548 matches found
Important: rust
Issue Overview: libgit2 is a portable C implementation of the Git core methods provided as a linkable library with a solid API, allowing to build Git functionality into your application. Using well-crafted inputs to gitrevparsesingle can cause the function to enter an infinite loop, potentially...
Mageia: Security Advisory (MGASA-2024-0059)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
MGASA-2024-0059 Updated libgit2 packages fix security vulnerabilities
When using an SSH remote with the optional libssh2 backend, libgit2 does not perform certificate checking by default. CVE-2023-22742 Using well-crafted inputs to gitindexadd can cause heap corruption that could be leveraged for arbitrary code execution. CVE-2024-24577...
Amazon Linux 2023 : libgit2, libgit2-devel (ALAS2023-2024-541)
It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2024-541 advisory. libgit2 is a portable C implementation of the Git core methods provided as a linkable library with a solid API, allowing to build Git functionality into your application. Using well-crafted...
Ubuntu: Security Advisory (USN-6678-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
USN-6678-1 libgit2 vulnerabilities
It was discovered that libgit2 mishandled equivalent filenames on NTFS partitions. If a user or automated system were tricked into cloning a specially crafted repository, an attacker could possibly use this issue to execute arbitrary code. This issue only affected Ubuntu 16.04 LTS and Ubuntu 18.0...
USN-6678-1: libgit2 vulnerabilities
It was discovered that libgit2 mishandled equivalent filenames on NTFS partitions. If a user or automated system were tricked into cloning a specially crafted repository, an attacker could possibly use this issue to execute arbitrary code. This issue only affected Ubuntu 16.04 LTS and Ubuntu 18.0...
Important: libgit2
Issue Overview: libgit2 is a portable C implementation of the Git core methods provided as a linkable library with a solid API, allowing to build Git functionality into your application. Using well-crafted inputs to gitrevparsesingle can cause the function to enter an infinite loop, potentially...
Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS / 23.10 : libgit2 vulnerabilities (USN-6678-1)
The remote Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS / 23.10 host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-6678-1 advisory. It was discovered that libgit2 mishandled equivalent filenames on NTFS partitions. If a user or automated...
Important: libgit2
Issue Overview: libgit2 is a portable C implementation of the Git core methods provided as a linkable library with a solid API, allowing to build Git functionality into your application. Using well-crafted inputs to gitrevparsesingle can cause the function to enter an infinite loop, potentially...
CVE-2024-24575 affecting package libgit2 for versions less than 1.6.5-1
CVE-2024-24575 affecting package libgit2 for versions less than 1.6.5-1. An upgraded version of the package is available that resolves this issue...
CVE-2024-24577 affecting package libgit2 for versions less than 1.6.5-1
CVE-2024-24577 affecting package libgit2 for versions less than 1.6.5-1. An upgraded version of the package is available that resolves this issue...
Debian: Security Advisory (DLA-3742-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] [DLA 3742-1] libgit2 security update
Debian LTS Advisory DLA-3742-1 [email protected] https://www.debian.org/lts/security/ Sean Whitton February 27, 2024 https://wiki.debian.org/LTS Package : libgit2 Version : 0.27.7+dfsg.1-0.2+deb10u2 CVE ID : CVE-2024-24577 Debian Bug : 1063416 A vulnerability was discovered in libgit2, ...
Debian dla-3742 : libgit2-27 - security update
The remote Debian 10 host has packages installed that are affected by a vulnerability as referenced in the dla-3742 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-3742-1 [email protected] https://www.debian.org/lts/security/...
DLA-3742-1 libgit2 - security update
Bulletin has no description...
OESA-2024-1203 rust security update
Rust is a systems programming language focused on three goals:safety, speed,and concurrency.It maintains these goals without having a garbage collector, making it a useful language for a number of use cases other languages are not good at: embedding in other languages, programs with specific spac...
OESA-2024-1205 rust security update
Rust is a systems programming language focused on three goals:safety, speed,and concurrency.It maintains these goals without having a garbage collector, making it a useful language for a number of use cases other languages are not good at: embedding in other languages, programs with specific spac...
OESA-2024-1206 rust security update
Rust is a systems programming language focused on three goals:safety, speed,and concurrency.It maintains these goals without having a garbage collector, making it a useful language for a number of use cases other languages are not good at: embedding in other languages, programs with specific spac...
OESA-2024-1204 rust security update
Rust is a systems programming language focused on three goals:safety, speed,and concurrency.It maintains these goals without having a garbage collector, making it a useful language for a number of use cases other languages are not good at: embedding in other languages, programs with specific spac...