Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
libgit2 project libgit2 vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2016-10128
Buffer overflow in the git_pkt_parse_line function in transports/smart_pkt.c in the Git Smart Protocol support in libgit2 prior to 0.24.6 and 0.25.x prior to 0.25.1 allows remote malicious users to have unspecified impact via a crafted non-flush packet.
Libgit2 Project Libgit2 0.25.0
Libgit2 Project Libgit2
5
CVSSv2
CVE-2016-10129
The Git Smart Protocol support in libgit2 prior to 0.24.6 and 0.25.x prior to 0.25.1 allows remote malicious users to cause a denial of service (NULL pointer dereference) via an empty packet line.
Libgit2 Project Libgit2 0.25.0
Libgit2 Project Libgit2
4.3
CVSSv2
CVE-2016-10130
The http_connect function in transports/http.c in libgit2 prior to 0.24.6 and 0.25.x prior to 0.25.1 might allow man-in-the-middle malicious users to spoof servers by leveraging clobbering of the error variable.
Libgit2 Project Libgit2
Libgit2 Project Libgit2 0.25.0
4.3
CVSSv2
CVE-2016-8568
The git_commit_message function in oid.c in libgit2 prior to 0.24.3 allows remote malicious users to cause a denial of service (out-of-bounds read) via a cat-file command with a crafted object file.
Fedoraproject Fedora 25
Fedoraproject Fedora 24
Fedoraproject Fedora 23
Suse Linux Enterprise 12.0
Opensuse Leap 42.2
Opensuse Leap 42.1
Opensuse Opensuse 13.2
Libgit2 Project Libgit2
4.3
CVSSv2
CVE-2016-8569
The git_oid_nfmt function in commit.c in libgit2 prior to 0.24.3 allows remote malicious users to cause a denial of service (NULL pointer dereference) via a cat-file command with a crafted object file.
Libgit2 Project Libgit2
Fedoraproject Fedora 25
Fedoraproject Fedora 24
Fedoraproject Fedora 23
Suse Linux Enterprise 12.0
Opensuse Leap 42.2
Opensuse Leap 42.1
Opensuse Opensuse 13.2
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started