Описание
Incorrect returning of an error code in the index.c:read_entry() function leads to a double free in libgit2 before v0.26.2, which allows an attacker to cause a denial of service via a crafted repository index file.
| Релиз | Статус | Примечание |
|---|---|---|
| artful | ignored | end of life |
| bionic | ignored | end of standard support, was needed |
| cosmic | not-affected | 0.27.4+dfsg.1-0.1 |
| devel | not-affected | 0.27.4+dfsg.1-0.1 |
| disco | not-affected | 0.27.4+dfsg.1-0.1 |
| eoan | not-affected | 0.27.4+dfsg.1-0.1 |
| esm-apps/bionic | needed | |
| esm-apps/focal | not-affected | 0.27.4+dfsg.1-0.1 |
| esm-apps/jammy | not-affected | 0.27.4+dfsg.1-0.1 |
| esm-apps/xenial | needed |
Показывать по
4.3 Medium
CVSS2
6.5 Medium
CVSS3
Связанные уязвимости
Incorrect returning of an error code in the index.c:read_entry() function leads to a double free in libgit2 before v0.26.2, which allows an attacker to cause a denial of service via a crafted repository index file.
Incorrect returning of an error code in the index.c:read_entry() function leads to a double free in libgit2 before v0.26.2, which allows an attacker to cause a denial of service via a crafted repository index file.
Incorrect returning of an error code in the index.c:read_entry() funct ...
Incorrect returning of an error code in the index.c:read_entry() function leads to a double free in libgit2 before v0.26.2, which allows an attacker to cause a denial of service via a crafted repository index file.
Уязвимость компонента index.c:read_entry() реализации методов Git на языке C Libgit2, позволяющая нарушителю вызвать отказ в обслуживании
4.3 Medium
CVSS2
6.5 Medium
CVSS3