Описание
The Git Smart Protocol support in libgit2 before 0.24.6 and 0.25.x before 0.25.1 allows remote attackers to cause a denial of service (NULL pointer dereference) via an empty packet line.
Ссылки
- Third Party Advisory
- Third Party Advisory
- Third Party Advisory
- Mailing ListPatchThird Party Advisory
- Mailing ListPatchThird Party Advisory
- Issue TrackingPatchThird Party Advisory
- Issue TrackingPatchThird Party Advisory
- PatchVendor Advisory
- Third Party Advisory
- Third Party Advisory
- Third Party Advisory
- Mailing ListPatchThird Party Advisory
- Mailing ListPatchThird Party Advisory
- Issue TrackingPatchThird Party Advisory
- Issue TrackingPatchThird Party Advisory
- PatchVendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 0.24.5 (включая)
Одно из
cpe:2.3:a:libgit2_project:libgit2:*:*:*:*:*:*:*:*
cpe:2.3:a:libgit2_project:libgit2:0.25.0:*:*:*:*:*:*:*
cpe:2.3:a:libgit2_project:libgit2:0.25.0:rc1:*:*:*:*:*:*
cpe:2.3:a:libgit2_project:libgit2:0.25.0:rc2:*:*:*:*:*:*
EPSS
Процентиль: 89%
0.04757
Низкий
7.5 High
CVSS3
5 Medium
CVSS2
Дефекты
CWE-476
Связанные уязвимости
CVSS3: 7.5
ubuntu
почти 9 лет назад
The Git Smart Protocol support in libgit2 before 0.24.6 and 0.25.x before 0.25.1 allows remote attackers to cause a denial of service (NULL pointer dereference) via an empty packet line.
CVSS3: 7.5
debian
почти 9 лет назад
The Git Smart Protocol support in libgit2 before 0.24.6 and 0.25.x bef ...
CVSS3: 7.5
github
больше 3 лет назад
The Git Smart Protocol support in libgit2 before 0.24.6 and 0.25.x before 0.25.1 allows remote attackers to cause a denial of service (NULL pointer dereference) via an empty packet line.
EPSS
Процентиль: 89%
0.04757
Низкий
7.5 High
CVSS3
5 Medium
CVSS2
Дефекты
CWE-476