Fedora 42 : libgit2 (2026-57ba9d6f85)

The remote Fedora 42 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-57ba9d6f85 advisory. Update to version 1.9.2. Release notes: https://github.com/libgit2/libgit2/releases/tag/v1.9.2 Tenable has extracted the preceding description block directly...

JLSEC-2025-184 libgit2 is a cross-platform, linkable library implementation of Git

libgit2 is a cross-platform, linkable library implementation of Git. When using an SSH remote with the optional libssh2 backend, libgit2 does not perform certificate checking by default. Prior versions of libgit2 require the caller to set the certificatecheck field of libgit2's gitremotecallbacks...

JLSEC-2025-186 libgit2 is a portable C implementation of the Git core methods provided as a linkable library with a...

libgit2 is a portable C implementation of the Git core methods provided as a linkable library with a solid API, allowing to build Git functionality into your application. Using well-crafted inputs to gitindexadd can cause heap corruption that could be leveraged for arbitrary code execution. There...

JLSEC-2025-182 An issue was discovered in libgit2 before 0.28.4 and 0.9x before 0.99.0

An issue was discovered in libgit2 before 0.28.4 and 0.9x before 0.99.0. path.c mishandles equivalent filenames that exist because of NTFS Alternate Data Streams. This may allow remote code execution when cloning a repository. This issue is similar to CVE-2019-1352...

JLSEC-2025-183 An issue was discovered in libgit2 before 0.28.4 and 0.9x before 0.99.0

An issue was discovered in libgit2 before 0.28.4 and 0.9x before 0.99.0. checkout.c mishandles equivalent filenames that exist because of NTFS short names. This may allow remote code execution when cloning a repository. This issue is similar to CVE-2019-1353...

EUVD-2016-1320

Malware in sbrugna...

EUVD-2018-7378

Malware in sbrugna...

EUVD-2020-4592

Malware in sbrugna...

EUVD-2018-2952

Malware in sbrugna...

EUVD-2016-9417

Malware in sbrugna...

EUVD-2020-4591

Malware in sbrugna...

EUVD-2016-1319

Malware in sbrugna...

EUVD-2016-1318

Malware in sbrugna...

EUVD-2018-19774

Malware in sbrugna...

EUVD-2018-19775

Malware in sbrugna...

EUVD-2023-26860

Malicious code in bioql PyPI...

EUVD-2024-21980

Malicious code in bioql PyPI...

EUVD-2024-21982

Malicious code in bioql PyPI...

Linux Distros Unpatched Vulnerability : CVE-2018-8099

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Incorrect returning of an error code in the index.c:readentry function leads to a double free in libgit2 before v0.26.2, which allows an attacker to cause a...

Linux Distros Unpatched Vulnerability : CVE-2018-15501

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In ngpkt in transports/smartpkt.c in libgit2 before 0.26.6 and 0.27.x before 0.27.4, a remote attacker can send a crafted smart-protocol ng packet that lacks a...