|
|
Log in / Subscribe / Register

libgit2: two vulnerabilities

Package(s):libgit2 CVE #(s):CVE-2016-8568 CVE-2016-8569
Created:October 19, 2016 Updated:January 19, 2017
Description: From the Red Hat bugzilla:

CVE-2016-8568: * Read out-of-bounds in git_oid_nfmt:
https://github.com/libgit2/libgit2/issues/3936

CVE-2016-8569: * DoS using a null pointer dereference in git_commit_message:
https://github.com/libgit2/libgit2/issues/3937

Proposed patch:
https://github.com/libgit2/libgit2/pull/3956

Alerts:
Arch Linux ASA-201611-17 libgit2 2016-11-16
Fedora FEDORA-2016-616a35205b libgit2 2016-10-20
Fedora FEDORA-2016-bc51f4636f libgit2 2016-10-18
openSUSE openSUSE-SU-2017:0195-1 libgit2 2017-01-18
openSUSE openSUSE-SU-2017:0208-1 libgit2 2017-01-19
openSUSE openSUSE-SU-2017:0184-1 libgit2 2017-01-17
openSUSE openSUSE-SU-2016:3097-1 libgit2 2016-12-12
to post comments


Copyright © 2026, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds