Описание
Integer overflow in the authenticate_post function in CGit before 0.12 allows remote attackers to have unspecified impact via a large value in the Content-Length HTTP header, which triggers a buffer overflow.
| Релиз | Статус | Примечание |
|---|---|---|
| artful | ignored | end of life |
| bionic | not-affected | 0.11.2.git2.3.2-1.1 |
| devel | not-affected | 0.11.2.git2.3.2-1.1 |
| esm-apps/bionic | not-affected | 0.11.2.git2.3.2-1.1 |
| esm-apps/xenial | not-affected | 0.11.2.git2.3.2-1.1 |
| esm-infra-legacy/trusty | DNE | |
| precise | DNE | |
| precise/esm | DNE | |
| trusty | DNE | |
| trusty/esm | DNE |
Показывать по
EPSS
7.5 High
CVSS2
9.8 Critical
CVSS3
Связанные уязвимости
Integer overflow in the authenticate_post function in CGit before 0.12 allows remote attackers to have unspecified impact via a large value in the Content-Length HTTP header, which triggers a buffer overflow.
Integer overflow in the authenticate_post function in CGit before 0.12 ...
Integer overflow in the authenticate_post function in CGit before 0.12 allows remote attackers to have unspecified impact via a large value in the Content-Length HTTP header, which triggers a buffer overflow.
EPSS
7.5 High
CVSS2
9.8 Critical
CVSS3