH) in certain cases involving the run_command() API and run-command.c, because there was a dangerous change from execvp to execv during 2017 (CVE-2018-19486).
Download JSON Open in Console

Affected Products

VendorProductVersionsPlatforms
Mageiafreeradius0 (affected), 3.0.19-1.1.mga7 (unaffected)
Mageiagit0 (affected), 2.13.7-1.3.mga6 (unaffected), 0 (affected), 2.13.7-1.3.mga6 (unaffected)

References

Updated git packages fix security vulnerability
advisory
Updated git packages fix security vulnerability
issue
Updated freeradius packages fix missing dictionaries
advisory
Updated freeradius packages fix missing dictionaries
issue

Browse GCVE Records

100 records in the GCVE database · Updated April 16, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

Open in Console Download JSON
$ Console Community · 100/wk Open console ›