jelmer Latest Vulnerabilities
Latest vulnerabilities published by jelmer
Vulnerability Published:
ποΈ Published
- Anytime
Sort By:
ποΈ Published Date
- Descending
Dulwich's submodule path traversal in porcelain.submodule_update / porcelain.clone(recurse_submodules=True) yields RCE via attacker-dropped .git/hooks payload
CVE-2026-52726JelmerDulwich7.5HIGHDulwich has unbounded memory allocation in receive-pack from crafted thin packs
CVE-2026-47734JelmerDulwich5.7MEDIUMDulwich doesn't sanitize commit subjects in `porcelain.format_patch`
CVE-2026-47712JelmerDulwich3.3LOWDulwich has an arbitrary file write via NTFS-hostile tree entries on Windows
CVE-2026-42305JelmerDulwich8.8HIGHDulwich Vulnerable to Command Injection via Merge Driver Path
CVE-2026-42563JelmerDulwich7.7HIGH