Lucene search
K

12 matches found

OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.27 views

SUSE: Security Advisory (SUSE-SU-2018:2469-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.1CVSS8.1AI score0.49188EPSS
Exploits11References2
RedhatCVE
RedhatCVE
added 2019/05/14 12:32 p.m.37 views

CVE-2018-15501

In ngpkt in transports/smartpkt.c in libgit2 before 0.26.6 and 0.27.x before 0.27.4, a remote attacker can send a crafted smart-protocol "ng" packet that lacks a '\0' byte to trigger an out-of-bounds read that leads to DoS...

7.5CVSS2.9AI score0.04337EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2019/01/02 12:0 a.m.43 views

SUSE SLED15 / SLES15 Security Update : libgit2 (SUSE-SU-2018:2469-1)

This update for libgit2 to version 0.26.5 fixes the following issues: The following security vulnerabilities were addressed : - CVE-2018-10887: Fixed an integer overflow which in turn leads to an out of bound read, allowing to read the base object, which could be exploited by an attacker to cause...

8.1CVSS6.7AI score0.49188EPSS
Exploits11References13
Tenable Nessus
Tenable Nessus
added 2018/10/29 12:0 a.m.31 views

openSUSE Security Update : libgit2 (openSUSE-2018-1314)

This update for libgit2 fixes the following issues : - CVE-2018-8099: Fixed possible denial of service attack via different vectors by not being able to differentiate between these status codes bsc1085256. - CVE-2018-11235: With a crafted .gitmodules file, a malicious project can execute an...

8.1CVSS6.7AI score0.49188EPSS
Exploits11References10
OpenVAS
OpenVAS
added 2018/10/27 12:0 a.m.30 views

openSUSE: Security Advisory for libgit2 (openSUSE-SU-2018:3519-1)

The remote host is missing an update for the Copyright C 2018 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

8.1CVSS7.2AI score0.49188EPSS
Exploits11References2
Debian
Debian
added 2018/08/25 9:27 p.m.31 views

[SECURITY] [DLA 1477-1] libgit2 security update

Package : libgit2 Version : 0.21.1-3+deb8u1 CVE ID : CVE-2018-10887 CVE-2018-10888 CVE-2018-15501 CVE-2018-15501 A potential out-of-bounds read when processing a "ng" smart packet might lead to a Denial of Service. CVE-2018-10887 A flaw has been discovered that may lead to an integer overflow whi...

8.1CVSS7.7AI score0.04337EPSS
Exploits1
OPENSUSE Linux
OPENSUSE Linux
added 2018/08/25 12:7 a.m.142 views

Security update for libgit2 (important)

This update for libgit2 to version 0.26.5 fixes the following issues: The following security vulnerabilities were addressed: - CVE-2018-10887: Fixed an integer overflow which in turn leads to an out of bound read, allowing to read the base object, which could be exploited by an attacker to cause...

6.8CVSS2.5AI score0.49188EPSS
Exploits11References4
NVD
NVD
added 2018/08/18 2:29 a.m.24 views

CVE-2018-15501

In ngpkt in transports/smartpkt.c in libgit2 before 0.26.6 and 0.27.x before 0.27.4, a remote attacker can send a crafted smart-protocol "ng" packet that lacks a '\0' byte to trigger an out-of-bounds read that leads to DoS...

7.5CVSS7.4AI score0.04337EPSS
Exploits1References8
UbuntuCve
UbuntuCve
added 2018/08/18 2:29 a.m.35 views

CVE-2018-15501

In ngpkt in transports/smartpkt.c in libgit2 before 0.26.6 and 0.27.x before 0.27.4, a remote attacker can send a crafted smart-protocol "ng" packet that lacks a '\0' byte to trigger an out-of-bounds read that leads to DoS...

7.5CVSS6.8AI score0.04337EPSS
Exploits1References7
CVE
CVE
added 2018/08/18 2:0 a.m.120 views

CVE-2018-15501

The CVE-2018-15501 issue exists in libgit2’s ng_pkt handling (transports/smart_pkt.c). A remote attacker can send a crafted smart-protocol packet (“ng”) that lacks a '\0' byte, triggering an out-of-bounds read and DoS. Affected versions are libgit2 before 0.26.6 and 0.27.x before 0.27.4. Remediat...

7.5CVSS7.3AI score0.04337EPSS
Exploits1References8Affected Software1
Debian CVE
Debian CVE
added 2018/08/18 2:0 a.m.35 views

CVE-2018-15501

In ngpkt in transports/smartpkt.c in libgit2 before 0.26.6 and 0.27.x before 0.27.4, a remote attacker can send a crafted smart-protocol "ng" packet that lacks a '\0' byte to trigger an out-of-bounds read that leads to DoS...

7.5CVSS6AI score0.04337EPSS
Exploits1
AlpineLinux
AlpineLinux
added 2018/08/18 2:0 a.m.42 views

CVE-2018-15501

In ngpkt in transports/smartpkt.c in libgit2 before 0.26.6 and 0.27.x before 0.27.4, a remote attacker can send a crafted smart-protocol "ng" packet that lacks a '\0' byte to trigger an out-of-bounds read that leads to DoS...

7.5CVSS7.5AI score0.04337EPSS
Exploits1
Rows per page
Query Builder