Описание
Buffer overflow in the git_pkt_parse_line function in transports/smart_pkt.c in the Git Smart Protocol support in libgit2 before 0.24.6 and 0.25.x before 0.25.1 allows remote attackers to have unspecified impact via a crafted non-flush packet.
| Релиз | Статус | Примечание |
|---|---|---|
| artful | ignored | end of life |
| bionic | not-affected | 0.26.0+dfsg.1-1.1build1 |
| cosmic | not-affected | 0.26.0+dfsg.1-1.1build1 |
| devel | not-affected | 0.26.0+dfsg.1-1.1build1 |
| disco | not-affected | 0.26.0+dfsg.1-1.1build1 |
| eoan | not-affected | 0.26.0+dfsg.1-1.1build1 |
| esm-apps/bionic | not-affected | 0.26.0+dfsg.1-1.1build1 |
| esm-apps/focal | not-affected | 0.26.0+dfsg.1-1.1build1 |
| esm-apps/jammy | not-affected | 0.26.0+dfsg.1-1.1build1 |
| esm-apps/xenial | needed |
Показывать по
7.5 High
CVSS2
9.8 Critical
CVSS3
Связанные уязвимости
Buffer overflow in the git_pkt_parse_line function in transports/smart_pkt.c in the Git Smart Protocol support in libgit2 before 0.24.6 and 0.25.x before 0.25.1 allows remote attackers to have unspecified impact via a crafted non-flush packet.
Buffer overflow in the git_pkt_parse_line function in transports/smart ...
Buffer overflow in the git_pkt_parse_line function in transports/smart_pkt.c in the Git Smart Protocol support in libgit2 before 0.24.6 and 0.25.x before 0.25.1 allows remote attackers to have unspecified impact via a crafted non-flush packet.
7.5 High
CVSS2
9.8 Critical
CVSS3