Gitk can create and truncate files in the user's home directory

Gitk is a Tcl/Tk based Git history browser. Starting with 1.7.0, when a user clones an untrusted repository and runs gitk without additional command arguments, files for which the user has write permission can be created and truncated. The option Support per-file encoding must have been enabled before in Gitk's Preferences. This option is disabled by default. The same happens when Show origin of this line is used in the main window (regardless of whether Support per-file encoding is enabled or not). This vulnerability is fixed in 2.43.7, 2.44.4, 2.45.4, 2.46.4, 2.47.3, 2.48.2, 2.49.1, and 2.50.1.

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:N/I:L/A:N

OS命令中使用的特殊元素转义处理不恰当(OS命令注入)

Gitk 操作系统命令注入漏洞

Gitk是Git开源的一个Git自带的图形化工具，用于查看Git仓库的提交历史和分支结构等信息。 Gitk存在操作系统命令注入漏洞，该漏洞源于当用户克隆不受信任的存储库并在没有附加命令参数的情况下运行 Gitk 时，可以创建和截断任何可写文件。

N/A

N/A