CVE-2025-26625 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2025-26625 Interim 1 3 2026-03-05T01:11:37Z current 2025-11-01T00:47:34Z 2026-03-05T01:11:37Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2025-26625 Git LFS is a Git extension for versioning large files. In Git LFS versions 0.5.2 through 3.7.0, when populating a Git repository's working tree with the contents of Git LFS objects, certain Git LFS commands may write to files visible outside the current Git working tree if symbolic or hard links exist which collide with the paths of files tracked by Git LFS. The git lfs checkout and git lfs pull commands do not check for symbolic links before writing to files in the working tree, allowing an attacker to craft a repository containing symbolic or hard links that cause Git LFS to write to arbitrary file system locations accessible to the user running these commands. As well, when the git lfs checkout and git lfs pull commands are run in a bare repository, they could write to files visible outside the repository. The vulnerability is fixed in version 3.7.1. As a workaround, support for symlinks in Git may be disabled by setting the core.symlinks configuration option to false, after which further clones and fetches will not create symbolic links. However, any symbolic or hard links in existing repositories will still provide the opportunity for Git LFS to write to their targets. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://lists.suse.com/pipermail/suse-liberty-linux-updates/2025-December/002338.html E-Mail link for RHSA-2025:23648 https://lists.suse.com/pipermail/suse-liberty-linux-updates/2025-December/002328.html E-Mail link for RHSA-2025:23745 https://www.suse.com/support/security/rating/ SUSE Security Ratings SUSE Liberty Linux 8 SUSE Liberty Linux 9 SUSE Linux Enterprise Module for Development Tools 15 SP6 SUSE Linux Enterprise Module for Development Tools 15 SP7 SUSE Linux Enterprise Module for Development Tools 15 SP6 SUSE Linux Enterprise Module for Development Tools 15 SP7 SUSE Linux Enterprise Module for Development Tools 15 SP6 SUSE Linux Enterprise Server 15 SP6-LTSS SUSE Linux Enterprise Module for Development Tools 15 SP7 SUSE Linux Enterprise Module for Development Tools 15 SP6 SUSE Linux Enterprise Server for SAP Applications 15 SP6 SUSE Linux Enterprise Module for Development Tools 15 SP7 openSUSE Leap 15.6 openSUSE Tumbleweed git-lfs git-lfs-3.4.1-6.el8_10 git-lfs-3.6.1-2.el9_6.1 git-lfs-3.7.1-1.1 govulncheck-vulndb-0.0.20251105T184115-1.1 ruby-3.3.10-5.module+el9.6.0+23780+e40d2335 ruby-bundled-gems-3.3.10-5.module+el9.6.0+23780+e40d2335 ruby-default-gems-3.3.10-5.module+el9.6.0+23780+e40d2335 ruby-devel-3.3.10-5.module+el9.6.0+23780+e40d2335 ruby-doc-3.3.10-5.module+el9.6.0+23780+e40d2335 ruby-libs-3.3.10-5.module+el9.6.0+23780+e40d2335 rubygem-bigdecimal-3.1.5-5.module+el9.6.0+23780+e40d2335 rubygem-bundler-2.5.22-5.module+el9.6.0+23780+e40d2335 rubygem-io-console-0.7.1-5.module+el9.6.0+23780+e40d2335 rubygem-irb-1.13.1-5.module+el9.6.0+23780+e40d2335 rubygem-json-2.7.2-5.module+el9.6.0+23780+e40d2335 rubygem-minitest-5.20.0-5.module+el9.6.0+23780+e40d2335 rubygem-mysql2-0.5.5-1.module+el9.4.0+21222+faeeed2f rubygem-mysql2-doc-0.5.5-1.module+el9.4.0+21222+faeeed2f rubygem-pg-1.5.4-1.module+el9.4.0+21222+faeeed2f rubygem-pg-doc-1.5.4-1.module+el9.4.0+21222+faeeed2f rubygem-power_assert-2.0.3-5.module+el9.6.0+23780+e40d2335 rubygem-psych-5.1.2-5.module+el9.6.0+23780+e40d2335 rubygem-racc-1.7.3-5.module+el9.6.0+23780+e40d2335 rubygem-rake-13.1.0-5.module+el9.6.0+23780+e40d2335 rubygem-rbs-3.4.0-5.module+el9.6.0+23780+e40d2335 rubygem-rdoc-6.6.3.1-5.module+el9.6.0+23780+e40d2335 rubygem-rexml-3.4.4-5.module+el9.6.0+23780+e40d2335 rubygem-rss-0.3.1-5.module+el9.6.0+23780+e40d2335 rubygem-test-unit-3.6.1-5.module+el9.6.0+23780+e40d2335 rubygem-typeprof-0.21.9-5.module+el9.6.0+23780+e40d2335 rubygems-3.5.22-5.module+el9.6.0+23780+e40d2335 rubygems-devel-3.5.22-5.module+el9.6.0+23780+e40d2335 git-lfs-3.4.1-6.el8_10 as a component of SUSE Liberty Linux 8 git-lfs-3.6.1-2.el9_6.1 as a component of SUSE Liberty Linux 9 ruby-3.3.10-5.module+el9.6.0+23780+e40d2335 as a component of SUSE Liberty Linux 9 ruby-bundled-gems-3.3.10-5.module+el9.6.0+23780+e40d2335 as a component of SUSE Liberty Linux 9 ruby-default-gems-3.3.10-5.module+el9.6.0+23780+e40d2335 as a component of SUSE Liberty Linux 9 ruby-devel-3.3.10-5.module+el9.6.0+23780+e40d2335 as a component of SUSE Liberty Linux 9 ruby-doc-3.3.10-5.module+el9.6.0+23780+e40d2335 as a component of SUSE Liberty Linux 9 ruby-libs-3.3.10-5.module+el9.6.0+23780+e40d2335 as a component of SUSE Liberty Linux 9 rubygem-bigdecimal-3.1.5-5.module+el9.6.0+23780+e40d2335 as a component of SUSE Liberty Linux 9 rubygem-bundler-2.5.22-5.module+el9.6.0+23780+e40d2335 as a component of SUSE Liberty Linux 9 rubygem-io-console-0.7.1-5.module+el9.6.0+23780+e40d2335 as a component of SUSE Liberty Linux 9 rubygem-irb-1.13.1-5.module+el9.6.0+23780+e40d2335 as a component of SUSE Liberty Linux 9 rubygem-json-2.7.2-5.module+el9.6.0+23780+e40d2335 as a component of SUSE Liberty Linux 9 rubygem-minitest-5.20.0-5.module+el9.6.0+23780+e40d2335 as a component of SUSE Liberty Linux 9 rubygem-mysql2-0.5.5-1.module+el9.4.0+21222+faeeed2f as a component of SUSE Liberty Linux 9 rubygem-mysql2-doc-0.5.5-1.module+el9.4.0+21222+faeeed2f as a component of SUSE Liberty Linux 9 rubygem-pg-1.5.4-1.module+el9.4.0+21222+faeeed2f as a component of SUSE Liberty Linux 9 rubygem-pg-doc-1.5.4-1.module+el9.4.0+21222+faeeed2f as a component of SUSE Liberty Linux 9 rubygem-power_assert-2.0.3-5.module+el9.6.0+23780+e40d2335 as a component of SUSE Liberty Linux 9 rubygem-psych-5.1.2-5.module+el9.6.0+23780+e40d2335 as a component of SUSE Liberty Linux 9 rubygem-racc-1.7.3-5.module+el9.6.0+23780+e40d2335 as a component of SUSE Liberty Linux 9 rubygem-rake-13.1.0-5.module+el9.6.0+23780+e40d2335 as a component of SUSE Liberty Linux 9 rubygem-rbs-3.4.0-5.module+el9.6.0+23780+e40d2335 as a component of SUSE Liberty Linux 9 rubygem-rdoc-6.6.3.1-5.module+el9.6.0+23780+e40d2335 as a component of SUSE Liberty Linux 9 rubygem-rexml-3.4.4-5.module+el9.6.0+23780+e40d2335 as a component of SUSE Liberty Linux 9 rubygem-rss-0.3.1-5.module+el9.6.0+23780+e40d2335 as a component of SUSE Liberty Linux 9 rubygem-test-unit-3.6.1-5.module+el9.6.0+23780+e40d2335 as a component of SUSE Liberty Linux 9 rubygem-typeprof-0.21.9-5.module+el9.6.0+23780+e40d2335 as a component of SUSE Liberty Linux 9 rubygems-3.5.22-5.module+el9.6.0+23780+e40d2335 as a component of SUSE Liberty Linux 9 rubygems-devel-3.5.22-5.module+el9.6.0+23780+e40d2335 as a component of SUSE Liberty Linux 9 git-lfs-3.7.1-1.1 as a component of openSUSE Tumbleweed govulncheck-vulndb-0.0.20251105T184115-1.1 as a component of openSUSE Tumbleweed git-lfs as a component of SUSE Linux Enterprise Module for Development Tools 15 SP6 git-lfs as a component of SUSE Linux Enterprise Module for Development Tools 15 SP7 git-lfs as a component of SUSE Linux Enterprise Server 15 SP6-LTSS git-lfs as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP6 git-lfs as a component of openSUSE Leap 15.6 Git LFS is a Git extension for versioning large files. In Git LFS versions 0.5.2 through 3.7.0, when populating a Git repository's working tree with the contents of Git LFS objects, certain Git LFS commands may write to files visible outside the current Git working tree if symbolic or hard links exist which collide with the paths of files tracked by Git LFS. The git lfs checkout and git lfs pull commands do not check for symbolic links before writing to files in the working tree, allowing an attacker to craft a repository containing symbolic or hard links that cause Git LFS to write to arbitrary file system locations accessible to the user running these commands. As well, when the git lfs checkout and git lfs pull commands are run in a bare repository, they could write to files visible outside the repository. The vulnerability is fixed in version 3.7.1. As a workaround, support for symlinks in Git may be disabled by setting the core.symlinks configuration option to false, after which further clones and fetches will not create symbolic links. However, any symbolic or hard links in existing repositories will still provide the opportunity for Git LFS to write to their targets. CVE-2025-26625 SUSE Liberty Linux 8:git-lfs-3.4.1-6.el8_10 SUSE Liberty Linux 9:git-lfs-3.6.1-2.el9_6.1 SUSE Liberty Linux 9:ruby-3.3.10-5.module+el9.6.0+23780+e40d2335 SUSE Liberty Linux 9:ruby-bundled-gems-3.3.10-5.module+el9.6.0+23780+e40d2335 SUSE Liberty Linux 9:ruby-default-gems-3.3.10-5.module+el9.6.0+23780+e40d2335 SUSE Liberty Linux 9:ruby-devel-3.3.10-5.module+el9.6.0+23780+e40d2335 SUSE Liberty Linux 9:ruby-doc-3.3.10-5.module+el9.6.0+23780+e40d2335 SUSE Liberty Linux 9:ruby-libs-3.3.10-5.module+el9.6.0+23780+e40d2335 SUSE Liberty Linux 9:rubygem-bigdecimal-3.1.5-5.module+el9.6.0+23780+e40d2335 SUSE Liberty Linux 9:rubygem-bundler-2.5.22-5.module+el9.6.0+23780+e40d2335 SUSE Liberty Linux 9:rubygem-io-console-0.7.1-5.module+el9.6.0+23780+e40d2335 SUSE Liberty Linux 9:rubygem-irb-1.13.1-5.module+el9.6.0+23780+e40d2335 SUSE Liberty Linux 9:rubygem-json-2.7.2-5.module+el9.6.0+23780+e40d2335 SUSE Liberty Linux 9:rubygem-minitest-5.20.0-5.module+el9.6.0+23780+e40d2335 SUSE Liberty Linux 9:rubygem-mysql2-0.5.5-1.module+el9.4.0+21222+faeeed2f SUSE Liberty Linux 9:rubygem-mysql2-doc-0.5.5-1.module+el9.4.0+21222+faeeed2f SUSE Liberty Linux 9:rubygem-pg-1.5.4-1.module+el9.4.0+21222+faeeed2f SUSE Liberty Linux 9:rubygem-pg-doc-1.5.4-1.module+el9.4.0+21222+faeeed2f SUSE Liberty Linux 9:rubygem-power_assert-2.0.3-5.module+el9.6.0+23780+e40d2335 SUSE Liberty Linux 9:rubygem-psych-5.1.2-5.module+el9.6.0+23780+e40d2335 SUSE Liberty Linux 9:rubygem-racc-1.7.3-5.module+el9.6.0+23780+e40d2335 SUSE Liberty Linux 9:rubygem-rake-13.1.0-5.module+el9.6.0+23780+e40d2335 SUSE Liberty Linux 9:rubygem-rbs-3.4.0-5.module+el9.6.0+23780+e40d2335 SUSE Liberty Linux 9:rubygem-rdoc-6.6.3.1-5.module+el9.6.0+23780+e40d2335 SUSE Liberty Linux 9:rubygem-rexml-3.4.4-5.module+el9.6.0+23780+e40d2335 SUSE Liberty Linux 9:rubygem-rss-0.3.1-5.module+el9.6.0+23780+e40d2335 SUSE Liberty Linux 9:rubygem-test-unit-3.6.1-5.module+el9.6.0+23780+e40d2335 SUSE Liberty Linux 9:rubygem-typeprof-0.21.9-5.module+el9.6.0+23780+e40d2335 SUSE Liberty Linux 9:rubygems-3.5.22-5.module+el9.6.0+23780+e40d2335 SUSE Liberty Linux 9:rubygems-devel-3.5.22-5.module+el9.6.0+23780+e40d2335 openSUSE Tumbleweed:git-lfs-3.7.1-1.1 openSUSE Tumbleweed:govulncheck-vulndb-0.0.20251105T184115-1.1 important 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H