CVE-2016-8569

Опубликовано: 03 фев. 2017

Источник: debian

EPSS Низкий

Описание

The git_oid_nfmt function in commit.c in libgit2 before 0.24.3 allows remote attackers to cause a denial of service (NULL pointer dereference) via a cat-file command with a crafted object file.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
libgit2	fixed	0.24.2-2		package
libgit2	no-dsa		jessie	package
cargo	fixed	0.17.0-1~exp1	experimental	package
cargo	fixed	0.17.0-1		package

Примечания

https://github.com/libgit2/libgit2/issues/3937

EPSS

Процентиль: 72%

0.00735

Низкий

Связанные уязвимости

CVE-2016-8569

CVSS3: 5.5

ubuntu

около 9 лет назад

The git_oid_nfmt function in commit.c in libgit2 before 0.24.3 allows remote attackers to cause a denial of service (NULL pointer dereference) via a cat-file command with a crafted object file.

CVE-2016-8569

CVSS3: 5.5

nvd

около 9 лет назад

The git_oid_nfmt function in commit.c in libgit2 before 0.24.3 allows remote attackers to cause a denial of service (NULL pointer dereference) via a cat-file command with a crafted object file.

GHSA-m99c-3xxj-4mxh

CVSS3: 5.5

github

больше 3 лет назад

The git_oid_nfmt function in commit.c in libgit2 before 0.24.3 allows remote attackers to cause a denial of service (NULL pointer dereference) via a cat-file command with a crafted object file.

openSUSE-SU-2017:0208-1

suse-cvrf

около 9 лет назад

Security update for libgit2

openSUSE-SU-2016:3097-1

suse-cvrf

около 9 лет назад

Security update for libgit2

EPSS

Процентиль: 72%

0.00735

Низкий