Описание
Integer overflow in the index.c:read_entry() function while decompressing a compressed prefix length in libgit2 before v0.26.2 allows an attacker to cause a denial of service (out-of-bounds read) via a crafted repository index file.
| Релиз | Статус | Примечание |
|---|---|---|
| artful | ignored | end of life |
| bionic | ignored | end of standard support, was needed |
| cosmic | not-affected | 0.27.4+dfsg.1-0.1 |
| devel | not-affected | 0.27.4+dfsg.1-0.1 |
| disco | not-affected | 0.27.4+dfsg.1-0.1 |
| eoan | not-affected | 0.27.4+dfsg.1-0.1 |
| esm-apps/bionic | needed | |
| esm-apps/focal | not-affected | 0.27.4+dfsg.1-0.1 |
| esm-apps/jammy | not-affected | 0.27.4+dfsg.1-0.1 |
| esm-apps/xenial | needed |
Показывать по
EPSS
4.3 Medium
CVSS2
6.5 Medium
CVSS3
Связанные уязвимости
Integer overflow in the index.c:read_entry() function while decompressing a compressed prefix length in libgit2 before v0.26.2 allows an attacker to cause a denial of service (out-of-bounds read) via a crafted repository index file.
Integer overflow in the index.c:read_entry() function while decompressing a compressed prefix length in libgit2 before v0.26.2 allows an attacker to cause a denial of service (out-of-bounds read) via a crafted repository index file.
Integer overflow in the index.c:read_entry() function while decompress ...
Integer overflow in the index.c:read_entry() function while decompressing a compressed prefix length in libgit2 before v0.26.2 allows an attacker to cause a denial of service (out-of-bounds read) via a crafted repository index file.
Уязвимость функции read_entry() компонента index.c реализации методов Git на языке C Libgit2, позволяющая нарушителю вызвать отказ в обслуживании
EPSS
4.3 Medium
CVSS2
6.5 Medium
CVSS3