Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

548 matches found

Wolfi
Wolfiadded 2024/02/06 10:16 p.m.50 views

CVE-2024-24577 vulnerabilities

Vulnerabilities for packages: libgit2...

9.8CVSS7.1AI score0.00376EPSS
Exploits0
NVD
NVDadded 2024/02/06 10:16 p.m.14 views

CVE-2024-24575

libgit2 is a portable C implementation of the Git core methods provided as a linkable library with a solid API, allowing to build Git functionality into your application. Using well-crafted inputs to gitrevparsesingle can cause the function to enter an infinite loop, potentially causing a Denial ...

7.5CVSS8.5AI score0.0182EPSS
Exploits0References9
OSV
OSVadded 2024/02/06 10:16 p.m.1 views

DEBIAN-CVE-2024-24575

libgit2 is a portable C implementation of the Git core methods provided as a linkable library with a solid API, allowing to build Git functionality into your application. Using well-crafted inputs to gitrevparsesingle can cause the function to enter an infinite loop, potentially causing a Denial ...

7.5CVSS7.5AI score0.0182EPSS
Exploits0References1
OSV
OSVadded 2024/02/06 10:16 p.m.2 views

AZL-34274 CVE-2024-24577 affecting package libgit2 for versions less than 1.6.5-1

libgit2 is a portable C implementation of the Git core methods provided as a linkable library with a solid API, allowing to build Git functionality into your application. Using well-crafted inputs to gitindexadd can cause heap corruption that could be leveraged for arbitrary code execution. There...

9.8CVSS6AI score0.00376EPSS
Exploits0References1
Prion
Prionadded 2024/02/06 10:16 p.m.23 views

Heap overflow

libgit2 is a portable C implementation of the Git core methods provided as a linkable library with a solid API, allowing to build Git functionality into your application. Using well-crafted inputs to gitindexadd can cause heap corruption that could be leveraged for arbitrary code execution. There...

7.5CVSS7.9AI score0.00376EPSS
Exploits0References9Affected Software1
Prion
Prionadded 2024/02/06 10:16 p.m.21 views

Improper access control

libgit2 is a portable C implementation of the Git core methods provided as a linkable library with a solid API, allowing to build Git functionality into your application. Using well-crafted inputs to gitrevparsesingle can cause the function to enter an infinite loop, potentially causing a Denial ...

5CVSS7.3AI score0.0182EPSS
Exploits0References9Affected Software1
UbuntuCve
UbuntuCveadded 2024/02/06 10:16 p.m.33 views

CVE-2024-24575

libgit2 is a portable C implementation of the Git core methods provided as a linkable library with a solid API, allowing to build Git functionality into your application. Using well-crafted inputs to gitrevparsesingle can cause the function to enter an infinite loop, potentially causing a Denial ...

7.5CVSS7.2AI score0.0182EPSS
Exploits0References6
OSV
OSVadded 2024/02/06 10:16 p.m.0 views

UBUNTU-CVE-2024-24577

libgit2 is a portable C implementation of the Git core methods provided as a linkable library with a solid API, allowing to build Git functionality into your application. Using well-crafted inputs to gitindexadd can cause heap corruption that could be leveraged for arbitrary code execution. There...

9.8CVSS6AI score0.00376EPSS
Exploits0References6
UbuntuCve
UbuntuCveadded 2024/02/06 10:16 p.m.22 views

CVE-2024-24577

libgit2 is a portable C implementation of the Git core methods provided as a linkable library with a solid API, allowing to build Git functionality into your application. Using well-crafted inputs to gitindexadd can cause heap corruption that could be leveraged for arbitrary code execution. There...

9.8CVSS7.2AI score0.00376EPSS
Exploits0References5
OSV
OSVadded 2024/02/06 9:36 p.m.29 views

CVE-2024-24577 libgit2 is vulnerable to arbitrary code execution due to heap corruption in `git_index_add`

libgit2 is a portable C implementation of the Git core methods provided as a linkable library with a solid API, allowing to build Git functionality into your application. Using well-crafted inputs to gitindexadd can cause heap corruption that could be leveraged for arbitrary code execution. There...

8.6CVSS9.8AI score0.00376EPSS
Exploits0References11
AlpineLinux
AlpineLinuxadded 2024/02/06 9:36 p.m.30 views

CVE-2024-24577

libgit2 is a portable C implementation of the Git core methods provided as a linkable library with a solid API, allowing to build Git functionality into your application. Using well-crafted inputs to gitindexadd can cause heap corruption that could be leveraged for arbitrary code execution. There...

9.8CVSS10AI score0.00376EPSS
Exploits0
Vulnrichment
Vulnrichmentadded 2024/02/06 9:36 p.m.4 views

CVE-2024-24577 libgit2 is vulnerable to arbitrary code execution due to heap corruption in `git_index_add`

libgit2 is a portable C implementation of the Git core methods provided as a linkable library with a solid API, allowing to build Git functionality into your application. Using well-crafted inputs to gitindexadd can cause heap corruption that could be leveraged for arbitrary code execution. There...

8.6CVSS9.9AI score0.00376EPSS
Exploits0References9
Cvelist
Cvelistadded 2024/02/06 9:36 p.m.18 views

CVE-2024-24577 libgit2 is vulnerable to arbitrary code execution due to heap corruption in `git_index_add`

libgit2 is a portable C implementation of the Git core methods provided as a linkable library with a solid API, allowing to build Git functionality into your application. Using well-crafted inputs to gitindexadd can cause heap corruption that could be leveraged for arbitrary code execution. There...

8.6CVSS10AI score0.00376EPSS
Exploits0References9
CVE
CVEadded 2024/02/06 9:36 p.m.384 views

CVE-2024-24577

CVE-2024-24577 is a vulnerability in libgit2 where the has_dir_name path frees a non-freed entry in src/libgit2/index.c, causing use-after-free and potentially leading to heap corruption and arbitrary code execution. Public details in connected advisories confirm the underlying bug is in git_inde...

9.8CVSS9.8AI score0.00376EPSS
Exploits0References9Affected Software1
Debian CVE
Debian CVEadded 2024/02/06 9:36 p.m.28 views

CVE-2024-24577

libgit2 is a portable C implementation of the Git core methods provided as a linkable library with a solid API, allowing to build Git functionality into your application. Using well-crafted inputs to gitindexadd can cause heap corruption that could be leveraged for arbitrary code execution. There...

9.8CVSS10AI score0.00376EPSS
Exploits0
CVE
CVEadded 2024/02/06 9:27 p.m.351 views

CVE-2024-24575

CVE-2024-24575 and CVE-2024-24577 (libgit2) are confirmed in the provided documents. The issues affect libgit2’s revparse (CVE-2024-24575) and index handling (CVE-2024-24577). Root causes: an edge-case in revparse can cause an infinite loop and potential memory access; and in has_dir_name during ...

7.5CVSS8.5AI score0.0182EPSS
Exploits0References9Affected Software1
Vulnrichment
Vulnrichmentadded 2024/02/06 9:27 p.m.23 views

CVE-2024-24575 libgit2 is vulnerable to a denial of service attack in `git_revparse_single`

libgit2 is a portable C implementation of the Git core methods provided as a linkable library with a solid API, allowing to build Git functionality into your application. Using well-crafted inputs to gitrevparsesingle can cause the function to enter an infinite loop, potentially causing a Denial ...

7.5CVSS6.8AI score0.0182EPSS
Exploits0References9
Cvelist
Cvelistadded 2024/02/06 9:27 p.m.26 views

CVE-2024-24575 libgit2 is vulnerable to a denial of service attack in `git_revparse_single`

libgit2 is a portable C implementation of the Git core methods provided as a linkable library with a solid API, allowing to build Git functionality into your application. Using well-crafted inputs to gitrevparsesingle can cause the function to enter an infinite loop, potentially causing a Denial ...

7.5CVSS8.8AI score0.0182EPSS
Exploits0References9
AlpineLinux
AlpineLinuxadded 2024/02/06 9:27 p.m.35 views

CVE-2024-24575

libgit2 is a portable C implementation of the Git core methods provided as a linkable library with a solid API, allowing to build Git functionality into your application. Using well-crafted inputs to gitrevparsesingle can cause the function to enter an infinite loop, potentially causing a Denial ...

7.5CVSS8.8AI score0.0182EPSS
Exploits0
Debian CVE
Debian CVEadded 2024/02/06 9:27 p.m.20 views

CVE-2024-24575

libgit2 is a portable C implementation of the Git core methods provided as a linkable library with a solid API, allowing to build Git functionality into your application. Using well-crafted inputs to gitrevparsesingle can cause the function to enter an infinite loop, potentially causing a Denial ...

7.5CVSS7.8AI score0.0182EPSS
Exploits0
Rows per page
Query Builder