7 matches found
Fedora 43 : libgit2_1.8 (2026-7b1d032de7)
The remote Fedora 43 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-7b1d032de7 advisory. Update to version 1.8.5. Release notes: https://github.com/libgit2/libgit2/releases/tag/v1.8.5 Tenable has extracted the preceding description block directly...
MGASA-2024-0059 Updated libgit2 packages fix security vulnerabilities
When using an SSH remote with the optional libssh2 backend, libgit2 does not perform certificate checking by default. CVE-2023-22742 Using well-crafted inputs to gitindexadd can cause heap corruption that could be leveraged for arbitrary code execution. CVE-2024-24577...
SUSE-SU-2022:3283-1 Security update for libgit2
This update for libgit2 fixes the following issues: - CVE-2022-24765: Fixed potential command injection via git worktree bsc1198234. - CVE-2022-29187: Fixed incomplete fix for CVE-2022-24765 bsc1201431...
MGASA-2019-0391 Updated libgit2 packages fix security vulnerabilities
libgit2 has been updated to version 0.28.4 to fix several security issues: A carefully constructed commit object with a very large number of parents may lead to potential out-of-bounds writes or potential denial of service. CVE-2019-1348: the fast-import stream command "feature export-marks=path"...
openSUSE Security Update : libgit2 (openSUSE-2018-922)
This update for libgit2 to version 0.26.5 fixes the following issues : The following security vulnerabilities were addressed : - CVE-2018-10887: Fixed an integer overflow which in turn leads to an out of bound read, allowing to read the base object, which could be exploited by an attacker to caus...
SUSE-SU-2018:2469-1 Security update for libgit2
This update for libgit2 to version 0.26.5 fixes the following issues: The following security vulnerabilities were addressed: - CVE-2018-10887: Fixed an integer overflow which in turn leads to an out of bound read, allowing to read the base object, which could be exploited by an attacker to cause...
OPENSUSE-SU-2017:0405-1 Security update for libgit2
This update for libgit2 to version 0.24.6 fixes the following issues: - CVE-2016-10130: When using the custom certificate callback or when using pygit2 or git2go a attacker could have caused an invalid certificate to be accepted bsc1019037. - CVE-2017-5338: When using the custom certificate...