VulnerableCode Package Details - pkg:apk/alpine/git@2.40.3-r0?arch=aarch64&distroversion=v3.18&reponame=main

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:apk/alpine/git@2.40.3-r0?arch=aarch64&distroversion=v3.18&reponame=main

purl	pkg:apk/alpine/git@2.40.3-r0?arch=aarch64&distroversion=v3.18&reponame=main

Vulnerabilities affecting this package (0)

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerabilities fixed by this package (5)

Vulnerability	Summary	Aliases
VCID-bkt1-jmy5-gbbf	git: symlink bypass	CVE-2024-32021
VCID-e33d-r9kx-aucw	git: additional local RCE	CVE-2024-32465
VCID-k8kg-z578-kbdu	git: insecure hardlinks	CVE-2024-32020
VCID-rq4n-gfwv-uqbb	git: RCE while cloning local repos	CVE-2024-32004
VCID-uszr-cr35-r7gr	git: Recursive clones RCE	CVE-2024-32002

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-06T04:50:02.979579+00:00	Alpine Linux Importer	Fixing	VCID-rq4n-gfwv-uqbb	https://secdb.alpinelinux.org/v3.18/main.json	38.1.0
2026-04-03T17:47:35.405983+00:00	Alpine Linux Importer	Fixing	VCID-e33d-r9kx-aucw	https://secdb.alpinelinux.org/v3.18/main.json	38.1.0
2026-04-01T19:20:20.075534+00:00	Alpine Linux Importer	Fixing	VCID-uszr-cr35-r7gr	https://secdb.alpinelinux.org/v3.18/main.json	38.0.0
2026-04-01T18:54:59.001028+00:00	Alpine Linux Importer	Fixing	VCID-bkt1-jmy5-gbbf	https://secdb.alpinelinux.org/v3.18/main.json	38.0.0
2026-04-01T18:51:46.453132+00:00	Alpine Linux Importer	Fixing	VCID-k8kg-z578-kbdu	https://secdb.alpinelinux.org/v3.18/main.json	38.0.0