Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
4.3
CVSSv2

CVE-2018-8099

Published: 14/03/2018 Updated: 25/04/2022
CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6
CVSS v3 Base Score: 6.5 | Impact Score: 3.6 | Exploitability Score: 2.8
VMScore: 383
Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P
Subscribe to Libgit2

Vulnerability Summary

Incorrect returning of an error code in the index.c:read_entry() function leads to a double free in libgit2 before v0.26.2, which allows an malicious user to cause a denial of service via a crafted repository index file.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

libgit2 libgit2

debian debian linux 9.0

Vendor Advisories

Debian CVElist Bug Report Logs: libgit2: CVE-2018-8099
Debian Bug report logs - #892962 libgit2: CVE-2018-8099 Package: src:libgit2; Maintainer for src:libgit2 is Russell Sim <russellsim@gmailcom>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Wed, 14 Mar 2018 21:06:02 UTC Severity: grave Tags: patch, security, upstream Found in version libgit2/0260+df ...

References

CWE-415https://libgit2.github.com/security/https://github.com/libgit2/libgit2/commit/58a6fe94cb851f71214dbefac3f9bffee437d6fehttps://lists.debian.org/debian-lts-announce/2022/03/msg00031.htmlhttps://bugs.debian.org/cgi-bin/bugreport.cgi?bug=892962https://nvd.nist.gov
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895blind SQL injectionCVE-2024-5064CVE-2023-52677CVE-2023-52682CVE-2024-30051CVE-2024-35849remote attackersremote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook