Information on source package libgit2

Available versions

ReleaseVersion
jessie0.21.1-3
jessie (security)0.21.1-3+deb8u1
stretch0.25.1+really0.24.6-1
buster0.27.4+dfsg.1-0.1
sid0.27.4+dfsg.1-0.1

Open issues

BugjessiestretchbustersidDescription
CVE-2018-8099vulnerable (no DSA)vulnerable (no DSA)fixedfixedIncorrect returning of an error code in the index.c:read_entry() ...
CVE-2018-8098vulnerable (no DSA)vulnerable (no DSA)fixedfixedInteger overflow in the index.c:read_entry() function while ...
CVE-2018-15501fixedvulnerable (no DSA)fixedfixedIn ng_pkt in transports/smart_pkt.c in libgit2 before 0.26.6 and 0.27.x ...
CVE-2018-10888fixedvulnerable (no DSA)fixedfixedA flaw was found in libgit2 before version 0.27.3. A missing check in ...
CVE-2018-10887fixedvulnerable (no DSA)fixedfixedA flaw was found in libgit2 before version 0.27.3. It has been ...
CVE-2016-8569vulnerable (no DSA)fixedfixedfixedThe git_oid_nfmt function in commit.c in libgit2 before 0.24.3 allows ...
CVE-2016-8568vulnerable (no DSA)fixedfixedfixedThe git_commit_message function in oid.c in libgit2 before 0.24.3 ...
CVE-2016-10129vulnerable (no DSA)fixedfixedfixedThe Git Smart Protocol support in libgit2 before 0.24.6 and 0.25.x ...
CVE-2016-10128vulnerable (no DSA)fixedfixedfixedBuffer overflow in the git_pkt_parse_line function in ...

Resolved issues

BugDescription
CVE-2016-10130The http_connect function in transports/http.c in libgit2 before ...
CVE-2014-9390arbitrary command execution vulnerability on case-insensitive file systems

Security announcements

DSA / DLADescription
DLA-1477-1libgit2 - security update

Search for package or bug name: Reporting problems