libgit2: denial of service

2016-11-16T00:00:00
ID ASA-201611-17
Type archlinux
Reporter Arch Linux
Modified 2016-11-16T00:00:00

Description

  • CVE-2016-8568 (denial of service)

A heap-based read out-of-bounds access has been discovered while parsing a malformed object file.

  • CVE-2016-8569 (denial of service)

A null pointer dereference has been discovered while showing a malformed object file.